cybergibbons Posted March 6, 2016 Author Share Posted March 6, 2016 From what I've gathered in reading, no home router is safe without an outbound firewall weather it has a dvr connected or not. Port forwarding a dvr seems to create a flag for an easy entry route for the automated hackers? Modern plug and play dvrs are just as vulnerable... HIK dvrs are ok? Hmm why tell the customer that you are creating a vulnerability in their network when the network already has a vulnerability with all these automated hacking things from abroad...unles you are port forwarding which seems old hat and not done much now. Please enlighten. I can hopefully clarify a bit. Your own computer can be used as a pivot as well. It probably would be used as a pivot if you are running XP, with no firewall, no antivirus, out-of-date software, and you didn't care when it started crawling to a halt and the cursor started moving of it's own accord. That's pretty much what a DVR is - out of date OS, with no firewall, no antivirus, no updates, and you can't actually see what it is doing. Personally, I would make sure that I wasn't responsible for security issues with the DVR. I don't know the solution though, it's something we are working on in the IT security world. It's way too complex for people to get right at the moment. And yes, Hikvision DVRs seem above average. They respond to issues, actually issue firmware updates for most gear, and there is a clear trend showing that they are improving. Quote I have a blog, some of which is about alarm security and reverse engineering:http://cybergibbons.com/ Link to comment Share on other sites More sharing options...
james.wilson Posted March 6, 2016 Share Posted March 6, 2016 cg can you give a best practice tsi members should be doing? to mitigate the issues as much as possible Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
cybergibbons Posted March 6, 2016 Author Share Posted March 6, 2016 cg can you give a best practice tsi members should be doing? to mitigate the issues as much as possible Yeah, happy to write something up. Short of time at the moment. Quote I have a blog, some of which is about alarm security and reverse engineering:http://cybergibbons.com/ Link to comment Share on other sites More sharing options...
james.wilson Posted March 6, 2016 Share Posted March 6, 2016 no I think its best you prioritise it. The membership here needs guidance and thinks your playing all for your own benefit? seen as you rarely frequent here till you have new info. Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
Adi Posted March 7, 2016 Share Posted March 7, 2016 Would be good, ive been thinking i should be teaching myself VPN, am i correct? Quote I really can't be ar**** with it anymore. Link to comment Share on other sites More sharing options...
PeterJames Posted March 8, 2016 Share Posted March 8, 2016 no I think its best you prioritise it. The membership here needs guidance and thinks your playing all for your own benefit? seen as you rarely frequent here till you have new info. You probably didnt mean to come across this way, but I though the above comment was a bit rude James, Andy gives up his time FOC here I think we should be grateful for what we get. I agree it is important but his part is to tell us there is a problem, not necessarily give us all the answers as well. Quote Link to comment Share on other sites More sharing options...
james.wilson Posted March 8, 2016 Share Posted March 8, 2016 I wasn't meaning it to come across that way. I prefer to know about issues etc. If it's read that way then I apologise. Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment Share on other sites More sharing options...
PeterJames Posted March 8, 2016 Share Posted March 8, 2016 I wasn't meaning it to come across that way. I prefer to know about issues etc. If it's read that way then I apologise. You were in CEO Mode LOL Quote Link to comment Share on other sites More sharing options...
norman Posted March 8, 2016 Share Posted March 8, 2016 (edited) CEO? I hate Americanism's, it's an alarm company not *####* Coca Cola. Edited March 8, 2016 by PeterJames public swearing Quote Nothing is foolproof to a sufficiently talented fool. Link to comment Share on other sites More sharing options...
PeterJames Posted March 8, 2016 Share Posted March 8, 2016 CEO? I hate Americanism's, it's an alarm company not ******* Coca Cola. Thats his real title norm, Chief Execs are allowed in the UK as well as the US Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.