Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Unsecured IP Cameras Accessible To Everyone

CmdrTaco posted more than 3 years ago | from the big-brother-is-you dept.

Privacy 146

Orome1 writes "In the last couple of decades, we have become so accustomed to the idea that the public portion of our everyday life is watched and recorded — in stores, on the street, in institutions — that we often don't even notice the cameras anymore. Analog surveillance systems were difficult to hack into by people who lacked the adequate knowledge, but IP cameras — having their own IPs — can be quite easily physically located and their stream watched in real-time by anyone who has a modicum of computer knowledge and knows what to search for on Google."

cancel ×

146 comments

Sorry! There are no comments related to the filter you selected.

I've hacked into... (-1)

Anonymous Coward | more than 3 years ago | (#34919528)

I've hacked into the stream of the camera's at the gay bathhouse that CmdrTaco and kdawson frequent. That's how I know he has a tiny micropenis.

Re:I've hacked into... (2)

JonySuede (1908576) | more than 3 years ago | (#34919584)

so you like to hack into gay bar to watch penises, as they says : each to is own !

Re:I've hacked into... (3, Funny)

fridaynightsmoke (1589903) | more than 3 years ago | (#34919670)

so you like to hack into gay bar to watch penises, as they says : each to is own !

What a dick. If they find out, he's screwed.

Re:I've hacked into... (1)

Anonymous Coward | more than 3 years ago | (#34919922)

so you like to hack into gay bar to watch penises, as they says : each to is own !

What a dick. If they find out, he's screwed.

Once you got the hang of it, you'll be a happy cork soaker!

Re:I've hacked into... (0)

Anonymous Coward | more than 3 years ago | (#34919962)

So what you're saying is that their gay bathhouse has an ultra-high definition camera?

Re:I've hacked into... (1)

ilsaloving (1534307) | more than 3 years ago | (#34920394)

Don't be such a cheapskate. Pay the bathhouse admission fee like everyone else if you want to make use of the... er.... facilities.

Nice one (5, Informative)

Peach Rings (1782482) | more than 3 years ago | (#34919546)

Good find 2002.

Re:Nice one (1)

the linux geek (799780) | more than 3 years ago | (#34919558)

Yeah, seriously. I think this even got a Slashdot article from around then.

Re:Nice one (0)

Anonymous Coward | more than 3 years ago | (#34919576)

But this is NEW! You couldn't search on Bing for them back then.

Re:Nice one (5, Informative)

Solid StaTe_1 (446406) | more than 3 years ago | (#34919684)

from 2005... but whatever. it's old news

http://it.slashdot.org/article.pl?sid=05/01/09/1411242 [slashdot.org]

Re:Nice one (5, Informative)

PatPending (953482) | more than 3 years ago | (#34919784)

Re:Nice one (1)

Anonymous Coward | more than 3 years ago | (#34920132)

You're doing it wrong. If you want to karma whore, you go through there and start posting the +5s. There's fuckin' room to move as a fry cook. I could be manager in two years. King. God.

Re:Nice one (1)

PatPending (953482) | more than 3 years ago | (#34921374)

I had bookmarked that post when I originally read it, so there was absolutely no need for me to "go through there" for any other reason than to contribute to this discussion. To presume otherwise is a reflection of your personal prejudice.

Re:Nice one (5, Informative)

goodmanj (234846) | more than 3 years ago | (#34920100)

Here's the deal though: if it's been six years and nobody's bothered to close these security holes --- and the searches still work, I just tried --- then *THAT* is news.

Finding a security exploit is not big news. Leaving a security hole unfixed for six years *is* big news, especially if it's done by companies for whom "security" is literally their middle name.

Re:Nice one (3, Insightful)

Local ID10T (790134) | more than 3 years ago | (#34920196)

Here's the deal though: if it's been six years and nobody's bothered to close these security holes --- and the searches still work, I just tried --- then *THAT* is news.

Finding a security exploit is not big news. Leaving a security hole unfixed for six years *is* big news, especially if it's done by companies for whom "security" is literally their middle name.

Who says its a security hole?

Do I care if the entire world can look thru my camera? Does it in any way effect the operation of the camera or of the security system attached to it? No.

Now if the camera is pointed at something I don't want the rest of the world to see... maybe I should have sprung for a system that at least requires a password...

Re:Nice one (5, Interesting)

cusco (717999) | more than 3 years ago | (#34920302)

Does it in any way effect the operation of the camera or of the security system attached to it?

Actually it does. Most cameras have a limit of how many simultaneous connections are allowed. Exceed that limit and the owner might have to reboot the camera in order to access their own video feed. Bad news if that camera's looking at the door of your emergency room or your unmanned warehouse half a continent away.

Re:Nice one (1)

camperdave (969942) | more than 3 years ago | (#34920440)

If it can supply a video feed, then perhaps a video feed can be supplied to it, overriding what the camera itself is sending. Loop in yesterday's stream a-la Speed [imdb.com] and viola... trackless break-in opportunity.

Re:Nice one (0)

Anonymous Coward | more than 3 years ago | (#34920568)

You don't need supply the camera with a video feed, you only need to corrupt it into being the man-in-the-middle for you so that it redirects feed request to your server instead of the camera's internal server.

Remember that almost all of the cameras which you can find/see via a Google search are there because they are running an internal webserver to respond to feed requests and then remember the black hat presentation from some years back when they hacked an HP printer via security holes in the webserver and made it load and run their own software using the HP printer's java-clone VM (so that the printer would launch an attack on other computers inside the network). It may sound like an impossible plot device from a Hollywood movie, but these IP-camera vendors focus all of their security thoughts at the NVR side and mostly neglect the actual cameras.

Re:Nice one (0)

Anonymous Coward | more than 3 years ago | (#34920558)

Does it in any way effect the operation of the camera [...]?

I was about to launch into the usual "effect vs. affect" routine, but that question does actually make sense the way it's framed. So: yes, it does effect the operation of the camera, especially those that can be moved remotely through the web interface.

Old news is old. (1)

mcmonkey (96054) | more than 3 years ago | (#34919620)

NPR had a story on using an iPhone app to surf surveillance cameras around the world.

Re:Nice one (0)

BobZee1 (1065450) | more than 3 years ago | (#34919946)

i agree

Re:Nice one (1)

drunken-yeti (1874620) | more than 3 years ago | (#34920038)

No doubt

Re:Nice one (1)

ehrichweiss (706417) | more than 3 years ago | (#34920050)

9/11/2001: I was working for a newspaper and since most of the usual communication lines were jammed, etc. I was put on the mission to find an open webcam in NYC. I found one on top of Empire State Building that gave us a fairly clear shot that we used for our piece on the subject. That was 2001 so this is ooooooold news..

Re:Nice one (2)

Dunbal (464142) | more than 3 years ago | (#34920130)

We found one on a passenger jet over NYC but that didn't turn out so well.

Also on Ars Technica (4, Informative)

Max Romantschuk (132276) | more than 3 years ago | (#34919566)

Re:Also on Ars Technica (1)

RealGrouchy (943109) | more than 3 years ago | (#34920994)

Worth a read.

Except for this inflammatory part:

Although I was only watching the video [of a set of three red-light cameras that I pinpointed to an intersection in eastern Texas], the fact was that I had accessed a set of public security cameras that were left wide open for anyone to get in.

Because he accessed the feed through the back door, he probably didn't see the welcome mat on the front door. Many jurisdictions put traffic cameras (which are not the same as 'security cameras') online intentionally so people can plan their commute for the day.

Heck, over here the municipality has a Google Maps Mashup of their webcams [ottawa.ca] for your viewing pleasure.

- RG>

Suspect link? (0)

Anonymous Coward | more than 3 years ago | (#34919574)

Any reason the link in the summary should trigger an OpenDNS block for conficker or some other vulnerability/issue????

Re:Suspect link? (1)

Securityemo (1407943) | more than 3 years ago | (#34919638)

Google Safe Browsing and PhishTank (operated by OpenDNS) lists it as clean...

This is so old. (4, Informative)

Securityemo (1407943) | more than 3 years ago | (#34919580)

And there's lots of other things you can find. Here are some lists: http://www.hackersforcharity.org/ghdb/ [hackersforcharity.org]

And toast always drops butter side down (1)

doperative (1958782) | more than 3 years ago | (#34919592)

"Unsecured IP Cameras Accessible To Everyone"

Well, doh, enable a good password and run them over SSH .. !!!

Re:And toast always drops butter side down (0)

Anonymous Coward | more than 3 years ago | (#34920406)

goooooolden baby!

Re:And toast always drops butter side down (1)

hedwards (940851) | more than 3 years ago | (#34920520)

I know you're joking, but they really shouldn't be used on a publicly accessible network. The building I was working at had analog ones which were on their own set up. I'm not sure why it would be such a deal to set up those IP cameras to use their own private network. Which they really should be anyways because if you care about it enough to point a camera at it, then you should care enough about it to not want other network use to affect it.

It's like those idiots that use wireless cameras. They're easily snooped on and susceptible to interference.

tons of cams are available. (5, Informative)

Zurk (37028) | more than 3 years ago | (#34919654)

heres a long list copied from various parts of the web for searches you can try :

allintitle: "Network Camera NetworkCamera" Network cameras
intitle:Axis 2400 video server Mostly security cameras, car parks, colleges, clubs, bars, etc.
intitle:axis intitle:"video server" Mostly security cameras, car parks, colleges, bars, ski slopes etc.
intitle:"EvoCam" inurl:"webcam.html" Mostly European security cameras
intitle:"Live NetSnap Cam-Server feed" Network cameras, private and non private web cameras
intitle:"Live View / - AXIS" Mostly security cameras, car parks, colleges etc.
intitle:"LiveView / - AXIS" | inurl:view/view.shtml Mostly security cameras, car parks, colleges etc.
intitle:liveapplet Mostly security cameras, car parks, colleges, clubs, bars etc.
intitle:snc-cs3 inurl:home/ Mostly security cameras, swimming pools and more etc.
intitle:"snc-rz30 home" Mostly security cameras, shops, car parks
intitle:snc-z20 inurl:home/ Mostly security cameras, swimming pools and more etc.
intitle:"WJ-NT104 Main" Mostly security cameras, shops, car parks
inurl:LvAppl intitle:liveapplet Mostly security cameras, car parks, colleges etc.
inurl:indexFrame.shtml "Axis Video Server" Mostly security cameras, car parks, colleges etc.
inurl:lvappl A huge list of webcams around the world, mostly security cameras, car parks, colleges etc.
inurl:axis-cgi/jpg Mostly security cameras
inurl:indexFrame.shtml Axis Mostly security cameras, car parks, colleges etc.
inurl:"MultiCameraFrame?Mode=Motion" Mostly security cameras, pet shops, colleges etc.
inurl:/view.shtml Mostly security cameras, car parks, colleges etc.
inurl:/view/index.shtml Mostly security cameras, airports, car parks, back gardens, traffic cams etc.
inurl:viewerframe?mode= Network cameras, mostly private webcams etc.
inurl:"viewerframe?mode=motion" Network cameras
inurl:ViewerFrame?Mode=Refresh Mostly security cameras, parks, bird tables etc.

Other searches:
control/userimage.html liveapplet inurl:indexframe.shtml inurl:"view/index.shtml" inurl:"view/indexFrame.shtml" inurl:view/view.shtml
inurl:/view/view.shtml?videos= inurl:ViewerFrame?Mode= inurl:ViewerFrame?Mode=Motion inurl:ViewerFrame?Mode=Refresh site:.viewnetcam.com -www.viewnetcam.com /view/index.shtml

In Title:
intitle:"live view" intitle:axis
intitle:"EvoCam" inurl:"webcam.html"
intitle:"i-Catcher Console - Web Monitor"
intitle:"Live NetSnap Cam-Server feed"
allintitle:liveapplet
intitle:liveapplet
intitle:"netcam live image"
intitle:"snc-rz30 home"
intitle:"WJ-NT104 Main"

In URL:
inurl:axis-cgi/jpg
inurl:indexFrame.shtml Axis
inurl:indexFrame.shtml "Axis Video Server"
inurl:lvappl live webcams
inurl:LvAppl intitle:liveapplet
inurl:"MultiCameraFrame?Mode=Motion"
inurl:/view:shtml
inurl:/view/index.shtml
inurl:view/indexframe.shtml
inurl:view/view.shtml
viewerframe?mode=
inurl:"viewerframe?mode=motion"
inurl:ViewerFrame?Mode=Refresh

Two searches in one order:
intitle:"live view" intitle:axis (two searches in one order)
intitle:axis intitle:"video server"
intitle:liveapplet inurl:LvAppl
intitle:"Live View / - AXIS" | inurl:view/view.shtml
intitle:start inurl:cgistart

Combination:
camera linksys inurl:main.cgi
Display Cameras intitle:"Express6 Live Image"
intitle:"active webcam page"
intitle:"EvoCam" inurl:"webcam.html"
inurl:LvAppl intitle:liveapplet
intitle:"Live View / - AXIS"
intitle:liveapplet inurl:LvAppl
intitle:"my webcamXP server!" inurl:":8080"
intitle:"Network Camera" inurl:ViewerFrame
intitle:snc-z20 inurl:home/
intitle:snc-rz30 inurl:home/
intitle:"toshiba network camera - User Login"
intitle:"Live View / - AXIS" | inurl:view/view.shtml
tilt intitle:"Live View / - AXIS" | inurl:view/view.shtml
intitle:"WJ-NT104 Main Page"

Sometimes your order gives hundreds of URLs. You can restrict your search by adding a country, a specialized URL or another message:
Add: site:nl and your search is restricted to nl (The Netherlands). Like: intitle:"live view" intitle:axis site:nl
Other examples:
site:de (Restricted to de (Germany)
site:be (Restricted to be (Belgium)
site:com (Restricted to com (com)
site:net (Restricted to net (net)

CAMERAS
Axis Cameras
indexFrame.html axis
intitle:"Live View / - AXIS"
intitle:"Live View / - AXIS 206M"
intitle:"Live View / - AXIS 210"
intitle:Axis 2400 video server
intitle:axis intitle:"video server"
"adding live video to one of your own pages a very easy task with an AXIS 2100 Network Camera"
"Live web imaging unleashed"
"Your browser has JavaScript turned off.For the user interface to work effectively"

Canon Cameras
sample/LvAppl/

MOBOTIX Cameras
control/userimage.html

JVC Cameras
"(c)copyright 1999-2003 VICTOR COMPANY OF JAPAN, LIMITED. All rights reserved"
"V.Networks [Motion Picture(Java)"
"Control the Pan/Tilt and move to the Preset Position"

FlexWatch Cameras /app/idxas.html
"Saving & Retrieving Mode"

Panasonic Cameras /ViewerFrame?Mode=Motion

Sony Cameras
intitle:"sony network camera snc-ml?
intitle:"sony network camera snc-pl?
intitle:snc-cs3 inurl:home/
intitle:snc-z20 inurl:home/
intitle:"snc-rz30 home"
intitle:snc-rz30 inurl:home/

Toshiba Cameras
"TOSHIBA Network Camera - User Login" /home/homeJ.html

WebcamXP Software
"my webcamXP server!"

Re:tons of cams are available. (-1)

Anonymous Coward | more than 3 years ago | (#34919768)

Way to pollute the results!

Re:tons of cams are available. (0)

Anonymous Coward | more than 3 years ago | (#34919812)

Way to not understand inurl and intitle.

Re:tons of cams are available. (1)

Anonymous Coward | more than 3 years ago | (#34919824)

So which ones are the open live porn chat cams?

Re:tons of cams are available. (4, Interesting)

cusco (717999) | more than 3 years ago | (#34919892)

Just an FYI, as someone who does this for a living, most of our competition leaves their cameras at the factory default usernames and passwords. Try root, admin or Admin as usernames, and root, admin, pass, 1234, 12345 or just plain blank as passwords. Some of the manufacturers are getting a clue and requiring a password be created on first login in the newer firmware, but most of these bozos are just putting in the old factory default again.

Glad I work for one of the few security companies that doesn't have its head up its collective ass. I'd really hate working for one of the Big Three.

Re:tons of cams are available. (0)

Securityemo (1407943) | more than 3 years ago | (#34920010)

You've got to be kidding.

Re:tons of cams are available. (1)

Anonymous Coward | more than 3 years ago | (#34920144)

Horrible practice, however I would imagine that many of these jobs are contract installs. If no one is around to create and keep the password I can understand how some installers would not change it as it then becomes their obligation to store the password. More of a headache, but as a security business this is laughable!

Re:tons of cams are available. (1)

Securityemo (1407943) | more than 3 years ago | (#34920246)

And why would a computer security firm contract install webcameras? If it's one of those CCTV replacement systems I've read about (and not just webcameras existing for some other reason), wouldn't you get a package deal with remote monitoring and management from the "physical security" firm? Unless they bought one or rigged up one themselves and thought "oh, we'll handle it ourselves".

But still, it sounds completely insane. I knew the IT security industry was full of crazy, but this is just surreal. Inside the actual offices, or just the "parking lot"/other such areas?

Re:tons of cams are available. (0)

Anonymous Coward | more than 3 years ago | (#34920586)

Remember many places has a policy of choosing the lowest bidder for any contract. This is especially true for government offices, the anti-government/anti-tax politicians demand it to minimize spending.

Re:tons of cams are available. (1, Offtopic)

cusco (717999) | more than 3 years ago | (#34920264)

What amazes me are the IT staffers that actively avoid any knowledge or involvement with the same system that secures their server room and data closets. I had one fellow actually say, "I don't know anything about that server, and I don't want to know anything about that server." When I kept talking he learned that he had a Win2K SP2 system on their network with an unpatched SQL2000 database, no backup, no virus scan, and Internet access that auto-logged on as Administrator. We have to clean up crap like that left behind by our competition all the time (although that was admittedly the worst).

Re:tons of cams are available. (2)

Securityemo (1407943) | more than 3 years ago | (#34920384)

I've never done this sort of work, but I suppose they operate on or have degenerated to the principle "if we just keep telling the management what they want to hear and don't expose too much incompetence in the IT staff we get paid with a minimum of fuzz, even if we could technically fix this"?

How do you guys handle situations like that? Ever had any problems when actually telling the management/client? Or is it all cool and professional?

Re:tons of cams are available. (1, Insightful)

h4rr4r (612664) | more than 3 years ago | (#34920216)

For the most part these cameras are looking at parking lots and other boring crap, why secure it at all?

Oh Noes the bad guys can look at our empty parking lot at night!

Re:tons of cams are available. (3, Interesting)

hedwards (940851) | more than 3 years ago | (#34920564)

Because then they can figure out ways of obscuring themselves more effectively. Which is the problem, additionally you frequently run into dome cameras where you're not sure where exactly they're pointed. With practice you can see very quickly, but it's a bit of a risk.

Re:tons of cams are available. (1)

WillDraven (760005) | more than 3 years ago | (#34921094)

Offhand I would say the primary concern would be that if the criminals know where the security cameras are looking then they would know where they aren't looking as well.

Re:tons of cams are available. (0)

Anonymous Coward | more than 3 years ago | (#34920344)

Shhh! Those are also the admin usernames and passwords used by every major ISP on installed network switches. With those you can intercept any IP traffic!!

No. Actually I am not kidding you, only exageration is "every", it is actually only _most_ ISPs that use default.

Re:tons of cams are available. (1)

Dunbal (464142) | more than 3 years ago | (#34920364)

Ahh see, now looking in on an open webcam is one thing - with a good lawyer you probably wouldn't make it to court. Trying to break into one that is secured by a password (even a shitty password) is criminal pretty much everywhere.

Where did you say you worked again? Failing that, who was the "competition"? I know that you know these are rhetorical questions, but if you DID get caught one day I'm sure you wouldn't be able to hide behind the "security researcher" excuse for long.

Re:tons of cams are available. (1)

guruevi (827432) | more than 3 years ago | (#34920456)

But if you knew the username and password, couldn't you claim you were an authorized user - after all, you have a valid username and password.

Re:tons of cams are available. (0)

Anonymous Coward | more than 3 years ago | (#34920172)

I saw this years ago, and did a search for a few of those strings and already ne'er-do-wells were gaming the search results to push porn/crapware/rubbish. Much in the same way you will find a huge torrent of bullshit if you search for "Index of" "mp3" etc.

The first time wasn't so bad, around 8-10 years ago, you'd find a few open cams, pan/tilt around and watch people milling about a university campus etc. Then I saw a story about it 2-3 years ago, tried it again and most of the search results were spam. Eventually you'll find something, but you have to work a bit harder and the results aren't that great. If you think you're going to find a security camera pointed into a girls dorm-room window then you'll be sorely disappointed :)

Re:tons of cams are available. (1)

silverglade00 (1751552) | more than 3 years ago | (#34920538)

you will find a huge torrent of bullshit if you search for "Index of" "mp3"

To be fair, that's pretty much what the kiddies are wanting when they do that search.

Re:tons of cams are available. (1)

drpimp (900837) | more than 3 years ago | (#34920348)

How about a link to a database of the same and more ... Google Hacking Database [hackersforcharity.org]

Re:tons of cams are available. (1)

Frangible (881728) | more than 3 years ago | (#34920442)

These give too many bad links, or links to spam sites... the actual webcams are a minority of the results returned.

But far be it from me to complain and not offer a better solution, so I give you:

inurl:"/jpg/" | "/mjpg/" | "/axis-cgi/" ?inurl:"image.cgi" | "video.cgi" | "video.mjpg" filetype:mjpg | filetype:cgi

Not perfect, but almost all the results returned are working cams, though it is limited to Axis cams.

Re:tons of cams are available. (1)

PopeRatzo (965947) | more than 3 years ago | (#34920482)

heres a long list copied from various parts of the web for searches you can try :

A friend of mine said that one of those cameras was in the bathroom of a super-model.

I guess she must be an athlete because he said he saw her box.

Cameras Everywhere (4, Interesting)

NReitzel (77941) | more than 3 years ago | (#34919664)

At the University where I work, there are cameras in all of the lobby areas and in many of the labs. They are publicly accessible, for the most part - non-port 22 but otherwise unsecured. However, because the University wants to be able to use the pictures in legal proceedings, all the camera areas are clearly marked with "Video Surveillance" stickers.

I can't speak for anyone else, but it's not that hard to just not do funky things in these areas.

Yes, it intrudes on my sphere, but I have no expectation of privacy at work, or on the street. If I want to do something private, I go somewhere private. It's not that much of a burden, at least to me.

Re:Cameras Everywhere (0)

Anonymous Coward | more than 3 years ago | (#34919792)

A reasonable expectation of privacy on my slashdot? Heresy! You are supposed to make wild and exaggerated claims about how the man is imposing his perverse, voyeuristic habits on you in order to "protect the children."

Re:Cameras Everywhere (0)

Anonymous Coward | more than 3 years ago | (#34919844)

You mean like this - http://128.8.139.228/view/index.shtml [128.8.139.228]
 
  Not sure which univ you are from, but this one is from University of Maryland.

Re:Cameras Everywhere (1)

Archangel Michael (180766) | more than 3 years ago | (#34919958)

What are you, some sort of Religious prude? Come on, really get with the times. Not only are you supposed to do it public, you are supposed to use video cams and upload your exploits to PornTube or other video sharing sites. No judging going on there, as whatever you're into, you're not alone!

Go on, be proud of who you are.

Re:Cameras Everywhere (2)

Jah-Wren Ryel (80510) | more than 3 years ago | (#34921116)

Yes, it intrudes on my sphere, but I have no expectation of privacy at work, or on the street. If I want to do something private, I go somewhere private. It's not that much of a burden, at least to me.

What happens when cameras - and the databases behind them - become so pervasive that you can't go anywhere without a permanent record being made?
Its one thing for some people on the street to see you walk to the corner drug store and buy a pack of condoms.
Its an entirely different thing for that to be recorded and cross-indexed with everything else you've done outside of your home.

OLD.... (0)

Anonymous Coward | more than 3 years ago | (#34919676)

Old news is old.

Script Kiddies (0)

Anonymous Coward | more than 3 years ago | (#34919680)

Isn't this the first thing that Script Kiddies learn, the so-called "Google Hacking"?

Re:Script Kiddies (1)

Securityemo (1407943) | more than 3 years ago | (#34919856)

Yes.

If I remember correctly... (1)

Haedrian (1676506) | more than 3 years ago | (#34919694)

There was an article a while back about the US Army drones transmitting over an unsecure protocol and needing 50 dollar equipment to find out what they were scouting out.

MIT Carpark (1)

jd (1658) | more than 3 years ago | (#34919698)

This was available on the MBone as an IP camera before Google even existed.

Aggregator (5, Informative)

symes (835608) | more than 3 years ago | (#34919712)

Someone has a whole list of open webcams: http://www.opentopia.com/hiddencam.php [opentopia.com]

Re:Aggregator (1)

iknowcss (937215) | more than 3 years ago | (#34920174)

That's pretty cool actually. There's a link to a camera at my university aggregated there!

My local red light cameras (4, Funny)

www.sorehands.com (142825) | more than 3 years ago | (#34919718)

Now all I need is to have the IP address of my local red light and speed cameras.

Of course, I would never have any fun and do something like, changing the time, moving the camera, replacing drivers' faces with pictures of say, maybe Osama Bin Laden, Benjamin Franklin, or the president.

Re:My local red light cameras (1)

iammani (1392285) | more than 3 years ago | (#34919954)

You would be charged with a felony and would spend 10+ years in prison for it.

Re:My local red light cameras (2)

jgagnon (1663075) | more than 3 years ago | (#34920076)

Not if he hacked into it from your house. :p

Re:My local red light cameras (1)

ImprovOmega (744717) | more than 3 years ago | (#34921140)

If they're stupid enough to leave an unsecured camera with a public IP address out there for the world to access, then they're probably too stupid to have effective tracking software to figure out who you are and where you're doing it from.

Re:My local red light cameras (0)

Anonymous Coward | more than 3 years ago | (#34920752)

I would hope not, citizen.

--The Department of Homeland Security

I for one... (0)

Anonymous Coward | more than 3 years ago | (#34919744)

...welcome our new security camera overlords.

Um...how is this different then anything else? (1)

Kenja (541830) | more than 3 years ago | (#34919818)

Unsecured X on the internet is accessible! This has been true since Arpnet and when you could dial an 800 number on your 300bps modem to access Telnet.

uh, so.... nothing to see here? (0)

MichaelKristopeit402 (1978292) | more than 3 years ago | (#34919846)

Analog surveillance systems were difficult to hack into by people who lacked the adequate knowledge, but IP cameras — having their own IPs —

.... are still difficult to hack into by people who lack the adequate knowledge.

submitter is an ignorant hypocrite.

editor is a marketeering moron.

slashdot = stagnated.

Re:uh, so.... nothing to see here? (1)

Anonymous Coward | more than 3 years ago | (#34919948)

Weird how even not reading names I can tell it's one of your sock puppets. You need to develop a better trolling technique. You're not as amusing as the GNAA or trying to hide goatse into everything and that's saying something.

you're completely pathetic.
you're an ignorant hypocrite.
you're an idiot.
MichaelKristopeit402 = stagnated.

Re:uh, so.... nothing to see here? (-1, Troll)

MichaelKristopeit403 (1978294) | more than 3 years ago | (#34920162)

this is a digital medium... if any account can be considered a puppet, then all accounts are puppets.

i am michael kristopeit.

you are exactly what you've claimed to be: NOTHING.

why do you cower in my shadow? what are you afraid of?

This is how it should be (1)

korpique (807933) | more than 3 years ago | (#34919862)

If the streams were secured, there'd be a monopoly or oligopoly of the information thereof, paving way for police states. As long as it's publicly accessible (though it should be properly accounted and publicly listed) it's common knowledge to be leveraged by all. Want to check whether your friends are hanging at their usual place? Check it out from the live stream. Want to see how it's like to live on the other side of the world? Want to follow an uprising in Tunisia? Likewise.

Re:This is how it should be (0)

Anonymous Coward | more than 3 years ago | (#34919918)

So you've made sure to install an unsecured IP camera in your house, right?

Re:This is how it should be (1)

metrometro (1092237) | more than 3 years ago | (#34920004)

Yes. The inequality of information access is usually why we worry about privacy. We are quite comfortable operating in public places. It's the selective and unaccountable use of information about us that freaks people out.

Information that is truly public isn't nearly as scary as information which is selectively used by people working in secret. Most corporations, of course, prefer that the data you turn over remains entirely private. And we have no corresponding view into the corporation's inner workings (Facebook, News Corp, etc). This sucks.

I suspect that the growth of public feeds (video or otherwise) will grow and expand, but unequally. The rich will continue to live and work in opaque, gated communities while those who use public services (like a subway) will be living fully in the public view and permanent, searchable memory.

If you worry about privacy, fight for transparency into institutions of power. Only then will they make fine tuning the boundaries between public and private life a priority.

Re:This is how it should be (1)

SuricouRaven (1897204) | more than 3 years ago | (#34920040)

The annoying thing is that if someone just looked at one of these publicly accessible, unauthenticated streams they coud potentially be charged for computer misuse or whatever else their jurisdiction's generic 'hacking' offense is. There really needs to be some higher bar on those laws sometimes.

Re:This is how it should be (0)

Anonymous Coward | more than 3 years ago | (#34920872)

By this logic it's not stealing if you left house unlocked by mistake or if you left your car unlocked by mistake and someone steals your stereo or the car itself. Just because these people make the mistake of leaving this stuff open does not in anyway imply that it was meant to be public.

Red-light cameras? (1)

ayjay29 (144994) | more than 3 years ago | (#34919900)

>>He also managed to access three red-light cameras in a town in Texas, and while he didn't change any settings, he could have.

Oh, that kind of red-light, shame....

Ayup. (0)

Anonymous Coward | more than 3 years ago | (#34919926)

This was one of the first things I saw on slashdot, probably more than ten years ago. The reason this hasn't changed is that very few security vendors actually care much about security.

Full disclosure: I work for one of these companies. I'm not saying which, so that this doesn't become an advertisement. That said, ours don't have this problem.

This is a brand-by-brand thing. Just pay attention to who's vulnerable, and cross them off your vendor list.

Re:Ayup. (1)

cusco (717999) | more than 3 years ago | (#34920250)

And stay away from the low-bid vendors when dealing with security - they're coming in with the lowest price for a reason. My employer will always lose on a price-only proposal. The customer frequently ends up spending more to have us or AC come in and clean up the mess left behind. Three times in the last two months I've had a new customer tell me that the first thing they want me to do, before anything else, is remove Company-X (one of the Big Three) from their system.

where is the google mashup? (2, Interesting)

Anonymous Coward | more than 3 years ago | (#34919928)

In 2011 I would expect to see a mashup showing a map with all the locations of the IP addresses that allows you to click and view

OH CRAP!!! (1)

$RANDOMLUSER (804576) | more than 3 years ago | (#34919940)

Next thing you know, NCIS and CSI:Whatever will be true!

Apparently spammers have caught on to this (1)

rudy_wayne (414635) | more than 3 years ago | (#34920138)

I found many online cameras 3-4 years ago, but things seem to have changed. For example, the Ars Technica article, referenced earlier, says "Change the search to “intitle: ‘Live View / - AXIS 206M,’” though, and Google returns 3 pages of links to 206Ms that are online and viewable." But when I try this, I only get spam websites and articles telling you "how to use Google to find online cameras".

Like anyone cares (1)

SuperKendall (25149) | more than 3 years ago | (#34920190)

Why would the camera owners care? Mostly they are just there for surveillance. They don't care who is watching or they would not have a camera.

Re:Like anyone cares (0)

Anonymous Coward | more than 3 years ago | (#34920692)

I used to work security at a high rise, and access to the security cameras is an easy way to case the joint before robbing it. I'm sure the bank robber that tried to hit up the bank branch would loved to have had access to the feeds for the cameras covering that portion of the building.

Just because it's surveillance doesn't mean that it's OK for the general public to look at. They become a liability when the general public has access to them without a subpoena.

I'd like to pass a law (1)

multiplexo (27356) | more than 3 years ago | (#34920212)

that says that if a government is installing security cameras in a public location that the feeds from those cameras have to be publicly accessible, via the web, and no getting around this by hiring a contractor to install a camera and then claiming that the feed is private. This wouldn't be a total solution to the problem of stupid bureaucrats indulging paranoid morons by installing cameras everywhere, but it would slow things down and it would reduce the asymmetry of information between the government and the people it is supposed to serve.

Re:I'd like to pass a law (1)

cusco (717999) | more than 3 years ago | (#34920446)

So what do you suggest when 500 people are all trying to access the camera at the Park & Ride where the was a suicide and the camera only allows 20 connections? Will the police and security guards just have to wait their turn, hitting Refresh until they get lucky? How are you going to keep the script kiddies out of the admin settings? Is bandwidth free on your planet? Sorry, but that post just has 'BAD IDEA' written all over it.

ChumbySpy has been around for years (1)

kriston (7886) | more than 3 years ago | (#34920298)

This is news?
ChumbySpy and SurveillanceSaver have been around for years.

http://www.chumby.com/guide/widget/ChumbySpy [chumby.com]

Too simple to avoid this problem (1)

davidwr (791652) | more than 3 years ago | (#34920392)

Why would anyone do this when it's so simple not to?

Besides the obvious issue of choosing good passwords, why would anyone use public IP addresses or for that matter even the "common" private IP address for security devices?

Ideally, you'd have them on an isolated network which MIGHT be joined to the corporate WAN by a dual-homed control/recording station but that might not be possible for a variety of reasons.

Less than ideal is running them on a separate IP address space so they weren't "visible" to other computers on the LAN unless the user or virus-infected computer were smart enough to change its network to match that of the camera or do some other non-standard tricks.

In any case, your internal LAN computers and your security hardware should all be behind a firewall anyways, inaccessible from outside except in ways you define.

Re:Too simple to avoid this problem (1)

HikingStick (878216) | more than 3 years ago | (#34920528)

The president where I work has been hounding my tail to get IP cameras in the building. He doesn't want them isolated to our internal LAN. He wants them to have a public IP address so he can connect to them from any browser in the world. He wants to be able to peek in and see what is going on at any hour of the day.

At the very least firewall the puppies (1)

davidwr (791652) | more than 3 years ago | (#34920816)

Tell him he can have what he wants if he antes up for a dedicated VPN or equivalent "front end login" that doesn't expose the cameras or the control computer directly to the Interweb.

You might also gain some traction if your state or country's employment laws would put the company or its officers at risk for violating employee privacy if they put the cameras on the web without adequate security. Heck, if the lawyer says doing this puts YOU at risk then that's the ultimate trump card.

useless (1)

hesaigo999ca (786966) | more than 3 years ago | (#34920860)

So what if they are on google, most are empty until action happens, and the timing needed to be on at the same time action happens, is too small to even bother...unless it was inside a shower, then you pay per view....however, a camera set up outside someones home to log each entry into a house is pretty wasteful to watch...who cares if you can see what they see....as long as you cant reconfigure it,...

SurveillanceSaverOSX (1)

Memophage (88273) | more than 3 years ago | (#34920886)

A while back I ran across the SurveillanceSaver project - a simple screen saver which contained a small list of webcams it would cycle through. I had the OSX version installed on my mac, but when I upgraded to Snow Leopard it quit working. Found out it was written in Quartz, so I re-compiled it with the new version, and got it working again.

Then I found out that the guys who wrote it went on to found the Public Viewpoint Project, which searches for publicly available webcams and creates an RSS feed. I can't find their web site anymore, but the RSS feed is still up. I added to their screen saver the ability to connect to their RSS feed, d/l camera URLs and test them out before showing them.

I recently created a Google Code space for it, it's available here: http://code.google.com/p/surveillancesaverosx [google.com]

It still has some bugs, if there are any "expert" Quartz developers out there, I'd love to get some pointers.

There's an app for that! (1)

gravis777 (123605) | more than 3 years ago | (#34920998)

http://livecams-iphone.com/ [livecams-iphone.com]

There are others, but I have found this one to be the best

Old news (2)

HomelessInLaJolla (1026842) | more than 3 years ago | (#34921230)

Since I first arrived in La Jolla, CA (92037) and noticed the little black domes darn near everywhere I theorized that, whether or not different subcontractors manage the security contract for any individual location, there is some overseer--either official or sitting on a network intersection--who has access to all of them. They probably have a FPS/MMORPG type interface which they are able to use to follow any particular person around should any particular person happen to catch their special interest. Given that there is such a large number of retired, semi-retired, lucratively employed-at-home, or otherwise fantastically wealthy with nothing else to do, people in this area it does not strike me as at all odd that I rarely have more than five seconds of peace in any location before people begin arriving to poke their noses or just hover around. What would it take? One fantastically wealthy person with a security clearance, fifty or one hundred people (as few as fifteen would probably do) employed underneath them, and rotating access to rental cars/used car lots to keep up a decent ruse? Combine that with the local residents and office dwellers who could be recruited to "call us any time you see one of these people" (mostly homeless).

On many occasions it just seemed to be all too coincidental that as I headed from point A to point B that there were people at point B just waiting for me. Coincidence, sometimes; coincidence, sometimes; coincidence, sometimes... but after five years it cannot possibly be random cosmological coincidence _ALL_ of the time.

Imagining a society of harassment is not at all difficult. Since the wealth distribution is so ridiculously skewed and since those who have the wealth have had a demonstrated interest in maintaining their artificial superiority since the book of Genesis ("There's going to be a famine in the land... You should do what we tell you to do") it is hardly unreasonable to expect that the wealthy will devote some portion of their time and effort to following and sabotaging any of the financially enslaved who happen to challenge their superiority. Now we have near complete camera coverage of entire cities to assist that.

Go ahead. Tell me that the fantastically wealthy, having such resources available to them (legally, illegally, with or without the owner's knowledge... hardly a consideration for the people who sign your paychecks, the paychecks of the politicians, the paychecks of the judges, etc.), would not use them.

Senior Seminar Project (1)

yup2000 (182755) | more than 3 years ago | (#34921316)

My senior seminar project as a CS undergrad (2005) was the creation of a motion sensing surveillance system. Part of the demonstration I did during the presentation was to show how my software could monitor cameras from around the world for motion. In many cases I had no idea where the cameras were physically located. Later as part of my Masters thesis (2010), I extended the software to include face recognition... now it can identify "John Doe" and you can have it tell you when it see's specific people in a specific scene (white lists, black lists and reports on who has been seen).

I've always thought that combining the face recognition and motion sensing features with a library of pictures harvested from Facebook and LinkedIn would result in something very interesting from many points of view...

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>