Mikhail

Forum Replies Created

Viewing 15 posts - 1,306 through 1,320 (of 6,323 total)
  • Author
    Posts
  • in reply to: Current Data sudden become Not Ready #14064
    Mikhail
    Moderator

    Hi,
    Could you provide the screenshot of the archive configuration and archive log file?

    in reply to: Error uploading configuration #14062
    Mikhail
    Moderator

    Hello,
    According to the screenshot, the compressed size of the project is more than 350 MB which is probably too heavy.
    I suggest the following:
    1. Open the project folder in Windows file explorer.
    2. Search for all files of the project, display them as a table and sort by size.
    3. Make a screenshot of the biggest file names and sizes.

    in reply to: Computer Code #14057
    Mikhail
    Moderator

    Hello,
    Perform the list item #10 from the manual.

    in reply to: Server is unavailable #14055
    Mikhail
    Moderator

    Download ScadaTestClient and try to connect to Server with different usernames: ScadaComm and ScadaWeb. Usernames are set in ScadaTestClient.xml

    in reply to: Server is unavailable #14053
    Mikhail
    Moderator

    Could you open the project SCADA\ProjectSamples\HelloWorld\HelloWorld.rsproj in the Administrator app and upload again?

    in reply to: security vulnerability of Rapid SCADA #14051
    Mikhail
    Moderator

    Ready to discuss specific security-related issues together.

    in reply to: Ngix Further configuration is required. #14050
    Mikhail
    Moderator

    Hi,
    > 2024-02-09 09:35:24 [tomasz-Latitude-5480][root][INF] The application is ready for operating
    This line means that the web application works correctly. You should check the nginx configuration. Check that you performed the item 5c described here.

    in reply to: Display data from a calculation in a deviceless channel #14041
    Mikhail
    Moderator

    Hello,
    Could you clarify the question and provide an example screenshot?

    in reply to: Server is unavailable #14040
    Mikhail
    Moderator

    The Communicator application successfully connects to Server. However, the web app cannot connect.
    Please copy what is written in Webstation log, ScadaWeb.log?

    in reply to: Ngix Further configuration is required. #14038
    Mikhail
    Moderator

    Hello,
    Do you use Linux?
    Please open the Administrator application, open the HelloWorld project and check the log file of the Webstation application.
    Or just find logs in the file system and check ScadaWeb.log.

    in reply to: security vulnerability of Rapid SCADA #14023
    Mikhail
    Moderator

    Note that you can find similar security reports for any well known SCADA software. Since Rapid SCADA is open source, its internal structure has been tested by many professional developers and we respond to their feedback.

    There are many Rapid SCADA instances available on the Internet that work reliably for many years.

    in reply to: security vulnerability of Rapid SCADA #14022
    Mikhail
    Moderator

    What you should do to protect the system:
    1. Follow the safety recommendations.

    2. Restrict access to your project. It’s recommended to store project on GIT in private repository. It helps to control any changes made in the project.
    If an attacker changed your project, he could access the server’s filesystem by read and write operations from the scripts. Also he could add hyperlinks to external resources on the schemes.

    3. Restrict access to the production server. It’s obvious.
    Use firewall.

    4. If Rapid SCADA is hosted in the cloud, enable captcha and use Guard Plugin for additional security.

    5. Use strong passwords in production environment. Change all default passwords.

    6. Run Rapid SCADA services with lower privileges instead of system (root) user.

    • This reply was modified 2 years, 5 months ago by Mikhail.
    • This reply was modified 2 years, 5 months ago by Mikhail.
    in reply to: security vulnerability of Rapid SCADA #14021
    Mikhail
    Moderator

    Hello,
    We also checked those CISA reports some time ago. The above links does not contain steps to reproduce the issues, therefore I can answer in general.

    In v6 the following security improvements were made:
    1. Encrypt passwords in configuration files.
    2. Store only password hash for user passwords.
    3. Encrypt sensitive information in TCP application protocol.
    4. Brute force protection.
    5. The web app can redirect only to a local page on user login.
    6. Use more secure default installation directory on Windows.

    in reply to: Server is unavailable #14020
    Mikhail
    Moderator

    Restart SCADA-Server, then check ScadaServer.log. Copy start messages from the log here.

    in reply to: OPC UA Server #14015
    Mikhail
    Moderator

    > Could not connect to server:BadHostUnknown
    This error means that the computer where the OPC server is installed cannot be found by the client.

Viewing 15 posts - 1,306 through 1,320 (of 6,323 total)