This IP Camera opens port 9527 and listens for a connection. You can use Telnet to access this IP camera using the root password
Thanks again Don for taking the time to provide your analysis and testing results. This has saved me a
heap of time analyzing the cameras traffic in order to find out what you have shared here!
I would disable the "Network Services" Cloud menu option in this IP Cameras configuration using the web interface for the IP Camera
I agree that users should not use the provided cloud service bundled with the camera unless they have no other option (I just didn't want to give that advice to other owners without having the information to back it up). I got as far as investigating the front end of the cloud service and decided there was to many "unknowns" to use it myself, or to advise other owners either way on using the service/feature. I am glad you have put more light on this aspect of the cameras functionality and inner-workings for everyone to explore further for themselves.
During my testing with the Cloud service enabled in this IP Cameras Network services configuration. I was pinging some IP Address in NJ. Which is a law firm ("Did an IP lookup on it"). Go figure. I couldn't help from seeing this taking place. Because while using this interface you see what this IP Camera is doing in real-time.
> By using other applications or service solutions, there are a range of ways owners can achieve the same functionality (or better) without using the provided cloud service. What I have done and would advise others, is to use the included utilities to alter the cameras initial configuration so it can be then used in conjunction with another application such as
Blue Iris,
VLC,
iSpy, Xeoma or any of the various free and licensed universal alternatives available ...but I will still mention that for any beginners exploring with this camera, the included utilities are still a great place to start and learn what the camera has to offer (and it does have quite a bit to offer). Just be aware that any potentially sensitive use of the camera needing to be broadcast over the internet, is potentially vulnerable unless the configuration is hardened a bit first.
I sure would not port forward port 9527 for this IP Camera to the outside world, unless you really need to.
> I understand that for some owners of the camera, this information might be too much and they don't necessarily want to go deep into the cameras inner workings, they just want to use it for their own purpose... and that's fine.
- So for anyone this applies to, wanting a quick and easy way to work around any potential vulnerability while using the camera connected to the internet... by simply blocking/closing the default service port (9527) from within the connected router/firewall's configuration will eliminate any possibility of connection to it.
- Another fairly simply method of enhancing the security of the camera when connected to the Internet, is by changing the ports (and IP address) from their default allocation. This significantly increases the security of a connection in many situations. For any potential vulnerability to be exploited, far more effort, time and skill is then required.
The list of transport protocol ports and their service names is here.
NOTE: This information applies to many IP devices and for many situations as
ALL Layer 3 devices connected to the Internet are vulnerable to exploitation in some way. The more we understand and share information about the weaknesses in the devices and systems we use, the stronger we can make and improve on them :idea:
(...but probably not for $20 though folks! :laugh
Excellent write up Don!
