dexterash 0 Posted February 25, 2016 In my honest opinion, anything that goes through a 3rd server (as in no-direct IP connection) is a potential threat and a privacy problem. And, also, a proof of laziness or lack of knowledge. Well, what do you think? https://krebsonsecurity.com/2016/02/this-is-why-people-fear-the-internet-of-things/ http://foscam.us/forum/foscam-dialing-out-to-suspect-hosts-t17699.html https://www.pentestpartners.com/blog/pwning-cctv-cameras/ Did anyone really pentest or monitor the devices or the solutions that they are using/installing? We're talking about devices that stream HD/FullHD/4k[or more] detailed images/video streams. Or the "open" world out there means no privacy at all? Share this post Link to post Share on other sites
ak357 0 Posted February 25, 2016 In my honest opinion, anything that goes through a 3rd server (as in no-direct IP connection) is a potential threat and a privacy problem. And, also, a proof of laziness or lack of knowledge. Well, what do you think? https://krebsonsecurity.com/2016/02/this-is-why-people-fear-the-internet-of-things/ http://foscam.us/forum/foscam-dialing-out-to-suspect-hosts-t17699.html https://www.pentestpartners.com/blog/pwning-cctv-cameras/ Did anyone really pentest or monitor the devices or the solutions that they are using/installing? We're talking about devices that stream HD/FullHD/4k[or more] detailed images/video streams. Or the "open" world out there means no privacy at all? The same can be sad about any online storage Dropbox Google drive and etc.... Right? Share this post Link to post Share on other sites
dexterash 0 Posted February 25, 2016 At least there you know what you stored/when you stored and have a different control (can't say full control). But in case of "some" P2P implementations you have no control at all, as outlined in the articles posted. And no simple way to disable it or the uploads. Share this post Link to post Share on other sites
tomcctv 190 Posted February 25, 2016 Hi. You do have control.. Option is use p2p or set up manual which is more secure. P2p was just a budget system get remote view setup with out knowing simple network and it's always been a problem since avtech brought it out 6 years ago Share this post Link to post Share on other sites
dexterash 0 Posted February 25, 2016 Please read the articles. And the discussion around Foscam. Even if you "disable" (mhm, actually no) the P2P via the Web Interface / CMS / Config something, it still uploads. To a bunch of IPs/different addresses. Of course, you could disable DNS lookups. But that might bring other problems (push or e-mail, for example). Or you could completely firewall it, but that will render useless remote viewing. And complicate things. A lot. And this without discussing the security of the uploads - if they are done encrypted or not, rendering them vulnerable to simple sniffing/decoding. Share this post Link to post Share on other sites
Moensted 0 Posted February 25, 2016 Interesting articles and definitely something we as installers and integrators need to be aware of. Share this post Link to post Share on other sites
tomcctv 190 Posted February 25, 2016 Please read the articles. And the discussion around Foscam. Even if you "disable" (mhm, actually no) the P2P via the Web Interface / CMS / Config something I did read.... And like a lot of people posting these problems it is still a lack of network skill. Like the post you talk about. Below is the image .... Spot the problem even if p2p is un ticked Share this post Link to post Share on other sites
dexterash 0 Posted February 26, 2016 Because I work with facts more than screenshots or simple words, we can test that theory anytime, with any IP-enabled/network-enabled device, to see what network traffic it does [ under whatever settings the users are comfortable or used with ]. A sniffer session [with or without a decoder or several decoders attached] can't lie. Share this post Link to post Share on other sites
tomcctv 190 Posted February 26, 2016 Your the one that said read your links But can't you see from the screen shot why switching off p2p does not work for him But like I said it's a matter of knowing networks Share this post Link to post Share on other sites