The Computer Audiophile Posted September 20, 2022 Share Posted September 20, 2022 I suppose we need a thread about this one. I've had it for a couple weeks and haven't used it much to be honest. I'm happy Roon finally has mobile, but I use the offline capability of the Qobuz app all the time, and Roon Arc can't offline music from streaming services. I also use CarPlay every day, and Arc doesn't have that yet. Other than that, it's a great way to stream one's local content that isn't available on streaming services and is free with the Roon subscription. I can't complain about free. I've used VOX over the years, but that's $5 per month. One issue I don't like is the encouragement by Roon to enable UPnP on people's routers to make Arc work. This is a huge security issue waiting to happen. I manually forwarded a port to my Roon server for Arc to find it. Founder of Audiophile Style | My Audio Systems Link to comment
botrytis Posted September 20, 2022 Share Posted September 20, 2022 I do not use port forwarding or UPnP because of the major security issues. I mean even the DoJ says NOT to use uPnP, since it allows hackers to gain access to your network. What is UPnP? Yes, It's Still Dangerous in 2022 | UpGuard DeadBolt Ransomware - Security Advisory | QNAP - this is recent.... The basic design of UPnP is at fault in this. The Computer Audiophile 1 Current: Daphile on an AMD A10-9500 with 16 GB RAM DAC - TEAC UD-501 DAC Pre-amp - Rotel RC-1590 Amplification - Benchmark AHB2 amplifier Speakers - Revel M126Be with 2 REL 7/ti subwoofers Cables - Tara Labs RSC Reference and Blue Jean Cable Balanced Interconnects Link to comment
The Computer Audiophile Posted September 20, 2022 Author Share Posted September 20, 2022 23 minutes ago, botrytis said: The basic design of UPnP is at fault in this. Yes. What makes it great, makes it terrible. botrytis 1 Founder of Audiophile Style | My Audio Systems Link to comment
firedog Posted September 20, 2022 Share Posted September 20, 2022 Can't get ARC to connect to my Core, even though Roon says all is ready. Hoping Roon support will figure something out. They seem to have someone working on it. Mobile Roon would really be a useful thing for me. The Computer Audiophile 1 Main listening (small home office): Main setup: Surge protector +>Isol-8 Mini sub Axis Power Strip/Isolation>QuietPC Low Noise Server>Roon (Audiolense DRC)>Stack Audio Link II>Kii Control>Kii Three (on their own electric circuit) >GIK Room Treatments. Secondary Path: Server with Audiolense RC>RPi4 or analog>Cayin iDAC6 MKII (tube mode) (XLR)>Kii Three . Bedroom: SBTouch to Cambridge Soundworks Desktop Setup. Living Room/Kitchen: Ropieee (RPi3b+ with touchscreen) + Schiit Modi3E to a pair of Morel Hogtalare. All absolute statements about audio are false Link to comment
Dandou Posted September 20, 2022 Share Posted September 20, 2022 The installation of Roon Core 2.0, and of Roon ARC was flawless. I will cancel my subscription to BRIO by Orastream for the cloud storage of my music. How can I verify if ARC opened UPNP ports on my router? Link to comment
Popular Post The Computer Audiophile Posted September 20, 2022 Author Popular Post Share Posted September 20, 2022 2 minutes ago, Dandou said: How can I verify if ARC opened UPNP ports on my router? If it works outside your house and you didn't make any changes. botrytis and Dandou 2 Founder of Audiophile Style | My Audio Systems Link to comment
Dandou Posted September 20, 2022 Share Posted September 20, 2022 Thank You. I will check that tomorrow. My router belongs to my internet access provider. I will verify with its support how I can secure it. Link to comment
Popular Post AudioDoctor Posted September 20, 2022 Popular Post Share Posted September 20, 2022 1 hour ago, The Computer Audiophile said: One issue I don't like is the encouragement by Roon to enable UPnP on people's routers to make Arc work. This is a huge security issue waiting to happen. I manually forwarded a port to my Roon server for Arc to find it. Quickly turns UPNP off... no one saw that, right? botrytis, pavi and The Computer Audiophile 3 No electron left behind. Link to comment
musicjunkie917 Posted September 20, 2022 Share Posted September 20, 2022 UPnP was enabled by default on my router. I turned it off and added a manual port forwarding to handle Roon ARC. Link to comment
The Computer Audiophile Posted September 20, 2022 Author Share Posted September 20, 2022 15 minutes ago, musicjunkie917 said: UPnP was enabled by default on my router. I turned it off and added a manual port forwarding to handle Roon ARC. I'd say that's a smart move. Founder of Audiophile Style | My Audio Systems Link to comment
botrytis Posted September 20, 2022 Share Posted September 20, 2022 Careful with port forwarding - hackers like to scan for open ports and see them open. Is It Safe to Forward a Port? (portforward.com) Current: Daphile on an AMD A10-9500 with 16 GB RAM DAC - TEAC UD-501 DAC Pre-amp - Rotel RC-1590 Amplification - Benchmark AHB2 amplifier Speakers - Revel M126Be with 2 REL 7/ti subwoofers Cables - Tara Labs RSC Reference and Blue Jean Cable Balanced Interconnects Link to comment
Popular Post joelha Posted September 20, 2022 Popular Post Share Posted September 20, 2022 I won't say how long it took me to figure out how to log into my router and forward a port to make ARC work. Let's just say it wouldn't sound impressive. But, for the short time I've had ARC working on my phone, I'm impressed. From a business standpoint, I'm also impressed. I realize the folks at Roon say mobility is the most requested feature. Yet, they had to know the number of requests for support they would be getting as a result and still they are offering this feature. Given how often relatively small companies in this industry don't perform as they should, I'll just say "Thanks very much" to the people at Roon for pulling this off. They're going to help a lot of us enjoy our music that much more and that much more often. Joel bluesman and jhwalker 1 1 Link to comment
botrytis Posted September 20, 2022 Share Posted September 20, 2022 If I travel, I take my music on a USB 3.0 HD. I don't want anyone to even have any possible chance of access. My wife works from home as do I (50% of the time 50% travel), so security for me is paramount. I am happy people are enjoying. Current: Daphile on an AMD A10-9500 with 16 GB RAM DAC - TEAC UD-501 DAC Pre-amp - Rotel RC-1590 Amplification - Benchmark AHB2 amplifier Speakers - Revel M126Be with 2 REL 7/ti subwoofers Cables - Tara Labs RSC Reference and Blue Jean Cable Balanced Interconnects Link to comment
R1200CL Posted September 20, 2022 Share Posted September 20, 2022 1 hour ago, botrytis said: Careful with port forwarding - hackers like to scan for open ports and see them open. Is It Safe to Forward a Port? (portforward.com) I guess we’re quite safe. I’m using Sonictransporter. Maybe different if using a normal computer. https://help.roonlabs.com/portal/en/kb/articles/arc-port-forwarding#Overview Link to comment
Dandou Posted September 20, 2022 Share Posted September 20, 2022 Danny Dulai posted on Roon's forum a message about this issue, saying that there's no security concern: https://community.roonlabs.com/t/security-with-roon-arc-roon-2-0/206917/24?u=dandou I'm not educated enough about routers and firewalls to have an opinion. What do you think? Link to comment
musicjunkie917 Posted September 20, 2022 Share Posted September 20, 2022 1 hour ago, botrytis said: Careful with port forwarding - hackers like to scan for open ports and see them open. Of course. But manual port forwarding on one port to one host is not a huge risk. Plus, there is nothing on my Roon Mac mini that cannot be replaced easily. I have backups of everything. I could wipe it clean and have it up and running in an hour. botrytis 1 Link to comment
R1200CL Posted September 20, 2022 Share Posted September 20, 2022 58 minutes ago, botrytis said: If I travel, I take my music on a USB 3.0 HD. I don't want anyone to even have any possible chance of access. My wife works from home as do I (50% of the time 50% travel), so security for me is paramount. Roon Arc support download 😀 So now we’re need more storage on our iPhones. Also; To automatically configure your network for remote access, Roon uses either UPnP or NAT-PMP. https://en.wikipedia.org/wiki/NAT_Port_Mapping_Protocol Link to comment
Popular Post The Computer Audiophile Posted September 20, 2022 Author Popular Post Share Posted September 20, 2022 11 minutes ago, Dandou said: Danny Dulai posted on Roon's forum a message about this issue, saying that there's no security concern: https://community.roonlabs.com/t/security-with-roon-arc-roon-2-0/206917/24?u=dandou I'm not educated enough about routers and firewalls to have an opinion. What do you think? I respect Danny, but don’t agree with him in this one. Neither do many security experts. Dandou and botrytis 1 1 Founder of Audiophile Style | My Audio Systems Link to comment
The Computer Audiophile Posted September 20, 2022 Author Share Posted September 20, 2022 The examples are all over. Here’s one from 2020. https://www.minim.com/blog/the-upnp-security-exploit-affecting-millions-of-home-devices botrytis 1 Founder of Audiophile Style | My Audio Systems Link to comment
Popular Post Account Closed Posted September 20, 2022 Popular Post Share Posted September 20, 2022 18 minutes ago, The Computer Audiophile said: The examples are all over. Here’s one from 2020. https://www.minim.com/blog/the-upnp-security-exploit-affecting-millions-of-home-devices Simply put, do not turn UPNP on. This is nuts. If you can remote access your router then so can a bad guy. There have been and still are DIY schemes for doing this and the risk is high. You become just one more server to be hacked. Priaptor and botrytis 2 Link to comment
botrytis Posted September 20, 2022 Share Posted September 20, 2022 47 minutes ago, musicjunkie917 said: Of course. But manual port forwarding on one port to one host is not a huge risk. Plus, there is nothing on my Roon Mac mini that cannot be replaced easily. I have backups of everything. I could wipe it clean and have it up and running in an hour. I mean for outside use. Inside it is not a big deal. Just me maybe. I brought home a virus, it was actually an assignment from one of the Professors his computer had the virus, when in Grad School, so WAY more careful now Current: Daphile on an AMD A10-9500 with 16 GB RAM DAC - TEAC UD-501 DAC Pre-amp - Rotel RC-1590 Amplification - Benchmark AHB2 amplifier Speakers - Revel M126Be with 2 REL 7/ti subwoofers Cables - Tara Labs RSC Reference and Blue Jean Cable Balanced Interconnects Link to comment
R1200CL Posted September 20, 2022 Share Posted September 20, 2022 25 minutes ago, bobflood said: This is nuts. If you can remote access your router then so can a bad guy. Well, there are services like Hue, Netatmo, IFTTT, and I consider them quite safe. Link to comment
The Computer Audiophile Posted September 20, 2022 Author Share Posted September 20, 2022 4 minutes ago, R1200CL said: Well, there are services like Hue, Netatmo, IFTTT, and I consider them quite safe. Why? Founder of Audiophile Style | My Audio Systems Link to comment
R1200CL Posted September 20, 2022 Share Posted September 20, 2022 15 minutes ago, The Computer Audiophile said: Why? Cause I haven’t heard about you can be hacked through those and similar. (Not talking about stealing PW from servers). Link to comment
The Computer Audiophile Posted September 20, 2022 Author Share Posted September 20, 2022 8 minutes ago, R1200CL said: Cause I haven’t heard about you can be hacked through those and similar. (Not talking about stealing PW from servers). Had you heard UPnP can be used nefariously? Founder of Audiophile Style | My Audio Systems Link to comment
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now