GoodReader uses port 8080 Air Sharing HD uses port 80 (for nonsecure) and 443 (for SSL/TLS self-signed). However, in checking both GoodReader and Air Sharing HD, I see that neither use port 4242 by default. It is more likely they were using another piece of software, like Air Sharing HD, which can maintain a persist Bonjour-based WebDAV connection. If these two people on the same network were running GoodReader, then they had to have this set in this way. You have to tap the Wi-Fi icon, and then the server starts up. GoodReader doesn't maintain a WebDAV server for sharing over Bonjour unless the WiFi-transfer dialog appears on screen. I don't think your analysis is accurate, though the risk may be. If you are using Goodreader and are connected to any public wifi point, make sure that you have gone into Settings, Other Settings, and make sure that Ask Permission Before Connecting is ON.
In the first 2 minutes, I saw files that had credit card information, passwords, bank account information, and more. Sitting in the Conference Center lobby, I was able to connect to two different iPads, view and grab files arbitrarilly, and push files TO the iPads as well.
#Printing from goodreader app download#
By default, Goodreader doesn’t require authentication or any warning to connect via Bonjour, and it allows you to browse AND DOWNLOAD any files that are so shared.
But this morning at the ALA Annual conference I discovered one really scary security issue with it. Goodreader is by far the best interface and app for handling different filetypes on the iPad…PDFs, doc files, images, etc. This post contains old information that is not correct! EDIT: please check out my new post, with the real problem identified.
0 kommentar(er)
