Last woot, hackability issue came up but left unchallenged:
fazeshift wrote:You may wish to read this article before considering:
http://it.slashdot.org/story/13/01/29/0111238/58000-security-camera-systems-critically-vulnerable-to-attackers
glenthompson wrote:Seems that these systems have their own security issues. https://community.rapid7.com/community/metasploit/blog/2013/01/28/ray-sharp-cctv-dvr-password-retrieval-remote-root
Allows an attacker to control the dvr and monitor you and provides access to your internal network.
Forbes picked up on this, and the responses from the companies varied from "We've got different, better firmware (like Zmodo) and disabled UPnP by default (i.e., URMET)" to "We're looking into it" (like Swann) in the January article
http://www.forbes.com/sites/andygreenberg/2013/01/28/more-than-a-dozen-brands-of-security-camera-systems-vulnerable-to-hacker-hijacking/
and the point raised of disabling UPnP, although Swannn in their instruction manual
http://www.showuhow.com/VIG_Files/VIGFiles/8750_32201112033PMDVR4_Alpha_D12_M12C16031210E_web.pdf
said "Basically, UPnP is the ultimate shortcut when setting up your home network. The big benefit of UPnP is that you don't have to worry about port forwarding, which is one of the most time consuming and difficult stages of configuring your network."
Then, says that if your router supports UPnP, then says to check the router's instructions to enable it. The next paragraph, in boldface (really), says "Enabling UPnP will have a minor effect on your network security.", saying next "If your network is free from malware,... then UPnP will improve the security of your network. This happens because the ports that programs and devices use while they're open are automatically closed when the program is closed or the device shut down. On the other hand, if UPnP is enabled once the security is already compromised (that is, a device or computer on the network is infected by some kind of malware) then UPnP will reduce your networks (sic) ability to quarantine suspect programs by allowing them outbound access throught the router's firewall."
The next paragraph for port configuration points out the need to forward Media Port (default 9000) and WEb Port (default is 80, but switch to something else like 85 or 3100) if you want remote access.
Thus, since I'm not good at networking, I'm asking others to comment on this. However, the upshot I get (unless Swann can answer this on a weekend) is that if you're going to buy this, disable UPnP and don't bother with the remote access until we have a clearer answer on this hackability.
For more info on installation (and the page that led to the pdf of the manual), go to the instruction page, where they have 16 support videos for installation (that I haven't viewed yet since I'm exhausted from looking up this topic):
http://www.showuhow.com/Home/Pre_sale_widget/Pre_sale_widgetSwannCommuncationsInc/tabid/6760/language/en-US/Default.aspx
Oh, also the product page for the cameras
http://www.swann.com/s/products/view/?product=1308
including manual
http://www.swann.com/webfiles/download/1638ADS-180_M180CAM150411E.pdf
Oh, and $219.99 tonight.
Whew!
