Allegedly, on or about 7 February 2018, Bob Goodwin sent: > I don't know how I would test for those vulnerabilities > beyond searching for what others have determined. Likewise... Most of us are in that boat. Though, in my case, I could see how insecure my camera was for myself. If you connected as an unauthenticated visitor, it was possible to load the configuration page and see the passwords displayed in the page. And it wasn't possible to block anon access, either. So, about the only use for these cameras would be non-private (such as aimed at wildlife in the great outdoors), with no passwords set at all (it was pointless). Of course, if you set up a camera like that because you wanted to watch animals in the wild, chances are that someone else may have rotated the camera in the wrong direction after they found it. -- [tim@localhost ~]$ uname -rsvp Linux 4.14.14-200.fc26.x86_64 #1 SMP Fri Jan 19 13:27:06 UTC 2018 x86_64 Boilerplate: All mail to my mailbox is automatically deleted. There is no point trying to privately email me, I only get to see the messages posted to the mailing list. Linux cures Windows pains. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
