Defense In Depth...
Secpcb said:
Just an update on this. I found if I deleted the password, and only denied future access, anyone trying to connect would not get a prompt that could put in the master reset password and wipe my program...
I feel that you may have a false sense of security here. Not using a password is more secure, by your thinking. This is a little misguided. Remember, just because using a password exposes the password prompt so a person may enter a
Clear Memory Password (not
master reset password), does not mean that by simply removing that password, and hence the prompt, you are removing the ability for someone to clear the processor's memory.
Just remember what I wrote earlier on the
Clear Memory Password...
Geospark said:
...Why is this password provided? Because, for the modular SLC controllers, if a user has walk up access then they can just as, but not quite as, easily pull the processor battery and short the GND and VBB to default the processor. The clear memory password just makes this task a bit simpler...
If a person has walk up access to this controller, so as to attempt a factory reset, then the
Clear Memory Password is not the only way they may attempt to do so. They could still physically pull the processor module and short the GND and VBB pins to factory reset it. If they are physically restricted, but can communicate with this controller over a network, then they could still connect to the OEM Locked, but unprotected controller, and download a blank or different program. Alternatively, they could connect and in RSLogix 500 use
Comms>Clear Processor Memory. So, while using OEM Lock and no password protection, unless you are physically restricting access to the controller in every way, then someone could still effectively wipe your program from memory.
Remember, use a layered approach to security.
Secpcb said:
I tested this on a spare rack and it was very easy to reset the PLC & put in another program - oddly though the reset to factory default did not revert the 5/05's IP address...
If by "
reset the PLC" you mean that you cleared the memory using the
Clear Memory Password...
When you clear the processor's memory, using either the
Clear Memory Password or
Comms>Clear Processor Memory, you are just clearing the processor's memory i.e. the program. You are not resetting the controller to factory default.
The embedded Ethernet port stores its configuration in its own separate memory. When you clear the processor's memory the Ethernet port's memory is left untouched. This allows the retention of its configuration so future communications are possible at the same node address. To overwrite the port's memory you would have to reconfigure it using one of the possible methods, such as BOOTP, or else download a program with a different Ethernet port configuration and select to overwrite the communications configuration for that Channel when prompted.
If you factory default the processor, by shorting the GND and VBB pins while the battery is removed, then both the processor and the Ethernet port's memory are cleared. You will then have to reconfigured valid Ethernet port settings before you can establish Ethernet communications.
Regards,
George