Author Topic: Security  (Read 2483 times)

flusser

  • Newbie
  • *
  • Posts: 1
    • View Profile
Security
« on: April 03, 2009, 04:14:02 PM »
Is it right, that the ip adress of my camera is send to you?
Is it right, that the password that is necessary to login is send to you?
Anybody that knows my user/password combination can watch my videostream without knowing my ip adress or port?
Is ist right, that at least YOU (and your employees) can easily watch ALL videostreams? :o
What are you doing to protect the username/password combinations on your server ?
do you run any bruteforce protection on your server ?


Jay

  • Administrator
  • Hero Member
  • *****
  • Posts: 1096
    • View Profile
Re: Security
« Reply #1 on: April 03, 2009, 05:18:01 PM »
Your login and password are never sent to the server, a SHA-1 hash is sent instead. Of course, if someone else does know your webcam's login and password, they will be able to access it, but the same could be said for every other account you have on the Internet: E-mail, online banking, etc.
 
 These concerns have been brought up and discussed on the forum before.  A thread addressing these issues is at http://skjm.com/forum/index.php?topic=86.0.  That thread also has more information concerning the SHA-1 hash.