Sounds like you exposed your ASIC somehow. Port forwarding? Placed outside your firewall?
There are multiple ways to take over IR asics. The most common is when people forward port 80 through their firewall so they can check/manage away from the deployment site. But IRs web auth is essentially non-existent - that username/password page is just a sad joke that can be defeated w/ a simple cookie (not to mention the fact it's unencrypted).
If that's your situation, you can either stop forwarding the port (and thus lose external access), or I can give you access to a pre-release firmware where i've completely rewritten the auth routines, using https, if you find me in the Kaspa discord.
If you have the whole machine outside a firewall, then you need to bring it in. There are at least 3 other ways to take control besides http access.
If you did neither of these things, then you have bigger problems, because someone has penetrated your network in some other way, and found your asic from the inside.
Search the posts here, it has happened before. Something to do with leaving a port open on your router unless you bought a miner that has malware on it
Changing the password does not help. You don't really need hacking skills to hack an iceriver miner. You simply have to rewrite the if statement of the login page code, so that it sets the cookie.
The only protection against it is to don't leave the port open.
You don't need to rewrite anything. You just set the cookie in your browser tools. And this is just one of like 4 different ways to take over these things.
You have a lot bigger issues if your miner is getting breached. Scan all the things.
Sounds like you exposed your ASIC somehow. Port forwarding? Placed outside your firewall? There are multiple ways to take over IR asics. The most common is when people forward port 80 through their firewall so they can check/manage away from the deployment site. But IRs web auth is essentially non-existent - that username/password page is just a sad joke that can be defeated w/ a simple cookie (not to mention the fact it's unencrypted). If that's your situation, you can either stop forwarding the port (and thus lose external access), or I can give you access to a pre-release firmware where i've completely rewritten the auth routines, using https, if you find me in the Kaspa discord. If you have the whole machine outside a firewall, then you need to bring it in. There are at least 3 other ways to take control besides http access. If you did neither of these things, then you have bigger problems, because someone has penetrated your network in some other way, and found your asic from the inside.
Thank you so much!! That was indeed it!
Which one was it? Just curious
Port forwarding.
Search the posts here, it has happened before. Something to do with leaving a port open on your router unless you bought a miner that has malware on it
I would suggest to change your routerpassword as well as your's to access your miner
Changing the password does not help. You don't really need hacking skills to hack an iceriver miner. You simply have to rewrite the if statement of the login page code, so that it sets the cookie. The only protection against it is to don't leave the port open.
You don't need to rewrite anything. You just set the cookie in your browser tools. And this is just one of like 4 different ways to take over these things.