Re: Is there a 'generic thing' that can mitigate most of it?
UPNP is probably a lot of it because people don't know to turn it off and some things people buy won't work without either having it enabled or knowing how to administer a network. Take those IP cameras people were complaining about earlier. With such a thing, there are three general options. Here they are, along with the experience of the nontechnical person wanting to view the outside of their house when they are not in the house:
1. The IP camera that sends a data stream to a device of your choosing. The user doesn't know how to set up the server to send the images, so they can't see anything unless they're on their local network.
2. The IP camera with a basic UPNP and DDNS component built in. The camera gets installed, you add the address to your phone, and you can see the camera from wherever you are as long as the network's up.
3. The camera that connects to a remote service like the seven different lines Amazon's got. You can access your footage but only through the app you're already signed into. Also they have access to everything and misuse it in many ways.
For us, the ideal option if we're going to have such a thing is 1, and we can figure out how to either direct the traffic to a server of our choice or VPN into our home network to see it. The average buyer can't use that one so ends up with one of the others. Manufacturers that don't want to maintain a mobile app and cloud system won't build with number 3, and since most customers won't use things with option 1, they mostly land with option 2. Then they stop development as soon as the products are on sale and they become targets for botnets.
Biting the hand that feeds IT
