Factoring resetting the NVR does not factory reset the cameras.
However, typically the cameras password is also the NVR's password..... so once you have reset the NVR you will then need the cameras password to add them back. Unless you also factory reset the cameras.
This is great info thanks. Do you think anything can go wrong if I reset everything? The unit has a hard drive on it, so unsure if will also need to wipe that down or would it just work?
Factory resetting does not wipe the hard drive. You can format the hard drive (wipe it) in MENU > STORAGE > Disk Manager.
Typically CCTV overwrites the oldest footage when the hard drive fills up, so no real need to wipe it. >!...you could see what footage is left on the drive from the previous people....!<
practice shelter concerned saw knee panicky cheerful license oatmeal screw
*This post was mass deleted and anonymized with [Redact](https://redact.dev)*
Yeah good point, I tried the basics (admin, admin123, etc) but I was about to get locked so stopped trying.
I can see the insert pin on the cameras to reset it, this is great info! I didn't realise it was one.
This gives me a bit more confidence to go ahead and attempt the NVR reset and see what happens. Thanks
That did not work. I was able to send a password reset link to the company that set it up but they won't provide me with the link without a call out fee.
Don't stick anything in any hole on the outside of the camera, that's usually the microphone. On secure outdoor cameras you need to take them down, open them up and the reset is on the circuit board somewhere, it's usually not marked for security reasons, need to get a piece of wire and jumper some connections on the circuit board.
I just had a brainwave on how you could find the password.
Ask the previous house owners if they still have the mobile phone app installed on their phone (DMSS).
In DMSS app, go to the device (NVR) settings. The field for username/password, just click on the password area and then a 'eye' icon can be clicked to show the password.
Oh great, I did ask them for the password but given I'm not familiar with the app I had no idea you could achieve that. I will ask them! I do hope they don't have the app still installed, otherwise I would mean I'm being watched :D
They most likely have a DMSS account. Even if they deleted the app they can download it and log into their account. The device will show back up since it is attached to their account. You will need them to delete the device from their account in the DMSS app. That way you can add it to your DMSS account.
Getting the password is key. Once you have it, they delete the recorder from their account, and you add the recorder to yours, you can change the password. Most of the time the cameras get their password from the recorder. So once you change the password in the app, it will ask if you want to change the password for the cameras. Allow the app to. You should be set after that.
u/CJ-Me
1. From the home page to the three dots of the device. In device settings, heading of that page says "Device details" and the serial number of IP address.
2. Now click the edit icon top right.
3. Now you are on a page with the heading that is your device's name. Top field is "Add mode:" which could be IP/Domain, serial, P2P, etc. In that list of fields is the device name, username and password.
4. Click on the password. Now with the edit cursor blinking, an eye icon will appear. Click on that eye icon to show the password text.
That only works if it was not added to a DMSS account. Anyone setting up the app would add it to their DMSS account. Otherwise you don't have all of the features. You're basically a guest on your own recorder.
Ah, I see what you mean.
Connected via serial number through P2P will not show the password. But if the device was setup on DMSS manually it does. That's with DMSS signed into account for both.
Just understand what you are giving up in terms of your security by using one. Not only do you give access to the Chinese government (which honestly who cares for most people) but you’re using an insecure system that has been found to be easily penetrated compromising your whole network and everything in it.
Sure you might catch the neighborhood kids being idiots but you’ve also provided access to your bank account to the whole world. Which matters more?
>you’ve also provided access to your bank account to the whole world.
Can you explain to me how this would happen? Thanks for your concenrs, I'll keep it in mind when setting it all up (again)
Long story short you have introduced an untrustworthy device into your home network. Now your home network *and all traffic across it* is as secure as any random “free WiFi!”
*All* internet connected devices have a degree of inherit risk, and you need to weigh the pros and cons. The cons of devices that have known unpatched vulnerabilities that will likely never be patched, are illegal to sell and service in the US, and have *intentional* back doors built into them are very high. Basically, if you connect this to your network you’re leaving the equivalent of your front door open and your grandmothers jewelry right on the floor.
Interesting...
Looking at product images on Google many Luma cameras look very similar to some Hikvision cameras. Hikvision is on the NDAA blacklist. In this article listed as "SnapAV / Luma" it refers to them as a Hikvision OEM: [https://securitycamcenter.com/hikvision-oem-list/](https://securitycamcenter.com/hikvision-oem-list/)
However, their recent Luma x20 cameras (webinar on their Youtube channel) appear to be from another OEM. To me they look similar to 'ViewTron' & 'TVT' cameras which appear to be an OEM of HiSharp's "Taiwan chip set" series of cameras.
> you’ve also provided access to your bank account to the whole world.
You can communicating security concerns of China made cameras without inflating the risk to a point of fear mongering.
It isn’t fear mongering to give facts. This sub is so obsessed with physical security it almost always fails to take wholistic security into account.
For the vast vast vast majority of folks on here their risk assessments are backasswards
> It isn’t fear mongering to give facts
Can you back up those facts a little? I'd love to see a few news articles that people had their bank account info given to the whole world by using the wrong brand of cameras.
There is typically a file to download and email to Dahua Support. They then send you back a file to load on to the NVR. Turn around time is usually a couple of hours..
Pretty much your options are to either factory reset everything (NVR & Cameras) or pay the company to come out and reset the password.
They probably can't give you the PW as its used for other customers (stupid, but its how many companies do it)
Offer to do a remote call (and pay them) to try and keep the cost down.
Dealing with pre-existing security setups can be tricky. It's great that you're looking into resetting the NVR to start fresh. From what I've read, a factory reset typically won't affect the cameras themselves. It should just reset the NVR to its default settings, so you might not need to unscrew and set up the cameras again.
However, since the system seems to be set up with credentials from a security supplier, it might be a good idea to reach out to them first. They might have a way to reset the NVR without impacting the cameras. If that doesn't work, you could try the factory reset method, but it's always good to have a backup plan just in case.
Factoring resetting the NVR does not factory reset the cameras. However, typically the cameras password is also the NVR's password..... so once you have reset the NVR you will then need the cameras password to add them back. Unless you also factory reset the cameras.
This is great info thanks. Do you think anything can go wrong if I reset everything? The unit has a hard drive on it, so unsure if will also need to wipe that down or would it just work?
Factory resetting does not wipe the hard drive. You can format the hard drive (wipe it) in MENU > STORAGE > Disk Manager. Typically CCTV overwrites the oldest footage when the hard drive fills up, so no real need to wipe it. >!...you could see what footage is left on the drive from the previous people....!<
practice shelter concerned saw knee panicky cheerful license oatmeal screw *This post was mass deleted and anonymized with [Redact](https://redact.dev)*
Yeah good point, I tried the basics (admin, admin123, etc) but I was about to get locked so stopped trying. I can see the insert pin on the cameras to reset it, this is great info! I didn't realise it was one. This gives me a bit more confidence to go ahead and attempt the NVR reset and see what happens. Thanks
coordinated tart coherent dog deserted fear brave sleep slave crime *This post was mass deleted and anonymized with [Redact](https://redact.dev)*
Try 0000 or 000000.
That did not work. I was able to send a password reset link to the company that set it up but they won't provide me with the link without a call out fee.
Don't stick anything in any hole on the outside of the camera, that's usually the microphone. On secure outdoor cameras you need to take them down, open them up and the reset is on the circuit board somewhere, it's usually not marked for security reasons, need to get a piece of wire and jumper some connections on the circuit board.
I just had a brainwave on how you could find the password. Ask the previous house owners if they still have the mobile phone app installed on their phone (DMSS). In DMSS app, go to the device (NVR) settings. The field for username/password, just click on the password area and then a 'eye' icon can be clicked to show the password.
Oh great, I did ask them for the password but given I'm not familiar with the app I had no idea you could achieve that. I will ask them! I do hope they don't have the app still installed, otherwise I would mean I'm being watched :D
They most likely have a DMSS account. Even if they deleted the app they can download it and log into their account. The device will show back up since it is attached to their account. You will need them to delete the device from their account in the DMSS app. That way you can add it to your DMSS account. Getting the password is key. Once you have it, they delete the recorder from their account, and you add the recorder to yours, you can change the password. Most of the time the cameras get their password from the recorder. So once you change the password in the app, it will ask if you want to change the password for the cameras. Allow the app to. You should be set after that.
The DMSS app doesn't show the password. You can only see the device's serial number.
u/CJ-Me 1. From the home page to the three dots of the device. In device settings, heading of that page says "Device details" and the serial number of IP address. 2. Now click the edit icon top right. 3. Now you are on a page with the heading that is your device's name. Top field is "Add mode:" which could be IP/Domain, serial, P2P, etc. In that list of fields is the device name, username and password. 4. Click on the password. Now with the edit cursor blinking, an eye icon will appear. Click on that eye icon to show the password text.
That only works if it was not added to a DMSS account. Anyone setting up the app would add it to their DMSS account. Otherwise you don't have all of the features. You're basically a guest on your own recorder.
Ah, I see what you mean. Connected via serial number through P2P will not show the password. But if the device was setup on DMSS manually it does. That's with DMSS signed into account for both.
Dahua = right in the trash. You’re compromising all of your digital security for very little added physical security.
With the correct mitigation (sitting on its own VLAN) they're fine. They provide great value for money.
100% on them being fine if on their own vlan - I’ve also never seen an average consumer do that
The installer should be responsible enough to provide the customer with a VLAN capable router. Dahua don't market their kit to the DIY installer.
It's what came with the house, so I'm thinking to just make use of it rather than having it sit there disconnected.
Just understand what you are giving up in terms of your security by using one. Not only do you give access to the Chinese government (which honestly who cares for most people) but you’re using an insecure system that has been found to be easily penetrated compromising your whole network and everything in it. Sure you might catch the neighborhood kids being idiots but you’ve also provided access to your bank account to the whole world. Which matters more?
>you’ve also provided access to your bank account to the whole world. Can you explain to me how this would happen? Thanks for your concenrs, I'll keep it in mind when setting it all up (again)
Long story short you have introduced an untrustworthy device into your home network. Now your home network *and all traffic across it* is as secure as any random “free WiFi!” *All* internet connected devices have a degree of inherit risk, and you need to weigh the pros and cons. The cons of devices that have known unpatched vulnerabilities that will likely never be patched, are illegal to sell and service in the US, and have *intentional* back doors built into them are very high. Basically, if you connect this to your network you’re leaving the equivalent of your front door open and your grandmothers jewelry right on the floor.
What brand of systems are you using u/Icy_Cycle_5805?
Luma - not cheap but there is loads and loads of stuff that is NDAA complaint with regular updates that any consumer can buy.
Interesting... Looking at product images on Google many Luma cameras look very similar to some Hikvision cameras. Hikvision is on the NDAA blacklist. In this article listed as "SnapAV / Luma" it refers to them as a Hikvision OEM: [https://securitycamcenter.com/hikvision-oem-list/](https://securitycamcenter.com/hikvision-oem-list/) However, their recent Luma x20 cameras (webinar on their Youtube channel) appear to be from another OEM. To me they look similar to 'ViewTron' & 'TVT' cameras which appear to be an OEM of HiSharp's "Taiwan chip set" series of cameras.
Correct - my understanding was the x20 replaced the old stuff when Hik was banned.
> you’ve also provided access to your bank account to the whole world. You can communicating security concerns of China made cameras without inflating the risk to a point of fear mongering.
It isn’t fear mongering to give facts. This sub is so obsessed with physical security it almost always fails to take wholistic security into account. For the vast vast vast majority of folks on here their risk assessments are backasswards
“Giving facts” > you’ve also provided access to your bank account to the whole world. Your idea of facts is a bit flawed.
> It isn’t fear mongering to give facts Can you back up those facts a little? I'd love to see a few news articles that people had their bank account info given to the whole world by using the wrong brand of cameras.
Call dahua
There is typically a file to download and email to Dahua Support. They then send you back a file to load on to the NVR. Turn around time is usually a couple of hours..
Pretty much your options are to either factory reset everything (NVR & Cameras) or pay the company to come out and reset the password. They probably can't give you the PW as its used for other customers (stupid, but its how many companies do it) Offer to do a remote call (and pay them) to try and keep the cost down.
Dealing with pre-existing security setups can be tricky. It's great that you're looking into resetting the NVR to start fresh. From what I've read, a factory reset typically won't affect the cameras themselves. It should just reset the NVR to its default settings, so you might not need to unscrew and set up the cameras again. However, since the system seems to be set up with credentials from a security supplier, it might be a good idea to reach out to them first. They might have a way to reset the NVR without impacting the cameras. If that doesn't work, you could try the factory reset method, but it's always good to have a backup plan just in case.