[olug] Are you using a Foscam?
Tony Gies
tony.gies at gruppe86.net
Thu May 8 18:57:26 CDT 2014
Obligatory reminder never to put little black box gizmos with built in
web servers on your network and exposed to the Internet without some
kind of access control beyond whatever half-ass HTTP Basic Auth
gateway they built in with backdoor passwords and no rate limiting.
Easy ways to do this:
- Put your Internet of Poorly Specified Things in some kind of
isolated network and VPN to it
- Set up nginx or similar to act as a reverse proxy to the web
interface -- in doing this, you can require additional authentication
(I like x509 client certificates and TOTP codes myself), wrap TLS
around things that don't have it built in, mitigate common exploits
with policies on the web server, etc.
Tony Gies <tony.gies at gruppe86.net>
Technical Projects Director
gruppe86 | IT Consulting, Software Development, Systems Integration
On Tue, May 6, 2014 at 9:43 AM, Craig Wolf <wolfout101 at gmail.com> wrote:
> That just creeped me out! Glad our kids are older now...
>
> Craig Wolf
> (402)990-3010
>
>
> On Tue, May 6, 2014 at 9:04 AM, Tom Fritz <tfritz at me.com> wrote:
>
>>
>> http://www.ehackingnews.com/2014/05/baby-monior-device-hacked.html
>>
>> _______________________________________________
>> OLUG mailing list
>> OLUG at olug.org
>> https://lists.olug.org/mailman/listinfo/olug
>>
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://lists.olug.org/mailman/listinfo/olug
More information about the OLUG
mailing list