IMPORTANT NOTICE FOR PUBLIC INSTALLATIONS

[ehpersonal38]

Hi, I've recently implemented a critical patch that all public-facing BirdNET-Pi installations should update to. You can do so in

Tools -> Settings -> System Controls -> Update.

There's a small chance that a vulnerability was exploited which allowed for remote code execution on your Pi. I urge anyone with a public facing installation to update their installations and then check for unusual running processes (ps -aux) and suspicious network activity (netstat -an). If in doubt, a fresh reimage is always recommended. Better safe than sorry.

Again, this only applies to installations that are public facing, i.e. have been port forwarded and are accessible on the internet.

I will be taking measures to ensure that this does not happen again in the future.

Thank you.

[becausebirds]

Hi, I just updated my public installation. What type of unusual processes should I be looking for? I ran both commands and they both returned a bunch of stuff.

[oliverk71]

Currently doing new install.

[oliverk71]

After new install it is still very slow and hard to reach over wifi network. Although I copied the database and config and other files, it now has English bird names and no data except from yesterday and today. Maybe it doesn't make much sense on an Rpi 3B, since I had so many problems and repeatedly lost data. Hope, I will have time tomorrow to see what is going on.
But I guess it has not been hacked and this is maybe good news.

[lloydbayley]

Doesn't sound like a hack. There's something weird going on. I had a test install running quite happily for some months on a 3B+.
English bird names you say?! Is the latitude and longitude correct in the settings and what is the database language set to?

[oliverk71]

Well, I did not yet had much time to investigate on this. So maybe I made some mistake. However, this branch of the discussion should be moved into a new discussion or can be deleted because it has nothing to do with the topic.

I finally managed to change language settings by editing the birdnet.conf and then change it in the settings page. However, it did not work to change it to German via settings page. Weird, because I was able to change the language, but not to German. Although it was "de" in the conf and the settings page.

Website SSL did not work, no https available. After I changed the domain name from grevenbroich-elsen.birdnetpi.com to birdnetgv.ddnss.de (which is my old dyndns domain) everything was okay again.

So, I got it working again. Anyway, I would be very happy, if I someday can get a 4B for a reasonable price.

[lloydbayley]

Ahh....Well that's good. Yes, the birdnetpi.com domain is down and all the subdomains are not working. There are a few threads about that. Very glad to hear you got it working now.
The bit about the language not changing is weird...I wonder if it could be tied into the non-existant domain...
Still, keep an eye on it and see how it goes. If something occurs, just start another discussion and we'll jump in there. :)

[jds3d]

Is the birdnetpi domain working? I haven't been able to access it (or my installation publically) for a while--https://viennava.birdnetpi.com/.

[lloydbayley]

There's some transfer going on. See #882.