Gaffophone wrote: > [FONT=verdana]Are there recommendations or best practices to secure > piCorePlayer?
There are many improvements on the security but most of them are on the other side - not yours and they are not RPI / Picore related. How does a Hacker / Cracker gets his way into the IOT Devices like a lms? First they would use a already implemented update scenario like lms update or the pluginsupdate mechanism. One hack -> many devices with many ips makes a perfect botnet. Mostly the dont hack a single IOT device. Unless the updates arent digital certified and the internal update mechanism first checks the updates for their certificates you always have to trust these updates with your brain instead of the update routine. In case of LMS updates thats a quote easy procedure because there is a single contributor for these updates. In case of the plugin side the whole idea is getting worse because there is no manpower to proove all plugins and sign them and there a more than one plugin repository. That means be aware what plugins you install and check the forum for some warnings. ------------------------------------------------------------------------ DJanGo's Profile: http://forums.slimdevices.com/member.php?userid=1516 View this thread: http://forums.slimdevices.com/showthread.php?t=109401 _______________________________________________ unix mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/unix
