I was struggling today to add my Qobuz account to my Node 2i via the Bluesound app on Android, AT&T internet service. Eventually I received notification from the AT&T Smart Home app that a "Privacy Threat [was] Blocked"
From the app:
We noticed that Node2i was trying to send unencrypted authentication information. Sending information this way exposes your sensitive information and makes it vulnerable to tampering.
In order to connect Qobuz to Bluesound I had to unblock / whitelist the URL.
I'm not a programmer but it is my understanding that general best practices call for not sending authentication or other sensitive info in an insecure manner. I'm wondering if this is an issue with Bluesound code or Qobuz code, and more importantly, can it please be fixed?
Please sign in to leave a comment.