Yes of course, plain text simply means that your user credentials are passed in the clear with no encryption. These requests are within the HTTP URI which anyone can see with a packet sniffer. None means there is no authentication between your request and the process on the server, which is going to allow for any requests sent to be interpreted by the daemon as a valid request. Thus, none is the worse solution as there could be a vulnerability exploit on your server. Hash is by far the best choice for security because your user credentials are encrypted, but since the hash is time sensitive it needs to be renewed, and your front end is not renewing this key and times out hence why you are seeing the stream stop. Security is only needed if your server is directly accessible from the internet. Please keep in mind, the back end is still processing the images from your camera, it is merely your front end that is not refreshing the stream. Modect, Mocord and Record will still function as documented. One thing I have read and have had not had a chance to experiment with is the auth string. This would be the AUTH_HASH_SECRET in the options configuration. For example, lets say I wanted to view a camera of mine, the usual url (with hash) is:
Code: Select all
x.x.x.x/cgi-bin/zms?mode=jpeg&monitor=1&scale=100&maxfps=5&buffer=1000&auth=8b71ddf10b7100a55b3ed3124a5e4d78&connkey=360534&rand=1347982221
If you notice the auth, connkey and rand, these are the hashes used to connect to your camera to provide a secure exchange of the user credentials. This will time out eventually, but if I change the URI to:
Code: Select all
x.x.x.x/cgi-bin/zms?mode=jpeg&monitor=1&scale=100&maxfps=5&buffer=1000&auth=MYSECURITYSTRING
Just replace MYSECURITYSTRING with the value of AUTH_HASH_SECRET
I need to point out that the security functions work, what appears to be broken is the refresh of the hash strings after a certain time period. If you are using firefox, you may want to try a number of addons that auto refresh a page, that may work as well.