Disabling Ubiquiti Discovery

All ubiquiti devices have a discovery port vulnerability as described here https://blog.rapid7.com/2019/02/01/ubiquiti-discovery-service-exposures/

It is always good practice to disable this service even without the vulnerability as the service is not required once configure. To fix do the following

ubnt@ubnt:~$ configure
[edit]       
ubnt@ubnt# set service ubnt-discover disable
[edit]       
ubnt@ubnt# commit
[edit]       
ubnt@ubnt#

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.