Blue iris massive security flaw!!!! All your recordings are visible to all users

I wasn't going to challenge him on his statement - but both mine (4.0.21-64), my father's (4.0.17-64), and my brother's (3.66.00) were all checked as well. None of us recall ever checking it (let alone, knowing what it does).

So I would tend to agree it's probably defaulted to ON.
 
I have found a small fix right now until it is fixed

Step 1. Go to your the Directory where you keep your Clips and Archiving
attachment.php


Step 2. Go to that Directory and make a file called index.html
attachment.php

and just place that file into your Path folder in the first image and that way they cant see the directory of the Clips folder until it is fixed.
 

Attachments

  • path.png
    path.png
    21.8 KB · Views: 200
  • path2.png
    path2.png
    31.1 KB · Views: 198
  • Like
Reactions: fenderman and Mike
iStealth said:
I have found a small fix right now until it is fixed

Step 1. Go to your the Directory where you keep your Clips and Archiving

Step 2. Go to that Directory and make a file called index.html

and just place that file into your Path folder in the first image and that way they cant see the directory of the Clips folder until it is fixed.
Click to expand...

You will get the EXACT same effect by unchecking the "Allow directory listing" option on the web server tab in BI settings. It will not stop the downloading of files.
 
You must log in or register to reply here.
Top Bottom