bluegaspode wrote: > - username + password are sent over the wire unencrypted. So simple > network sniffing and one has access to the server > Well, that's what I said with my next sentence. > > - I do remember a bugreport, where one could at least read files outside > the LMS music directory via media-file downloads. I'm not sure though if > that has been fixed already or is still open Doesn't matter at all here since you can change the music folder to be the root folder or even another drive once you've got access. Access restrictions for the server can help but since we are talking about a "C:" drive here are probably not in effect.
SBS/LMS is NOT secure. ------------------------------------------------------------------------ pippin's Profile: http://forums.slimdevices.com/member.php?userid=13777 View this thread: http://forums.slimdevices.com/showthread.php?t=51929 _______________________________________________ plugins mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/plugins
