<?xml version="1.0" encoding="utf-8" ?>
<?xml-stylesheet type="text/xsl" href="RSS_xslt_style.asp" version="1.0" ?>
<rss version="2.0" xmlns:WebWizForums="https://syndication.webwiz.net/rss_namespace/">
 <channel>
  <title>WMAS Discussion Forum : Apex Controller Security</title>
  <link>http://www.utahreefs.com/forum/</link>
  <description><![CDATA[This is an XML content feed of; WMAS Discussion Forum : General Discussion : Apex Controller Security]]></description>
  <copyright>Copyright (c) 2006-2013 Web Wiz Forums - All Rights Reserved.</copyright>
  <pubDate>Mon, 06 Jul 2026 17:01:08 +0000</pubDate>
  <lastBuildDate>Mon, 16 Apr 2018 11:25:45 +0000</lastBuildDate>
  <docs>http://blogs.law.harvard.edu/tech/rss</docs>
  <generator>Web Wiz Forums 12.03</generator>
  <ttl>360</ttl>
  <WebWizForums:feedURL>www.utahreefs.com/forum/RSS_post_feed.asp?TID=84314</WebWizForums:feedURL>
  <image>
   <title><![CDATA[WMAS Discussion Forum]]></title>
   <url>http://www.utahreefs.com/forum/1by1.gif</url>
   <link>http://www.utahreefs.com/forum/</link>
  </image>
  <item>
   <title><![CDATA[Apex Controller Security : Even with port forwarding turned...]]></title>
   <link>http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632280&amp;title=apex-controller-security#632280</link>
   <description>
    <![CDATA[<strong>Author:</strong> <a href="http://www.utahreefs.com/forum/member_profile.asp?PF=4178">Krazie4Acans</a><br /><strong>Subject:</strong> 84314<br /><strong>Posted:</strong> April&nbsp;16&nbsp;2018 at 11:25am<br /><br />Even with port forwarding turned on for the apex, as long as you are not using the default username and password, it would be very hard for a hacker to gain access to that device through the port forward compromise the device enough to gain access to the network and then hack other data.<div><br></div><div>On top of that they would need a reason to think they would be getting something worth their effort on your network. A Casino is a valid target, a home with an Apex is probably not the best use of their time to hack it.</div><div><br></div><div>Port forwarding is not really a bad thing when done correctly (this falls back on that knowledge of networks and routers part of your post). The issue is that most people pick ports that are known open access ports that Hackers target. Picking ports that are normally reserved for things like Firwalls, routers, intrusion detection systems and things like that make it much less likely that a hacker is going to try.</div><div><br></div><div>On to Fusion. Fusion is cloud based and uses public and private key authentication to talk to your Apex. What that means is that only Fusion knows what the access key is to talk to your apex. It is not sent through the communication between Fusion and your Apex at all so hacking it is extremely hard. It is further complicated because a client trying to access your apex can only do so by being authenticated to the Fusion servers. It's quite secure and again a Hacker is going to need to have a reason to believe that there is a significant value of what they will get from your network in order to spend the time to try and hack through any of these systems to get to your data.</div>]]>
   </description>
   <pubDate>Mon, 16 Apr 2018 11:25:45 +0000</pubDate>
   <guid isPermaLink="true">http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632280&amp;title=apex-controller-security#632280</guid>
  </item> 
  <item>
   <title><![CDATA[Apex Controller Security : Does someone with more tech experience...]]></title>
   <link>http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632278&amp;title=apex-controller-security#632278</link>
   <description>
    <![CDATA[<strong>Author:</strong> <a href="http://www.utahreefs.com/forum/member_profile.asp?PF=3860">knowen87</a><br /><strong>Subject:</strong> 84314<br /><strong>Posted:</strong> April&nbsp;16&nbsp;2018 at 10:03am<br /><br />Does someone with more tech experience want to expand on the security of apex fusion? Once my port is closed should I still be concerned with the apex allowing in hackers?]]>
   </description>
   <pubDate>Mon, 16 Apr 2018 10:03:07 +0000</pubDate>
   <guid isPermaLink="true">http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632278&amp;title=apex-controller-security#632278</guid>
  </item> 
  <item>
   <title><![CDATA[Apex Controller Security : I have been an apex owner for...]]></title>
   <link>http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632277&amp;title=apex-controller-security#632277</link>
   <description>
    <![CDATA[<strong>Author:</strong> <a href="http://www.utahreefs.com/forum/member_profile.asp?PF=3860">knowen87</a><br /><strong>Subject:</strong> 84314<br /><strong>Posted:</strong> April&nbsp;16&nbsp;2018 at 9:57am<br /><br /><div><span style="font-size: 12px;">I have been an apex owner for a long time 5+years. It used to be a lot more complicated to set up especially if you did not have a lot of knowledge about networks and routers. Back then, you had to set up a port forward&nbsp;to allow the apex access to control your tank while you were away.&nbsp; The other day, I found this story on Reddit and it made me worried about my apex.&nbsp;</span></div><div><span style="font-size: 12px;"><br></span></div><a href="http://www.businessinsider.de/hackers-stole-a-casinos-database-through-a-thermometer-in-the-lobby-fish-tank-2018-4?r=UK&amp;IR=T" target="_blank" rel="nofollow">http://www.businessinsider.de/hackers-stole-a-casinos-database-through-a-thermometer-in-the-lobby-fish-tank-2018-4?r=UK&amp;IR=T</a><br><div><span style="font-size: 12px;"><br></span></div><div><span style="font-size: 12px;">So I emailed Apex and they send me this response</span></div><div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;">"Thank you for your inquiry and concern.&nbsp; Based on our understanding of those articles that were published the owners of the aquarium exposed their controllers (we aren't sure if they are an Apex of not) to the Internet via port forwarding.&nbsp; Port forwarding allows for&nbsp;<i>inbound</i>&nbsp;communication to your network- which is not recommended.&nbsp; Most of your Internet browsing and things of that nature is&nbsp;<i>outbound</i>&nbsp;communication- and is much safer.&nbsp; Fortunately, the Apex and our Apex Fusion cloud services only use&nbsp;<i>outbound</i>&nbsp;communication to monitor and control your aquarium.&nbsp; "</div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;"><br></div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;">So in summary, as long as you use the normal conventions with your Apex (as most our users do) and do not configure port forwarding in your router to expose your controller directly to the Internet, then your cause for concern should be minimal."</div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;"><br></div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;">"You can utilize Apex Fusion exclusively.&nbsp; Apex Fusion was released in 2014 and since that time port forwarding has not been needed"&nbsp;</div></div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;"><br></div><div style="color: rgb34, 34, 34; font-family: &quot;Helvetica Neue&quot;, Helvetica, Arial, sans-serif; font-size: 13px;">Looks like I will be closing my port this afternoon.&nbsp;</div><span style="font-size:10px"><br /><br />Edited by knowen87 - April&nbsp;16&nbsp;2018 at 9:57am</span>]]>
   </description>
   <pubDate>Mon, 16 Apr 2018 09:57:05 +0000</pubDate>
   <guid isPermaLink="true">http://www.utahreefs.com/forum/forum_posts.asp?TID=84314&amp;PID=632277&amp;title=apex-controller-security#632277</guid>
  </item> 
 </channel>
</rss>