search icon
Close

What are you looking for?

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Security issue on updates

(Topic created on: 19-12-2024 06:25 PM)
456 Views
alphapapaactual
Explorer

‎19-12-2024 06:25 PM

Options
Hi, 


Why is Samsung distributing update via unencrypted http endpoints? My router blocked access to fota-s3-dn.ospserver.net:80, seccfl-fota-dn.samsungdm.com:80 and 1.ssiloc.com:80. Adressed the updates as malware... 
0 Likes
5 REPLIES 5
JakeSully
Troubleshooter

‎19-12-2024 07:02 PM

Options
Just because you see adress without http or https does not mean it is unencrypted. Your router could be fasiley giving false positive. Some antivirus and detections in routers
Detects some sites as infected when they are not.
0 Likes
alphapapaactual
Explorer

‎19-12-2024 07:54 PM

Options
In response to JakeSully
My point here is to question why use port 80 and not 443? It is more secure
0 Likes
JakeSully
Troubleshooter

‎19-12-2024 07:58 PM

Options
In response to alphapapaactual
Well for updates I don't think it really matters since you Download an update.
0 Likes
janssonrip
First Poster

‎03-01-2025 02:03 PM

Options
If the connection is encrypted, phones with expired or missing certificates won't be able to download updates. That is also why certificate stores usually allow downloading certificate updates unencrypted.

Integrity checks of the downloaded files mitigate potential MITM risks.
0 Likes
alphapapaactual
Explorer

‎03-01-2025 03:30 PM

Options
In response to janssonrip
But if that happens people should do updates by downloading from a computer and then upgrade from usb... This is just unsecure...
0 Likes