Skip to main content

Logitech angers users with Harmony update that breaks some home automation setups

By

Some users of Logitech’s Harmony Hub and remote system have encountered a fairly big issue with the latest firmware update: it blocks local API access, which has in turn led to sudden problems — and broken automation systems — for many users and home theater integrators. Ars Technica reported on the situation yesterday.

Unfortunately, it’s not clear that Logitech has any solution for disappointed users. As the company explained in a forum thread, the 4.15.206 firmware update for the Harmony Hub system was in order to patch a security vulnerability, which also had the effect of blocking these other integrations. “These private local control APIs were never supported Harmony features. While it is unfortunate that customers using these unsupported features are affected by this fix, the overall security of our products and all of our customers is our priority.”

In a statement to Ars Technica, Logitech further explained the issue, noting that “The XMPP interface was used as part of the setup process and was pointed out as an insecure communication. We removed that interface as part of an effort to make to improve the Hub security. That interface was never designed to be used by third parties.” In other words, from Logitech’s perspective, those users were essentially using a security flaw to build out their smart home systems, taking advantage of a feature that they were never supposed to use that ultimately was making the whole system less secure.

It seems to be a fair enough response; after all, Logitech does have to consider the security of its users and do what it thinks best to protect them. But fans aren’t pleased, especially considering that the company has a history of bricking remote setups without warning. Just last year, Logitech announced that its previous generation Harmony Link devices would stop working, and recommended that users switch over to the new Harmony Hub system — a move that would later seem the company offer free Hubs to to all Link owners as an apology.



from The Verge - Teches https://ift.tt/2GurLz5
Labels:

Comments

Post a Comment

Popular posts from this blog

The PlayStation Classic has a secret debug menu that can be reached with specific keyboards

By
Just a day after the release of the PlayStation Classic , the Retro Gaming Arts YouTube channel has discovered that you can access the emulator’s settings menu by plugging a keyboard into a free USB slot and hitting the Esc key. Doing so reveals a host of settings for the built-in open-source PCSX ReARMed emulator, potentially allowing access to options, including save states, controls, and cheats. The discovery has raised hope that some of the criticisms of the retro console , such as a limited game library and poor image quality, could soon be addressed with third-party modding. In the discovered menus, an option to “Load CD Image” is clearly visible, which suggests it might be possible to load additional games or perhaps just the better-performing 60Hz NTSC variants. An option to enable scanlines, the horizontal lines that allow an LCD screen to emulate the look of a traditional CRT monitor, is also present. Despite the discovery, it’s unlikely that the hardware limitations o
Post a Comment
Read more

With Toys R Us gone, Amazon wants to send out a holiday toy catalog of its own

By
Now that Amazon has helped kill off Toys R Us , it wants to borrow the retailer’s iconic print holiday toy catalog . The online behemoth is interested in creating its own print catalog to mail out and also be handed out at Whole Foods (which it owns), according to Bloomberg . Toys R Us was plagued with billions in debt when permanently closed last month — in part because of competition from online stores like Amazon . For many kids, its “Big Book” toy catalog was a staple of fall. The 100-page catalog would arrive near the end of October for kids to look through and create a wishlist before December. Now that the retailer is done, various companies are trying to scoop up the customers that headed to their shelves every December. Party City, for example, will open 50 pop-up toy shops for the holidays. Target will have more store space for toys . It’s just especially amusing that Amazon, having helped kill off these physical retailers, is trying to learn from them to make even mor
Post a Comment
Read more

Amazon’s plans for a New York office are under new scrutiny

By
A month ago, when Amazon announced that it would build regional offices in New York and Virginia at great expense to the taxpayers there, I wrote that it had misunderstood the moment : Perhaps the furor over Amazon’s regional offices will blow over. But it’s hard not to feel today as if the company misread the room — overestimating the public’s appetite for a billion-dollar giveaway to one of the world’s biggest companies, and underestimating the public’s ability to raise hell on- and offline. Amazon may yet feel that pain, in the long run. Today, Amazon met the room: 150 protesters who showed up to the first New York City Council hearing about the plan. According to reports from the scene, demonstrators’ concerns start with the $3 billion in incentives that New York plans to give Amazon in exchange for locating there — and, it says, creating 25,000 jobs. Here’s Leticia Miranda in BuzzFeed : ”You’re worth a trillion dollars,” New York City Council Speaker Corey Johnson told the
Post a Comment
Read more