• Recent
    • Tags
    • Popular
    • Register
    • Login

    Please Note This forum exists for community support for the Mango product family and the Radix IoT Platform. Although Radix IoT employees participate in this forum from time to time, there is no guarantee of a response to anything posted here, nor can Radix IoT, LLC guarantee the accuracy of any information expressed or conveyed. Specific project questions from customers with active support contracts are asked to send requests to support@radixiot.com.

    Radix IoT Website Mango 3 Documentation Website Mango 4 Documentation Website Mango 5 Documentation Website

    Mango security testing

    Announcements
    3
    4
    3.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • JoelHaggarJ
      JoelHaggar
      last edited by

      Over the past few months Mango Automation has undergone in-depth security vetting by two independent security firms, Source Incite and Zero Science Lab, in an effort to find any security vulnerabilities. Their thorough testing revealed some potential vulnerabilities of which, most of, have already fixed in Mango 2.6.0 RC3 build 430 or higher and the remainder are currently in development to be included in the final release of Mango 2.6

      We are working with the Department of Homeland Security’s ICS-CERT division: https://ics-cert.us-cert.gov to issue an advisory that recommends all users upgrade to 2.6

      We expect to be releasing Mango Automation 2.6 with all it's new features and more robust security on Tuesday October 20th with more information to follow this post.

      How to do a test upgrade

      You can download Mango Automation 2.6.0 build 430 here We recomend you do an offline test upgrade by duplicating your database and Mango installation and running the upgrade. We will be providing more detialed release notes but you can also familurize yourself with some of the new features and changes here: http://infiniteautomation.com/forum/topic/1872/new-features-coming-soon

      To perform a manual test upgrade download the m2m2-core-2.6.0.zip file into your backup Mango home directory. If using a MySQL database be sure to duplicate the database and use a copy for the test upgrade.

      Restart Mango on the Modules page or by ./ma.sh stop and then ./ma.sh start.

      When starting up with a file named m2m2-core-2.6.0.zip in the home folder, Mango will remove the current MA_HOME/lib folder and then unzip the m2m2-core-2.6.0.zip file and will then finish with the upgrade.

      Please post any upgrade issues or question here.

      1 Reply Last reply Reply Quote 0
      • A
        alexcclarke
        last edited by

        Will the mango frontend support https?

        1 Reply Last reply Reply Quote 0
        • JoelHaggarJ
          JoelHaggar
          last edited by

          Mango has always supported https. http://infiniteautomation.com/wiki/doku.php?id=installation:configuration#ssl_settings

          1 Reply Last reply Reply Quote 0
          • P
            Pedro
            last edited by

            This is really good news. It is essential that a SCADA system be able to withstand security threats. This will open the door to Mango being adopted in new markets. Thank you.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post