The UK Home Automation Archive

Archive Home
Group Home
Search Archive


Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024


[Message Prev][Message Next][Thread Prev][Thread Next][Message Index][Thread Index]

Re: Re: SPA 942 Admin reset



> "an HTTPS request to secprov2.myphones.com  I suspect there
is no way I
can spoof that because assumedly there will be certificate issues"
Looking at https://secprov2.myphones.com
you'll see its SSL/TLS certificate is not public - it is signed by Sipura
Technology Provisioning Root Authority 1. Perhaps the public key for this
certficate is installed on the phone's firmware - I wonder if/how that's
ever updated? (the secprov2 certificate has a 5 year span so perhaps the CA
one has something similar). As you say it might be worth setting up a
self-signed HTTPS server called secprov2.myphones.com (Apache or whatever).
myphones.com looks like some sort of white label VOIP outfit - they are UK
based though so wonder if it's worth trying to ask them (might be a long
shot though if they don't deal with the general public and you're not using
their service!).


That phone looks good - I see some on Fleabay are described as unlocked so
you might think there was some fallback method...

[Non-text portions of this message have been removed]



------------------------------------

<*> Join the Automated Home Forums
http://www.automatedhome.co.uk/vbulletin/


UKHA_D Main Index | UKHA_D Thread Index | UKHA_D Home | Archives Home

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.