Jump to content
dexterash

P2P = Problems? Lack of privacy? Lack of security?

Recommended Posts

In my honest opinion, anything that goes through a 3rd server (as in no-direct IP connection) is a potential threat and a privacy problem. And, also, a proof of laziness or lack of knowledge.

 

Well, what do you think?

https://krebsonsecurity.com/2016/02/this-is-why-people-fear-the-internet-of-things/

http://foscam.us/forum/foscam-dialing-out-to-suspect-hosts-t17699.html

https://www.pentestpartners.com/blog/pwning-cctv-cameras/

 

Did anyone really pentest or monitor the devices or the solutions that they are using/installing? We're talking about devices that stream HD/FullHD/4k[or more] detailed images/video streams. Or the "open" world out there means no privacy at all?

Share this post


Link to post
Share on other sites

In my honest opinion, anything that goes through a 3rd server (as in no-direct IP connection) is a potential threat and a privacy problem. And, also, a proof of laziness or lack of knowledge.

 

Well, what do you think?

https://krebsonsecurity.com/2016/02/this-is-why-people-fear-the-internet-of-things/

http://foscam.us/forum/foscam-dialing-out-to-suspect-hosts-t17699.html

https://www.pentestpartners.com/blog/pwning-cctv-cameras/

 

Did anyone really pentest or monitor the devices or the solutions that they are using/installing? We're talking about devices that stream HD/FullHD/4k[or more] detailed images/video streams. Or the "open" world out there means no privacy at all?

The same can be sad about any online storage

Dropbox

Google drive and etc....

Right?

Share this post


Link to post
Share on other sites

At least there you know what you stored/when you stored and have a different control (can't say full control).

 

But in case of "some" P2P implementations you have no control at all, as outlined in the articles posted. And no simple way to disable it or the uploads.

Share this post


Link to post
Share on other sites

Hi. You do have control.. Option is use p2p or set up manual which is more secure.

 

P2p was just a budget system get remote view setup with out knowing simple network and it's always been a problem since avtech brought it out 6 years ago

Share this post


Link to post
Share on other sites

Please read the articles. And the discussion around Foscam.

Even if you "disable" (mhm, actually no) the P2P via the Web Interface / CMS / Config something, it still uploads. To a bunch of IPs/different addresses.

 

Of course, you could disable DNS lookups. But that might bring other problems (push or e-mail, for example).

Or you could completely firewall it, but that will render useless remote viewing. And complicate things. A lot.

 

And this without discussing the security of the uploads - if they are done encrypted or not, rendering them vulnerable to simple sniffing/decoding.

Share this post


Link to post
Share on other sites
Please read the articles. And the discussion around Foscam.

Even if you "disable" (mhm, actually no) the P2P via the Web Interface / CMS / Config something

 

I did read.... And like a lot of people posting these problems it is still a lack of network skill.

 

Like the post you talk about. Below is the image .... Spot the problem even if p2p is un ticked

image.png.0f49e55aff326ccd38002e3a63cbd2e5.png

Share this post


Link to post
Share on other sites

Because I work with facts more than screenshots or simple words, we can test that theory anytime, with any IP-enabled/network-enabled device, to see what network traffic it does [ under whatever settings the users are comfortable or used with ]. A sniffer session [with or without a decoder or several decoders attached] can't lie.

Share this post


Link to post
Share on other sites

Your the one that said read your links

 

But can't you see from the screen shot why switching off p2p does not work for him

 

But like I said it's a matter of knowing networks

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×