Who is ShadowServer.org and why are they on my list?

[Michael James]

All, under Blue Iris 5 I am seeing shadowserver.org on my connections. Who or what is this?

 

[bp2008]

A google search indicates they are an internet security company that scans the internet to see what is out there and potentially vulnerable to threats.



You can reduce the incidence of such events in your log by using a much less common port number (such as something between 10000 and 65535) or you can eliminate them entirely by not forwarding a port to Blue Iris and instead using a vpn.

 

[wittaj]

They are a group searching for vulnerabilities.

You must be using port forward.

Who We Serve | The Shadowserver Foundation

We help governments, network providers, business, finance, academia, and law enforcement agencies identify vulnerabilities and address malicious activity.

www.shadowserver.org

 

[Michael James]

Should I block them?

 

[wittaj]

You need to secure your server so that a malicious actor doesn't get in.

This one is harmless but blocking them doesn't stop others from getting thru.

 

[Michael James]

You need to secure your server so that a malicious actor doesn't get in.

This one is harmless but blocking them doesn't stop others from getting thru.

How do I secure the server?

 

[Michael James]

A google search indicates they are an internet security company that scans the internet to see what is out there and potentially vulnerable to threats.

View attachment 186999

You can reduce the incidence of such events in your log by using a much less common port number (such as something between 10000 and 65535) or you can eliminate them entirely by not forwarding a port to Blue Iris and instead using a vpn.

Just read this..

 

[cyberwolf_uk]

All, under Blue Iris 5 I am seeing shadowserver.org on my connections. Who or what is this?

View attachment 186998

If I checked my BI connections and saw this I would be worried, I only what to see internal IP address I know!!!

 

[wittaj]

Many routers have OpenVPN built in.

How to Secure Your Network (Don't Get Hacked!)

Many camera networks are unsecure, even those installed by professionals. This guide gives basic instruction in how to secure a camera network from the most common types of attacks. Perhaps the most important rule of securing a computer network is to not forward ports to unsecure services...

ipcamtalk.com

VPN Primer for Noobs

The internet is a force of nature; no video surveillance system made was designed to be exposed to those forces.. NEVER FORWARD PORTS to your NVR or Cameras, doing such things not only exposes you to severe security problems, but everyone else on the internet too.. Hackers dont want your video...

ipcamtalk.com

 

[Michael James]

Many routers have OpenVPN built in.

How to Secure Your Network (Don't Get Hacked!)

Many camera networks are unsecure, even those installed by professionals. This guide gives basic instruction in how to secure a camera network from the most common types of attacks. Perhaps the most important rule of securing a computer network is to not forward ports to unsecure services...

ipcamtalk.com

VPN Primer for Noobs

The internet is a force of nature; no video surveillance system made was designed to be exposed to those forces.. NEVER FORWARD PORTS to your NVR or Cameras, doing such things not only exposes you to severe security problems, but everyone else on the internet too.. Hackers dont want your video...

ipcamtalk.com

So this is confusing. I have a Reolink Video Doorbell, purchased last year. In the Reolink camera software on the PC, its configured for a static IP address 192.168.50.151. In the Android software, same thing, shows IP address 151. In the Blue Iris camera software, it shows and configures for 151. When I look in the GT-AX6000 menu under clients, it says Static IP but shows 150 not 151?