Didn't they just have a security incident where people could access other people's full unifi account including devices?
Correct but that's only if you enable the remote connection through ubiquity, if you have that turned off its all local.
Ah, I wasn't aware there was an option to keep it local. Does that keep your entire site from being remote manageable or just the camera system?
My understanding is that it's all or nothing, but I'm not complete sure.
The security issue you mentioned I think only affected when they handle access to the cameras. I think you can set up a VPN and then turn off remote access on the NVR, so it seems possible to avoid that issue.
That being said that's a lot of work for something they should have handled securely in the first place and doesn't give me much confidence about their security in general.
It's an interesting read since the cause of the issue was something to do with a database change that caused an overlap of groups.
Didn't they just have a security incident where people could access other people's full unifi account including devices?
Correct but that's only if you enable the remote connection through ubiquity, if you have that turned off its all local.
Ah, I wasn't aware there was an option to keep it local. Does that keep your entire site from being remote manageable or just the camera system?
My understanding is that it's all or nothing, but I'm not complete sure.
The security issue you mentioned I think only affected when they handle access to the cameras. I think you can set up a VPN and then turn off remote access on the NVR, so it seems possible to avoid that issue.
That being said that's a lot of work for something they should have handled securely in the first place and doesn't give me much confidence about their security in general.
It's an interesting read since the cause of the issue was something to do with a database change that caused an overlap of groups.