Comment on Frigate NVR Critical RCE Vulnerability
frongt@lemmy.zip 5 days ago
This is why you don’t expose services to the Internet, especially with weak or no authentication.
Comment on Frigate NVR Critical RCE Vulnerability
frongt@lemmy.zip 5 days ago
This is why you don’t expose services to the Internet, especially with weak or no authentication.
CorrectAlias@piefed.blahaj.zone 4 days ago
I’m not sure why anyone would want to expose Frigate of all things to the open internet.
teawrecks@sopuli.xyz 4 days ago
So they could view their cameras while they’re away?
IsoKiero@sopuli.xyz 4 days ago
That’s my use case. But my frigate-box is strictly behind firewall and I access it over wireguard when I’m away.
lankydryness@lemmy.world 4 days ago
I second this. I have notifications set up via homeassistant, and if I want to view a feed I just VPN in
CorrectAlias@piefed.blahaj.zone 4 days ago
There are far better, more secure ways to do this. You could use a reverse proxy. You could use tailscale. You could use wireguard.
The last thing you should do is open Frigate’s port to the net.
teawrecks@sopuli.xyz 4 days ago
Just answering the question you asked.