Search found 13 matches
- 07 Nov 2023, 18:43
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
No comments from Terramaster?
- 29 Oct 2023, 01:54
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
[at=imilne post_id=30661 time=1698493359 user_id=7205][/at] Is that request happening even with UPNP disabled on the NAS? The only UPnP option I can find is under Network|Discovery Service: "Enable UPnP discovery service" and that's definitely disabled. There's also the Remote Access and ...
- 28 Oct 2023, 19:42
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
Sorry, I have to disagree. My router (a pi4 running Ubuntu) uses miniupnpd for handling UPnP requests, so it's very easy to see the requests being made, and/or to restart either the pi or the service if I want to start clean. Active requests are stored in /var/log/upnp.leases and here's a snippet pr...
- 24 Oct 2023, 23:17
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
That should have said "I'm *now* on 5.1.79"
- 23 Oct 2023, 18:30
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
I noticed this was marked as potentially fixed in 5.1.40 ("Fixed the issue with UPnP port mapping") but I've waited a few versions before updating, and I'm not on 5.1.79. It's still not fixed from what I can tell, and TOS is requesting port 5443 to be opened. I've tested and confirmed it's...
- 09 Jun 2023, 22:35
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
Thanks for the update, and looking forward to the patch.
- 09 Jun 2023, 17:04
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
Just wondering how things are going on investigating this issue?
- 02 Jun 2023, 17:13
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
Happy to help in any way I can, eg providing logs, etc.
- 01 Jun 2023, 22:44
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
No more thoughts on this @Terramaster?
Let me reiterate:
TOS is sending UPNP broadcasts requesting that ports 5443 and 8181 are port forwarded to it, exposing its UI to the wider internet.
Let me reiterate:
TOS is sending UPNP broadcasts requesting that ports 5443 and 8181 are port forwarded to it, exposing its UI to the wider internet.
- 31 May 2023, 18:22
- Forum: Security
- Topic: HTTP being exposed via UPNP
- Replies: 20
- Views: 12399
Re: HTTP being exposed via UPNP
PLEX uses upnp to request the port it wants open, and there's nothing unusual in that, but TOS *should not* be asking for ports to be opened for its own UI - that's where the problem lies. Obviously you still need a username and password to get in, but the UI should not - unless there was a specific...