OpenSprinkler Weather service broken??!? backgrounds

In the summer of this year, we, the operators of the OpenSprinkler weather service, a strange effect: Apparently the weather service is overloaded. The reason was found quickly, there were DDOS attacks against the OpenSprinkler Weather service running servers that flooded the weather service with nonsensical information, thereby restricting its use. the OpenSprinkler Instead of the weather data, computers only received timeouts (timeouts) or empty responses, which is also the case in the OpenSprinkler with the menu on the top left/system diagnostics.

The server administrator then stepped in and installed Cloudflare as a proxy in front of the weather service. Now everything seemed to work again, but a month later it was all over again. The weather service reported “empty response” or “timeout”. So we turned Cloudflare off again. But barely a week later the same problem again: DDOS attacks prevented use.

So we reactivated Cloudflare. However, users repeatedly reported that the weather service is not available.

Now we found out the reasons: The Cloudflare service added its own header data to our weather service responses, which inflated the data packet size beyond the intended maximum. This led to a buffer overflow that overwrote the weather data. These headers were subsequently activated by Cloudflare, so this was not noticed in our tests.

The solution can only be found with a firmware update. Please update the firmware. Either the latest beta 220.112, or the official of OpenSprinkler.com 219.11