Which is the recommended Secure Configuration Environment for FLEXIDOME IP starlight 7000 VR (CPP4)?
It is advised to use Bosch tools like the Configuration Manager to configure the camera, that does not allow for issues like XSS (Cross-site scripting - security vulnerability).
When using the web-based configuration interface and currently being logged in as administrator, some security precautions can be taken to mitigate XSS vulnerabilities:
- No other websites or email content should be opened as long as the session to the camera is active
- No links should be clicked from an untrusted external source that link back to the camera.
- Use a different browser than the system default browser to open a session to the camera as there is no XSS between browsers.
- Always log out and/ or close the browser (not only the tab) to clear any session data
Note: The above recommendation is also applicable to all Bosch IP cameras that belong to CPP 4 platform.
Useful article related to CPP: