495
submitted 4 weeks ago by misk@sopuli.xyz to c/technology@lemmy.world
you are viewing a single comment's thread
view the rest of the comments
[-] asbestos@lemmy.world 39 points 4 weeks ago

Teams is the worst, you can’t join any call if you don’t allow it to scan your local network. I wish the executives a very nice and agonizing death.

[-] toynbee@lemmy.world 20 points 4 weeks ago

I haven't done an extensive survey or anything, but every modern router I've interacted with supports setting up a secondary WiFi network with guest isolation (so anything on that SSID can't see any network device besides the router and itself). This is useful for apps or hardware that is untrusted and/or demands unjustified permissions.

[-] asbestos@lemmy.world 6 points 4 weeks ago* (last edited 4 weeks ago)

Correct, using the guest network is better but I think turning off WiFi and just using mobile data is sufficient. I wonder if the permission applies to cellular connectivity as well.

[-] toynbee@lemmy.world 4 points 4 weeks ago

Sure, removing your network from the equation is definitely a more secure option; just make sure the app isn't using those granted permissions in the background when you're done using it and log back into your network.

[-] 01189998819991197253@infosec.pub 4 points 4 weeks ago

On what device? I have Nearby Devices and Location disallowed on Android, and it still works fine.

Side note. Teams is the worst. Just, period.

[-] asbestos@lemmy.world 2 points 4 weeks ago

iOS, it’s been that way for a long time…

[-] 01189998819991197253@infosec.pub 2 points 4 weeks ago

Interesting. I wonder if that's an iOS requirement that Teams is forced into. Somehow, I doubt it.

[-] asbestos@lemmy.world 2 points 4 weeks ago* (last edited 4 weeks ago)

Oh no, it absolutely isn’t. It’s actually a feature apple implemented to stop apps from scanning and interfacing with the devices on your local network without your approval and Teams has zero explanation on why it needs that permission nor why the calls can’t be made without it while every single other app is able to do so without that permission.
The only other apps that require it are device specific apps (printer, local smart home stuff, FTP, DLNA, etc) and network scanners.
Is it possible that Android doesn’t have that permission and therefore Teams is able to scan the network regardless? You could test it out with an SSH or network scanner app for example

[-] 01189998819991197253@infosec.pub 1 points 3 weeks ago

That's a good question. I'm not sure. Well, guess I'm firing up the Wireshark.

this post was submitted on 24 Oct 2024
495 points (99.4% liked)

Technology

59559 readers
1809 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS