I see that TabloTV requires port 80, 443 and 8887 inbound to be forwarded to it.
What mechanism does TabloTV use to prevent unauthorized access? If someone sniffs my “remote access” traffic from a public hotspot, can they use the info to replay or otherwise gain unauthorized access to the device.
What credentials are used? How are they secured over the public internet?
Lastly, with three TCP ports open, what efforts has TabloTV done to make sure that various attack methods are not exploitable (openSSL - heartbleed, data buffer overuns, cross site scripting… ? Basicly, if the box is compromised remotely, intruders would have full access to the inside LAN. Since these internet facing forward ports are well known (31880, 31883 and 31887), I can see them becoming attractive targets for hackers versed in these popular exploits.
This is a great post and I do not see any reply. Did the Tablo folks answer this? I see attacks to the Tablo on my network constantly and this worries me.
You mean that with all the other valuable targets such as banks, DNC, voting machines, nuclear power plants,etc. those pesky Russians want to hack into my tablo to steal episodes of Green Arces and Mr. Ed.
If you only open the desired ports and the tablo server only allows remote connection from a paired device where is the hack - unless someone hacks your paired device.
For at least 15 years various nation states and script kiddies have been port probing on a regular basis.
You may not need to protect your pathetic tv shows. And attackers are not interested in them either. . They are interested in a rooted Linux box as an anonymous launchi point for attack’s elsewhere on the internet and your home network.
