My Solo4K has a wide open hole

Profoundman

Inactive User
Joined
Jan 14, 2013
Messages
21
Reaction score
4
Hello all,


I just tried my host IP on any of my desktop and the box network share is wide open
I can access the drive and can even make changes to the file without authentication

\\192.169.1.X <-- My Solo 4K IP and boom I see all the files.
I've changed the root password and still the same. I am not asked for authentication.

How can I disable this hole? anyone with access to my network can have access to my box.

Thank you.
 
Hello all,


I just tried my host IP on any of my desktop and the box network share is wide open
I can access the drive and can even make changes to the file without authentication

\\192.169.1.X <-- My Solo 4K IP and boom I see all the files.
I've changed the root password and still the same. I am not asked for authentication.

How can I disable this hole? anyone with access to my network can have access to my box.

Thank you.

Put a password on the box. done with telnet
 
Did you repeat the password twice

Yes done that and the password works when I want to FTP or telnet on the box or when I use openWebif

However when I put the IP \\IPaddress on any of my computer I can access the drive without any authentication

And what makes it scary is that I can even change the files on the root folder.
 
did you set a username and password and port in WebIF as well
 
did you set a username and password and port in WebIF as well

I've only enabled authentication from the webif plugin settings. I don't see a place to set username and password.

Regards,
 
username is always root password set as @Ferret explained and then in webif specify a port and enable http authentication
 
Last edited by a moderator:
username is always root password set as @Ferret explained and then in webif specify a port and enable http authentication

Digi247
Thank you for your interest in assisting. My issue is not locking the webif. The webif currently uses the new password I've supplied and does prompt me for user name and password. My issue is that both my Internal Harddrives are accessible for edit when you just got to any windows client and provide the path to the box. Aka \\Ipaddress. How can I lock it so that when someone does it, it prompt them for logging. I am using OpenATV 6.0

Thank you.
 
Last edited by a moderator:
Webif is exactly that Web Interface which is what you are doing when you type in the ip address in the appropriate web browser, mine stays locked if i just type in for example 192.168.0.20 then i cannot access my receiver if i type 192.168.0.20:100 as an example if i set that then i can access it.

But i can also access it over any windows network on the home network without any user and password to actually block this completely you would have to disable the NFS Service option in the image which is what allows you to access from a networked PC.

Blue Button - Network - Network Options - NFS - Stop
 
Webif is exactly that Web Interface which is what you are doing when you type in the ip address in the appropriate web browser, mine stays locked if i just type in for example 192.168.0.20 then i cannot access my receiver if i type 192.168.0.20:100 as an example if i set that then i can access it.

But i can also access it over any windows network on the home network without any user and password to actually block this completely you would have to disable the NFS Service option in the image which is what allows you to access from a networked PC.

Blue Button - Network - Network Options - NFS - Stop

Hello Digi247

I've tried that and disabled the NFS and rebooted the box and still the same.
Box drives remain wide open.

Very strange
 
Very strange indeed as on mine if i deselect NFS i no longer have access to the box via the home network
 
Back
Top