Blue iris massive security flaw!!!! All your recordings are visible to all users

[erkme73]

I wasn't going to challenge him on his statement - but both mine (4.0.21-64), my father's (4.0.17-64), and my brother's (3.66.00) were all checked as well. None of us recall ever checking it (let alone, knowing what it does).

So I would tend to agree it's probably defaulted to ON.

 

[iStealth]

I have found a small fix right now until it is fixed

Step 1. Go to your the Directory where you keep your Clips and Archiving

Step 2. Go to that Directory and make a file called index.html

and just place that file into your Path folder in the first image and that way they cant see the directory of the Clips folder until it is fixed.

 

[Zxel]

I have found a small fix right now until it is fixed

Step 1. Go to your the Directory where you keep your Clips and Archiving

Step 2. Go to that Directory and make a file called index.html

and just place that file into your Path folder in the first image and that way they cant see the directory of the Clips folder until it is fixed.

You will get the EXACT same effect by unchecking the "Allow directory listing" option on the web server tab in BI settings. It will not stop the downloading of files.

 

[petrho]

You will get the EXACT same effect by unchecking the "Allow directory listing" option on the web server tab in BI settings. It will not stop the downloading of files.

do you need to restart the service?

 

[iStealth]

do you need to restart the service?

no i didn't have too.

 

[Zxel]

do you need to restart the service?

You shouldn't have to, however, if you're running BI as a service it wouldn't be a bad thing to do...