Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


mdf



2287 posts

Uber Geek

Trusted
Subscriber

# 214474 13-May-2017 13:39
Send private message

Stuff is catching up to Geekzone. Kind of wish they'd asked @sbiddle for a quote!


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
BDFL - Memuneh
64257 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1781703 13-May-2017 16:39
2 people support this post
Send private message

Brilliant quote, shows why it won't be solved really:

 

 

An Otaki homeowner, who asked not to be named, was identified due to a security camera on her property showing a trailer with her phone number on it.

 

"I'm amazed. I'm lucky that I just have [the cameras] outside. Apart from the trailer sitting there, no one would know where in the world it was, because there's not street names, but people could have street names and they could have identifying factors outside their house."

 

 

What the hell? Didn't the paper just find her because of a sticker on the trailer with her phone number? And she worry about street names?





193 posts

Master Geek
Inactive user


  # 1781706 13-May-2017 16:52
Send private message

Is this just the cameras with default logins and default non protected streams? If so, this was brought up a good 5+ years ago.

 
 
 
 


Mr Snotty
8769 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 1781715 13-May-2017 17:33
Send private message

mdf



2287 posts

Uber Geek

Trusted
Subscriber

  # 1781751 13-May-2017 19:41
Send private message

freitasm:

 

Brilliant quote, shows why it won't be solved really:

 

 

An Otaki homeowner, who asked not to be named, was identified due to a security camera on her property showing a trailer with her phone number on it.

 

"I'm amazed. I'm lucky that I just have [the cameras] outside. Apart from the trailer sitting there, no one would know where in the world it was, because there's not street names, but people could have street names and they could have identifying factors outside their house."

 

 

What the hell? Didn't the paper just find her because of a sticker on the trailer with her phone number? And she worry about street names?

 

 

Yeah, I thought this was a bit like XYZ's naked rear end was shown on camera. XYZ was later quoted as saying, "Well, at least my street name wasn't displayed!"


28145 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  # 1781932 14-May-2017 14:30
3 people support this post
Send private message

I'm sick of telling people not to set port forwards to CCTV.

 

As far as I'm concerned these days if you're dumb enough to set port forwards (or employ a security that is dumb enough to configure port forwards for you) you deserve your CCTV feeds to be on the Internet.

 

 


mdf



2287 posts

Uber Geek

Trusted
Subscriber

  # 1781944 14-May-2017 15:51
Send private message

Scope for a public service / advertising opportunity? www.geekzone.co.nz/AmISecure (or /IsMySecurityInstallerDumb) to scan the common ports for CCTV, security alarms and other common offenders.


BDFL - Memuneh
64257 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1781946 14-May-2017 15:55
One person supports this post
Send private message
 
 
 
 


mdf



2287 posts

Uber Geek

Trusted
Subscriber

  # 1781948 14-May-2017 15:59
Send private message

freitasm: The problem is people don't know about port forwarding and network security and they tend to believe what their security installer says. Can't blame this people really.

 

Yep, totally agree with this. I was more thinking about how to reduce the process of checking to something straightforward. Checking if any ports are open isn't hard, but no-one I know (outside Geekzone) would even know how to begin / what to google for instructions.


22346 posts

Uber Geek

Trusted
Subscriber

  # 1781978 14-May-2017 16:26
Send private message

Dumb $h!+ I have heard from security installers.

 

 

 

"They would need to know your IP address _and_ the port its on"

 

"It has a password you set that makes it secure"

 

"You're safe on a dynamic IP address since it changes all the time"

 

 

 

Edit:

 

Also now I know that the things I saw on conveyers were kiwifruit. Had no idea and thought it was some form of factory. Lol.

 

 

 

Wonder what facebook group they saw the site with those ones on, I saw it posted on crappy electrical recently and commented. But friends saw it on some others. For a while some of the cameras were getting really choppy so I guess lots of people were looking and thrashing their upload.

 

 





Richard rich.ms

28145 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  # 1782043 14-May-2017 18:28
2 people support this post
Send private message

I started a blog post about this about a year ago when somebody on here started asking questions..And I updated it about 6 months ago when somebody else was complaining about port forwards and CCTV. Maybe I should actually finish it!

 

 


3282 posts

Uber Geek


  # 1782072 14-May-2017 19:20
Send private message

With what little knowledge I have on this other than sorting a few routing issues with a mates NVR, I take it it's referring to cameras offering a cloud connect solution and or single IP units with the dodgy chinese-english firmware that they open up

 

Rather than a single point such as an NVR being the risky part with its built in password change requirements and NAT and such


3385 posts

Uber Geek

Trusted

  # 1782137 14-May-2017 22:07
Send private message

We get calls every week from customers because our routers are managed so we have to do the port forwards for them. And their security guy telling them to request the port forwards on 80 and 8080 doesnt seem to know about actual security.  

 

I see there are now a few of the newer models of DVR on aliexpress now use a cloud system rather than port forwards so I am thinking of getting customers to request cloud connected models now instead of the ones that require port forwards.





Ray Taylor
Taylor Broadband (rural hawkes bay)
www.ruralkiwi.com

There is no place like localhost
For my general guide to extending your wireless network Click Here




22346 posts

Uber Geek

Trusted
Subscriber

  # 1782142 14-May-2017 22:23
Send private message

I had a cloud one and had a quick play with it.

 

Saw incoming data from the cloud server just by putting in my serial number without even the password being verified so I am not 100% sure how secure they really are. I know with the xmeye ones you can add the DVR to an account by serial number (which there is nothing to check that you really own it in the process) but that only seems to group them.

 

Till someone audits the cloud stuff I have zero faith in that either.





Richard rich.ms

28145 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  # 1782170 15-May-2017 07:12
Send private message

Oblivian:

 

With what little knowledge I have on this other than sorting a few routing issues with a mates NVR, I take it it's referring to cameras offering a cloud connect solution and or single IP units with the dodgy chinese-english firmware that they open up

 

Rather than a single point such as an NVR being the risky part with its built in password change requirements and NAT and such

 

 

It's not just cameras - NVR's are just as risky. The issue also isn't just people seeing your cameras, it's the fact that much of the Chinese hardware has such poor code there are well known backdoors for many brands so is also being utilised for DDOS attacks. 

 

There was also even a famous hack a few years ago using NVR's for bitcoin mining.

 

 


What does this tag do
1018 posts

Uber Geek

Subscriber

  # 1782188 15-May-2017 08:11
Send private message

It's a bit like when your building security company installs a card access system and leaves the card encryption key as the well known default,  hmmm


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel expands 10th Gen Intel Core Mobile processor family
Posted 23-Aug-2019 10:22


Digital innovation drives new investment provider
Posted 23-Aug-2019 08:29


Catalyst Cloud becomes a Kubernetes Certified Service Provider (KCSP)
Posted 23-Aug-2019 08:21


New AI legaltech product launched in New Zealand
Posted 21-Aug-2019 17:01


Yubico launches first Lightning-compatible security key, the YubiKey 5Ci
Posted 21-Aug-2019 16:46


Disney+ streaming service confirmed launch in New Zealand
Posted 20-Aug-2019 09:29


Industry plan could create a billion dollar interactive games sector
Posted 19-Aug-2019 20:41


Personal cyber insurance a New Zealand first
Posted 19-Aug-2019 20:26


University of Waikato launches space for esports
Posted 19-Aug-2019 20:20


D-Link ANZ expands mydlink ecosystem with new mydlink Mini Wi-Fi Smart Plug
Posted 19-Aug-2019 20:14


Kiwi workers still falling victim to old cyber tricks
Posted 12-Aug-2019 20:47


Lightning Lab GovTech launches 2019 programme
Posted 12-Aug-2019 20:41


Epson launches portable laser projector
Posted 12-Aug-2019 20:27


Huawei launches new distributed HarmonyOS
Posted 12-Aug-2019 20:20


Lenovo introduces single-socket servers for edge and data-intensive workloads
Posted 9-Aug-2019 21:26



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.