First I want to say hello.
I have a few ip-cameras (from longse) and a nvr for testing, which support onvif and many other protocols. I have changed the default password and all cameras and the nvr are working perfectly in the network.
To view the camera via browser I need my new password. To add the camera to the nvr I need the password, too.
But now I have installed Xeoma on my PC and Android phone to test this nvr-software. After starting the programm it will find all cameras in the network without any password. I can view the streams and record all of them without authorization. I think this has something to to with the RTSP/RTP protocol. but I'm not sure. I can't find any hint.
As I have to less knowledge about the basic function of the different protocols, I cant explain myself how this is possible.
So my question is. Has this anything to do with a specific protocol (maybe other protocol) and how can this be avoided? If I open an access to my network from the outside to this cameras can everyone view the stream with a software like Xeoma without authorization? Or has the problem something to do with the firmware of the cameras and they can't be installed secure in a network.
I hope my case is clear enough. If I can find something about this already anywhere else I would be happy about some keywords to search the net. All I have found until now, did not give me an answer to this question. But maybe I don't have the right keywords for searching.
Thank you very much for any help!
Momo