Posted: 12/12/2013 10:36:51 PM EDT
|
So most of us have seen modern security systems going towards automation and remote (offsite) control. My parents recent had their 13 year old Smith (who was bought out by ADT) system upgraded by their ISP/PSP/TSP. It's really a nifty system. IP cameras, remote arming and disarming, even a little Android based tablet with 3G capability (the entire system has a 3G backup network).I've noticed one flaw/hole in the system though. A Netgear router installed to provide the IP camera/tablet network on a system with the ISP's modem/router combo (with integrated Wifi which can't be turned off) and the existing Apple network that was already present (and currently running in Bridge Mode) when the ISP felt the need to upgrade the modem to a modem/router combo. The Netgear router has no form of encryption on it, has to be running in Bridge mode due to the router in front of it, and is operating behind the firewall. I'm no expert in the matter, but doesn't that leave the Drob on the network and all of the computers (which may or may not contain sensitive info not the hard disks) vulnerable to a wardriver/hacker not to mention the fact someone could monitor the the raw data packets between the tablet and system (which is used to turn the alarm on and off in the house) to arm and disarm the alarm with a network analyzer?
Should I be worried about this little router and if so what is the best way to present this hole to the security system provider? Just seems like a hole in the system to me that could lead to some major security issues. |
|
So basically what you're saying between all the fluff, is that you have a wireless router not using any kind of encryption with an open wifi network running on your internal network....and you're wondering if it's insecure?
Yes. It is insecure. Try connecting to it and see if you can hit the internet from it. If so, you might reconsider who you use as a security provider if they can't even secure their own security system. That is no tiny flaw. |