Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Unsolved
Collapse
Discussion Forum to share and further the development of home control and automation, independent of platforms.
  1. Home
  2. General Discussion
  3. Security exposure with internet connected homes
Help me with a Smart Home Interview – US Participants Needed
I

Hi everyone! 👋

My name is Ivan, and I’m a UX/UI designer from Italy, currently studying at UXRock School. I’m working on a project about smart home apps and user experience, and I’m looking to talk to US-based smart home users.

The goal is to better understand how you use your smart devices, what challenges you face, and what you'd like to see in smart home apps.

I'm especially interested in:

Active users (daily or frequent use of smart devices)

Occasional users (use smart tech for specific tasks from time to time)

🕒 Interview: 20–30 minutes
💬 Format: Voice call (Zoom, Google Meet, or your preferred app)
💰 Note: This is an unpaid interview, part of a student research project — but your input would be incredibly valuable and appreciated!

If you’re open to chatting, feel free to DM me or comment below. Thanks so much for your time and help! 🙌

General Discussion a day ago
Disaster recovery and virtualisation
C

Following on from my last thread, some progress has been made over the weekend.

With 18G of spanky RAM in my Synology DS224+. I've jumped into the murky world of virtualisation and already eliminated the need for two Raspberry Pi's from my system.

Home Assistant: In theory they provide an OVA file which is supported by the Synology. I couldn't get it to work, however, so grabbed a copy of the .img file they supply, renamed it .iso and imported it as a VM. Restored from my full back up and that all seems fantastic.

Minidnla Music server: Trivial. Grabbed a Debian .iso for Bookworm and copied that onto the NAS. Created a new machine which mirrored the specs of the Raspberry Pi, booted from the ISO then did an expert install. Once that was all stable with a basic core of stuff and networking, I've made a copy of that as a good base system. Then fired up minidnla on it, mounted my media and that's also woking. Not bad for a short weekend's work.

Still not sure about the main NUC though. I'm thinking of buying a new USB stick so I can mess around getting it working on the Synology before I do anything drastic.

Once that hurdle is sorted I'm torn between:

Using a brand new install of Bookworm, re-installing Z-way server, OpenLuup, AltUI, MSR and HA bridge, then restoring across or Making an ISO of the current system, importing that and upgrading in place (which will be pretty risk free since I can snapshot everything before I make any changes.)

Decisions, decisions.

C

General Discussion Feb 20, 2025, 11:23 AM
RFC: When disaster strikes (sorry it's a bit verbose)
C

Hi everyone. Thanks for all your input recently on the topic of local notifications. I think we got some really interesting solutions 🙂

Back to more prosaic matters. Most of you will know that I've been messing around with this stuff for some years. My last major change was when I migrated from Vera, which was something like 4-5 years ago.

While my system has grown, it's not really altered very regularly, although I try to keep most of it kind of up to date.

Current set up:
Intel NUC that runs:
Bare metal install of Debian
Z-way server with Z-wave.me USB stick
Openluup
Altui
Multi system reactor
HA Bridge
Mosquito

Raspberry Pi
Running Home Assistant

About 40 varied Z-wave and Wifi devices

I also have a Synology DS224+ which may inform some responses.

Home Assistant recovery is pretty simple. I get a full backup of the system every night dumped onto my SAN and I know from experience that it would simply be a case of booting up a new install and feeding it the backup.

The NUC on the other hand....
Coming from a commercial IT world, I am becoming more and more conscious that I don't really feel I have a suitable disaster recovery plan, and my core system is running on hardware heading for 10 years old.

My initial thought, which I've kept putting off as it's awkward would be to grab a nice SSD, reboot the NUC into Mint or something similar and simply do a dd copy onto a new drive. I can get a replacement NUC on ebay simply enough, and keep it in a cupboard if anything other than the hard drive fails on the existing one, but this feels rather like a stop gap. However one immediate question:

If I had to use the replacement NUC would all the Z-wave devices simply carry on talking to the stick, or would they all need to be re-paired?

How easy would it be to move everything the NUC does (as a start) onto the NAS? Create a VM and clone the disc onto it?

Should I move to Docker? Something else?

What are the hive mind's thoughts?

Apologies if we've done this before, but while it all just works...

Cheers!

C

General Discussion Feb 14, 2025, 2:03 PM
Eachen No Neutral smart wall switch to lights and Sonoff Mini R4 switch for LEDs
R

Hi all. First post so please be gentle.

I have an Eachen two-gang smart wall switch wired no neutral (with capacitor) connected to existing bathroom lights which works perfectly. It's also wired to a Sonoff Mini R4 Extreme connected to LED lights. I want the LED lights to switch on when the bathroom lights switch on (and vice versa). The Mini R4 works separately on my phone via Ewelink as well as on the Mini R4 itself (physical button). The switch is installed inside the wall and the rest of the components are in the ceiling / attic / roof cavity. The Mini R4 is set to Edge switch mode which works in my example I wired.

How I wired it:

cb919874-6933-460a-8cd0-f063bac88674-image.png

I have a video showcasing the example I wired today works. I could share it if required. Ignore the white cable. I only used it to power the example.

77ebbc23-83de-48ee-a4bf-247bfd24f121-image.png

3827ede6-cf5c-47aa-8fdb-c75470101c4a-image.png

The wiring diagram I used for the mini R4.

485de912-e656-4da3-b6f6-81cb076e0261-image.png

I wired it together with the existing lights of the bathroom so that L1 switches on both the Mini R4 and the bathroom lights:

a3ea5c93-a9ae-4aaf-8dce-24018bcdb4d1-image.png

This is the wiring diagram for the Eachen switch:
b867a3c7-c1ac-428c-a90f-7f0f4b62a609-image.png

The Eachen's first gang (L1) doesn't trigger the Mini R4 in any way.

Any help or advice will be much appreciated.

Thanks,
R

General Discussion Feb 12, 2025, 3:25 PM
Hello and first network question
D

Just bought a couple of generic smart plugs and set them up easily using SmartLife app in the house I then plugged one into a workshop over 100m away This workshop has a hardwired internet connection with a separate wireless access router (not mesh) after doing a reset on the device and pairing to the new router it actually works from the house when my phone is connected to a completely separate wifi network - how is that possible ?
I did read something about these devices connecting to a server somewhere in China similar to IP cameras but there is no lag

General Discussion Feb 6, 2025, 1:04 PM
Lights switches for warehouse
S

I need to replace about 15 traditional wall light switches (no neutral wire) to turn on/off all lights with one operation inside the warehouse. And still maintain the ability to control each light individually.

The preference is not to set up a Wifi for each switch to reduce the number of devices connected to the network, and also, they change the Wifi password regularly, so they do not want to change all 15 switches.

I am looking for some solution that will achieve this with either Bluetooth/RF or any other technology.
The warehouse dimensions are about 100ftx100ft with sheetrock walls.

Please assist.

General Discussion Feb 5, 2025, 7:23 PM
'Random' lights turning on
C

I thought I had created a topic on this some time back, but can't find it to close the loop.

The issue was the lights on my drive appeared to be randomly switching on, with nothing from MSR logging and just a simple 'turn this on' in Openluup logs.

Finally got to the bottom of it this morning, which might help someone.

Turns out that somehow Alexa has decided that my drive lights are part of my Living room. If I tell her 'Living room lights on' the drive lights also come on. And if I tell her to turn them off, they also go off.

Which is madness because they are NOT in the living room group.

Current solution is to disable the drive lights in the Alexa app, which is fine as I never need to voice control them.

C

General Discussion Jan 16, 2025, 9:31 AM
New to Home Automation Looking for a Single app?
A

Hi All

Hopefully this place looks like a helpful forum as I’m quite new to all this!

I’ve had a few devices all working separately /through their proprietary apps but we’re just finishing off a large house extension and this has added to the list.

I’d ideally like to be able to view/switch a number of different devices on one screen/head end but have no idea where to start.

The devices we have/will have shortly are as follows;

Zigbee Smart Sockets
Zigbee smart switches (for lights)
Heatmiser Neo Underfloor Heating (this runs from a Samsung ASHP but that part is automatic)
Samsung VRF air conditioning (currently using Smart Things App)
Hive (2xLTHW heating circuits in the existing house and Hot Water)
Ring (doorbell!)
Hik Vision PoE CCTV

We have lots of appliances (Neff N70) which we can control remotely but not too fussed about controlling those at the
Moment)

Any help/recommendations would be appreciated!

Thanks

Adrian

General Discussion Nov 18, 2024, 1:00 AM
Sending data to a USB port to interface with a wireless switch
F

I have a legacy home automation set-up running on Windows XP. the computer and software have now died.
I have written a very nice Excel VBA program to replace the software and it can run on any modern Windows system.
My only remaining problem is to output the correct signal to a USB port to trigger the wireless switches.
Has anybody done a similar exercise. Please help.

General Discussion Nov 13, 2024, 11:20 AM
Looking for Remote Switch boxes that can also be used with a wireless Decora Style Switch.
V

Hi All,

Kind of new to Home Automation. Started off Using Amazon Echo units and added a Samsung SmartThings hub. I have mostly been using plug in modules for turning lights on and off. I live in a very rural area where the internet goes out a lot. I eventually want to change to to a non internet Hub so things will work without needing an internet connection. But I will post with those questions at a later date.

So, the task at hand is this: I have flood lights at each corner of my house. They are currently controlled by switches at the front and back doors. I would like to add Security Cameras to each corner also. I can easily find small Wifi switches to put into the electrical box where the flood lights are located, then I can terminate the leads together behind the Decora switch to have constant power. Then I can use the constant power up at the lights electrical box to power the security cameras. I would also like to have a wireless switch to take the place of the Decora switch to be able to turn the lights off and on.

I cannot seem to find a product like this. It seems I can find the small wired in switch boxes that will also come with external smart wall switches, but the wall switches are an external box that does not fit in or cover the existing Wall switch electrical box. I can also find Wireless Decora switches that come with a remote wired in small switch box , but they all seem to be RF and do not integrate with a Smart Hub.
I am hoping someone here knows of a product that matches what I am looking for. Any help would be appreciated.

Also any recommendations for Wireless Security cameras are welcome.

Thanks for any help.

General Discussion Nov 9, 2024, 1:50 PM
Just starting what hub is best.
I

Dear Forum,

I am just starting a smart home system. I've wanted to do this for 10 years at most and really would like to get a start. What I have are a couple of SONOFF wifi relays, some 433 (Hz/mHz) switches ( not wifi ) a couple of wifi lightbulbs, and I'd like to expand wifi thermostat, leak/water detectors, garage door openers and what ever else I can think of.

In the SONOFF items I have it's a particular app, the wifi bulbs are another app, and if I do a thermostat there might be another app. My wife is not a Luddite but she damn sure doesn't want to have to trouble shoot if/why a particular app breaks down.

So in what I do understand about smart home things is that I need/want a HUB. I spent 15 years doing some programming so I do have some computer ability, though I'd prefer to stay away from HAVING to line command operate the hub.

I would like a list of HUB's that people have found to be the best. Even better are links to let's say Amazon for that hub.

Regards from Noob Smart Home,
Barry

General Discussion Nov 3, 2024, 4:43 PM
Logitech logic
C

Hello lovely people. Long time and all that. Hope you're all doing OK.

Bit of a left field one here, looking for extra eyes more than an answer and you're the most logical bunch I know 🙂

Part of our HA system is a Logitech Elite hub and remote control.
This is programmed to control my Cyrus Stereo, our TV, and HDMI switch and our Virgin V6 box.

I've been away for a couple of days. Got back this evening to (eventually) work out that the V6 box appears to be not accepting any commands from the Logitech.

Everything has been rebooted.
Logitech uses IR to control
Cyrus: Fine
TV: Fine
HDMI: Fine

Remote control uses Bluetooth to control Hub.
All commands from the Remote to the hub are executed (one might assume correctly) as the activity LED responds, and if you're controlling (say) the Cyrus, all works fine.

iOS App can be used to control Hub over the WLAN:
All commands from the App re executed (one might assume correctly) as the activity LED responds, and if you're controlling (say) the Cyrus, all works fine.

Native remote (that uses as far as I know bluetooth) to control the V6 box works fine.

V6 box refuses to acknowledge any command other than from the native remote. Remote or app provoke absolutely zero response from the V6 box.

This is annoying, but damned if I can think of any logical reason. One might assume a firmware update on the V6 box, but given that the Hub simply emulates the native remote, that seems unlikely.

I'm struggling to think of where even to start troubleshooting this, so any random thoughts would be appreciated.

My initial approach is to buy another hub in case there's a different radio set that's failed in the hub...

TIA!

C

General Discussion Oct 12, 2024, 4:24 PM
Recommendation for a smart in-wall plug
D

I currently have an HVAC system in the attic - for heating and A/C. 120v is supplied to the unit to run the gas heating. A/C uses 240v. I have an ecobee thermostat...which sometimes goes offline....not often. When it goes offline, I need to turn the 120v power to the HVAC system off and then back on (the ecobee gets its power from the HVAC system). That resets the ecobee and all is fine. I spend the summer away from this house and if the ecobee goes offine..I have no current method to reset the HVAC 120v power remotely. My idea is to replace the current 120v plug in the attic with a smart plug...then I can remotely turn the 120v power off and the ecobee will reset and come back online. I use Wyze and Lutron Casita in the house currently and was hoping I could find an in-wall smart plug from Wyze or Lutron. Obviously, I don't need diming, etc...just the ability to turn the plug power on/off. I've seen some options...but one problem I have is the attic can reach up to 135F in the summer...many of the smart plugs I've seen are not rated for that temperature. Might any of you have any thoughts on a smart plug I might want to look at? I don't want to invest in anything that would require a new hub - so either WiFi based or Casita HUB based. I need 120v and 15amp ratings. Thanks in advance.

General Discussion Sep 25, 2024, 2:40 AM
Expression Evaluation - Last Seen Date/Time
S

I am trying to run a reaction that turns on lights if a sensor has not been tripped for 2 minutes. Basically, when a garage door is open, turn on inside lights if nothing has been sensed for 2 minutes. My question has to do with the expression/variable for "Last Seen". The variable never gets updated over time since the last seen event never changes.

Screenshot 2024-09-02 191632.png

In the screenshot above, the reaction checks for any garage door as well as the variable called "GarageLastEntry". The expression for this variable is displayed below:

Screenshot 2024-09-02 191651.png

The problem that I am experiencing is that the variable never changes over time. I understand that this is because the "last seen" variable does not change over time when there is no activity. In this screenshot, the value shows 0.029... This can also be seen as the current value in the original reaction screenshot above. After 10 minutes, this value should be 10. However, when a garage door is opened, the variable does not get updated and thus the rule does not become true since .029 is less than 2.

When I go to the variable and click on the > icon, the variable then gets updated as expected as seen below:
Screenshot 2024-09-02 191711.png

So the ultimate question is, how do I use a rule that can use a variable such as "last seen"? Do I need to create another variable or reaction that multiplies this by 1 every minute? From what I read in the manual, a variable is evaluated every time it is included in a reaction. But this is not what I am seeing.

I also want to ask another question related to this variable. It seems like Reactor continuously deletes this variable and I have to keep recreating it? I have never experienced this with MSR so wanted to ask if this is a common problem or if my definition is causing this.

Any info is appreciated!!!

General Discussion Sep 5, 2024, 5:48 AM
UK - Yale Smart Locks and Wi-Fi Bridge
S

BACKGROUND

I have been using 4 x Yale Contactless Connected Door Locks for several years (they use either a rfid tag or code to enter)

I have also been using 1 x Yale L1 Door Lock on the main front door and this connects via Yale Software

Yale contacted me to advise the L1 Lock software was being withdrawn and I needed to install a Yale Access Module into the existing lock and a Wi-Fi Bridge to link it with the newly released software

ALL of the above was working just fine.

RECENT

Yale emailed to advise I should add a Yale Access Module to each of the 4 other locks as this would link with the updated software via the Wi-Fi Bridge.

They offered a deal of just £4 each for these Modules so I got them.

THE PROBLEM

I found that only 2 of these modules would slot easily into the locks - two of them bent the pins and one of those snapped the female part in a lock (I do have a spare lock but thats not the point).

Anyway, I began to set-up the two fitted Modules with the Wi-Fi Bridge and I eventually found (thanks Google, NOT Yale) that I now need 1 x Wi-Fi Bridge PER LOCK (£50 each).

QUESTION

Does anyone know of a compatible Wi-Fi Bridge which works with Yale AND can handle multiple connections (ie 5 all 5 of my locks) ?

THANK YOU

General Discussion May 23, 2024, 9:59 AM
iCOMEN boiler switch
V

Hello,
I had an iCOMEN boiler switch that worked for many years. And I used iCOMEN app on my phone to manage it. Short time ago app started to have an error message that it cannot connect to the server, and after some time the device also stopped working.

General Discussion Apr 2, 2024, 8:58 AM
Would you use a self-hosted geofencing solution?
toggledbitsT

Some of you may know that I took at shot at building an alternate geofencing solution for Vera. The core of it was system agnostic, using the OwnTracks application and AWS lambdas to track devices and keep a central data, then disseminate that to the Vera via a websocket-based plugin. It worked with other apps as well, including Tasker and GPSLogger, but of the dozen people that were testing it, most used OwnTracks.

A lot was learned in the process, not the least of which is that the success of any such solution is highly dependent on the phone and its settings. Phone manufacturers love to set things up for the longest battery life, of course, but that's usually very anti-geofencing behavior. In the case of at least one brand, it was unusable and the settings could not be modified. It was also cost-prohibitive to maintain on Amazon, as AWS grabs a dime here and a dollar there and before you know it, it added $100/month to my AWS bill, which my wife deducted from my Scotch budget. Unacceptable.

But it's quite reasonable to use OwnTracks to a local endpoint, and I could pretty easily replicate the functionality as a local application, or maybe even as an additional endpoint built into MSR's API (still separate port and process, but in the package).

So the question really is... would you do it, or would you be too concerned about the security risks associated (e.g., dynamic DNS and NAT mapping in the firewall necessary for the phone to contact the service when not on LAN)?

General Discussion Mar 7, 2024, 9:53 AM
Forum sysops
A

Hello forum instigators.

Not sure who host/runs the forum software but a couple of challenges:

The chat is not currently usable, as the scrolling is all not right and it's not possible to read chats or send chats reliably.

There are a lot of female members that should perhaps be on another forum; where they can advertise their skills more appropriately. Note: I agree it's a job, like any other.

Whoever you are - thank you for your invaluable work.

General Discussion Feb 25, 2024, 7:58 AM
looking for a light switch with presence sensor?
T

I run a B&B and am looking for a way to turn the lights off whenever a room is unoccupied for X amount of time. The guest should still be able to turn the lights on and off manually, but should not be able to disable the auto turn off feature if the room is unoccupied.

I guess I am looking for a light switch with a built in presence sensor? I guess a presence sensor would be better as if it is a motion sensor, the lights may go off unwanted if the guest fails to make sufficient movement e.g. if the guest is lying down watching a film.

Are there any products on the market that would work for my application?

General Discussion Feb 9, 2024, 2:42 PM
Looking for Bluetooth device for smartphone audio transmission
M

Hello,

I am in search of a device capable of using Bluetooth to connect with a smartphone and serve as its primary sound source on demand. This device should function similarly to conventional Bluetooth headphones, which automatically become the phone's sound output upon activation. However, this device should differ in that it transmits the audio signal to an amplifier via a jack, SPDIF, or similar connection. Alternatively, it could be an integrated amplifier that directly sends the signal to passive speakers.

The control of this process should be manageable through an API such as MQTT, REST, MODBUS, or similar. Are you aware of any devices that operate in this manner?

The concept is as follows: upon entering the bathroom, I would press a wall-mounted switch. This switch would send a signal to the Bluetooth device, prompting it to connect to my smartphone and seamlessly continue playing the audiobook I am currently listening to. Instead of using the phone's speakers, it would seamlessly start playing through ceiling-mounted speakers.

Many thanks 🙂

General Discussion Jan 20, 2024, 7:33 PM

Security exposure with internet connected homes

Scheduled Pinned Locked Moved General Discussion
16 Posts 6 Posters 794 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • rafale77R Offline
    rafale77R Offline
    rafale77
    wrote on Apr 30, 2021, 4:00 PM last edited by
    #1

    I am a pretty active forum user over on the QNAP forum and there has been a number of viral threads there and on reddit about the spread of ransomware on these NAS.

    I wanted to post here to say that this is a fresh reminder to be very cautious with the current state of the affair when it comes to smarthomes and the trend towards IOT we are observing from all these companies attempting to make our homes cloud dependent, opening so called "secure tunnels" to their servers which can turn into very real exposures to your LAN (home network).

    In order to mitigate it, QNAP released a firmware which now has autoupdate enabled by default (reminds me one other company...) and IMHO is the climax of absurdity but in fact when I come to think about it is how the amazon echos and ecobees work for example without even offering the ability to disable.

    I am in no way a security expert but have had enough exposure and interest about it to recommend using a real firewall for your home network to block these backdoors if you have a smarthome and avoid these cloud oriented platforms and devices as if they were COVID.

    1 Reply Last reply
    2
    • akbooerA Offline
      akbooerA Offline
      akbooer
      wrote on Apr 30, 2021, 4:37 PM last edited by
      #2

      Apple's OK, though ... ? (Homehub mini / Homekit / Home)

      rafale77R 1 Reply Last reply Apr 30, 2021, 5:28 PM
      0
      • DesTD Offline
        DesTD Offline
        DesT
        wrote on Apr 30, 2021, 4:43 PM last edited by DesT Apr 30, 2021, 12:44 PM
        #3

        I'm your man if you want to talk about cyber security 😉
        Doing that for the last 25years!

        1 Reply Last reply
        3
        • rafale77R Offline
          rafale77R Offline
          rafale77
          replied to akbooer on Apr 30, 2021, 5:28 PM last edited by
          #4

          @akbooer

          It's better in two ways that I can see:

          1. They don't auto-update their firmware by default. This exposes you to surprises when you come back to a broken system. I went on a very long tirade on the ecobee forum years ago about how risky such a feature is only to find out the amazon echos are doing the same thing. I was very happy to get rid of all of these devices. These companies think that this is a security feature because they automatically load security patches in these updates for ignorant users. The problem is the downtime these automatic updates create and risk of breaking something during the update or within the firmware itself. It is not so different from the nightly heal philosophy. The thought of automating a maintenance is all good intention but it is pushing downtime and often very high risks of breaking something without any control.
          2. They don't send your voice recording for processing if it can process locally. It does send the STT (Speech to text) output though whenever it can. This is more a privacy issue than security.

          They are still cloud connected devices so there is still an exposure. If their servers get hacked and your credentials are exposed, one can actually take control of your homekit. The connection from their server to your device though is much more secure (than QNAP's default scheme which exposes a lot of things). Maybe @DesT will have more knowledge of this. 😉
          Homekit isn't by any stretch of the imagination more secure than the Google or the Amazon platform. It is just a bit better in terms of privacy and much better in terms of performance and reliability. The ideal security is for it not to be connected to the cloud at all which was Rhasspy or Mycroft are offering.

          1 Reply Last reply
          0
          • DesTD Offline
            DesTD Offline
            DesT
            wrote on Apr 30, 2021, 8:59 PM last edited by
            #5

            yeah.... rule #1 in my work is:

            Connected=hacked
            Cloud=leak

            So of course, I'm also a non-cloud user as much as possible and it's one of the reason why almost all of our clients are not "cloud" too!

            I'm 100% for doing regular update BUT never automatically and even more for firmware. Firmware can break thing often and it's always too late after!

            We are also always checking what's the RELEASE NOTES are saying about an update to check if something can break and also checking on internet if ppl are complaining about an update that break something.

            The problem with things like QNAP it's the service they offer to allow people reaching their "data" from Internet by using their cloud service to send you back inside your home network! That's why I will always prefer having a VPN connection from my device directly to the home network when necessary.

            Just google what happen with Solarwinds and you will have more fear about being "connected"!

            1 Reply Last reply
            0
            • parkercP Offline
              parkercP Offline
              parkerc
              wrote on May 8, 2021, 6:23 PM last edited by
              #6

              Totally agree

              And being a long term QNAP User myself, I’ve so far (touch wood) avoided any of these attacks, but I put that down to the obvious and never exposing my NAS to the internet, I’m amazed at how many people place theirs at the perimeter - and I agree QNAP don’t help, as they have add-ons that almost encourage it.

              I appreciate nothing is going to be 100%, but for a while now I’ve been happy with my UniFi Secure Gateway (Router) with it’s VPN capability which allows me to connect back in as/when I need to.

              1 Reply Last reply
              0
              • rafale77R Offline
                rafale77R Offline
                rafale77
                wrote on May 10, 2021, 12:00 AM last edited by
                #7

                I am still following the events unfolding. It is indeed amazing to me how many people had their NAS open and accessible directly through port forwarding...

                S 1 Reply Last reply May 17, 2021, 3:28 PM
                0
                • rafale77R Offline
                  rafale77R Offline
                  rafale77
                  wrote on May 17, 2021, 2:16 PM last edited by
                  #8

                  Another week has passed and now there is a breach in the Eufy security camera platform and we have seen what has happened to the Colonial pipelines in the US... I wonder who is next. Highly encourage people to be much more deliberate and conscientious with what device you buy and install in your homes...

                  S 1 Reply Last reply May 17, 2021, 3:29 PM
                  1
                  • S Offline
                    S Offline
                    sender
                    replied to rafale77 on May 17, 2021, 3:28 PM last edited by
                    #9

                    @rafale77 it functionality vs usability... if you do not forward specific ports (smtp, ftp, etc) you van not use the device as intendes. And placing it behind a vpn is not workable in that sense...

                    C 1 Reply Last reply May 17, 2021, 3:35 PM
                    0
                    • S Offline
                      S Offline
                      sender
                      replied to rafale77 on May 17, 2021, 3:29 PM last edited by
                      #10

                      @rafale77 exactly! I don't care anymore and place all tunnelneeding devices in a separate vlan/segment with internet access...

                      1 Reply Last reply
                      0
                      • C Offline
                        C Offline
                        CatmanV2
                        replied to sender on May 17, 2021, 3:35 PM last edited by
                        #11

                        @sender said in Security exposure with internet connected homes:

                        @rafale77 it functionality vs usability... if you do not forward specific ports (smtp, ftp, etc) you van not use the device as intendes. And placing it behind a vpn is not workable in that sense...

                        Well that rather depends on the device. Alexa, for example, requires no port forwarding. A NAS probably would but can be accessed via a VPN.

                        For example my mail server does need very specific ports (obviously) but they are not forwarded. I connect to my own VPN end point.

                        The only port I have open is a non-standard SSH port. However Alexa creates her own connections which may be insecure.

                        So not quite sure what case you're looking at here.

                        C

                        The Ex-Vera abuser know as CatmanV2.....

                        S 1 Reply Last reply May 17, 2021, 9:23 PM
                        0
                        • rafale77R Offline
                          rafale77R Offline
                          rafale77
                          wrote on May 17, 2021, 6:17 PM last edited by
                          #12

                          @CatmanV2 is correct. It's not just about port forwarding. In many case it is the cloud server getting hacked, exposing your credentials and allowing people to access your account. The reason for my post about being careful with the devices you buy... is more related to smart home devices or I would say IOT devices getting hacked from the "I" internet. The latest as of this morning about Eufy cameras is an example. See here
                          https://www.reddit.com/r/EufyCam/comments/neayuo/access_to_random_cameras_in_another_country/

                          It always blew my mind that anyone would want their cameras to stream anywhere outside their own network besides through a direct VPN but... you see all of these cloud doorbells and cloud cameras services but the same is true for all the other smart thermostats etc... which I have either eliminated or am isolating and aggressively blocking access to/from WAN.

                          1 Reply Last reply
                          1
                          • C Offline
                            C Offline
                            CatmanV2
                            wrote on May 17, 2021, 8:35 PM last edited by
                            #13

                            Well this, frankly.

                            My alarm installer was looking some new tech that could actually interface with z-wave, which was of interest. Turns out that all its security functions are cloud dependant....

                            C

                            The Ex-Vera abuser know as CatmanV2.....

                            1 Reply Last reply
                            0
                            • S Offline
                              S Offline
                              sender
                              replied to CatmanV2 on May 17, 2021, 9:23 PM last edited by
                              #14

                              @catmanv2 hence I have a separate vlan/sybnet for "tunneling" and outbound session things (mostly IOT). And specific ports forwarded to a nas (compared to a vpc but locally managed)

                              C 1 Reply Last reply May 18, 2021, 5:14 AM
                              1
                              • C Offline
                                C Offline
                                CatmanV2
                                replied to sender on May 18, 2021, 5:14 AM last edited by
                                #15

                                @sender said in Security exposure with internet connected homes:

                                @catmanv2 hence I have a separate vlan/sybnet for "tunneling" and outbound session things (mostly IOT). And specific ports forwarded to a nas (compared to a vpc but locally managed)

                                I should really do the same thing. But I'm not convinced that there's really much benefit. My Alexas still need to talk to HA bridge. I guess I could put HA bridge on a separate machine and then allow only connections from that IP into the main device but that doesn't seem any more robust than the current set up.

                                Perhaps a better piece would be to separate all my critical services so keep NotVera and HA bridge and Alexa all on a separate subnet.

                                C

                                The Ex-Vera abuser know as CatmanV2.....

                                1 Reply Last reply
                                0
                                • rafale77R Offline
                                  rafale77R Offline
                                  rafale77
                                  wrote on May 29, 2021, 10:47 PM last edited by
                                  #16

                                  Could be a bizarre follow up to a post I made on another thread but it may be more related to this topic so I am posting here. Oddly things are unraveling... It is confirming my own observations that Android devices seem to send a lot of data, a lot more than iOS devices even when you don't them to. This is odd because of how hit and miss geofence on android has been yet I am observing that they update Google about where your device is a lot more frequently and with a lot more "details" than iOS devices do.

                                  'Apple is eating our lunch': Google employees admit in lawsuit that the company made it nearly impossible for users to keep their location private | Business Insider India

                                  'Apple is eating our lunch': Google employees admit in lawsuit that the company made it nearly impossible for users to keep their location private | Business Insider India

                                  Google misled phone makers into hiding privacy settings users liked in order to collect more location data, according to newly unredacted documents.

                                  1 Reply Last reply
                                  0

                                  Recent Topics

                                  • Need help reducing false positive notifications
                                    T
                                    tamorgen
                                    about 7 hours ago
                                    0
                                    2
                                    22
                                  • Help me with a Smart Home Interview – US Participants Needed
                                    I
                                    Ivan_Razin
                                    a day ago
                                    0
                                    1
                                    25
                                  • MQTT configuration question
                                    tunnusT
                                    tunnus
                                    3 days ago
                                    0
                                    11
                                    223
                                  • System Configuration Check - time is offset
                                    G
                                    gwp1
                                    3 days ago
                                    0
                                    8
                                    73
                                  • Programmatically capture HTTP Request action status code or error
                                    therealdbT
                                    therealdb
                                    5 days ago
                                    0
                                    3
                                    62
                                  • ZwaveJSUI - RGBWW BULB - Warm/Cold White interfered with RGB settings - Bulb doesn't change color if in WarmWhite state.
                                    toggledbitsT
                                    toggledbits
                                    6 days ago
                                    0
                                    9
                                    270
                                  • Problem with simultaneous notifications.
                                    T
                                    tamorgen
                                    6 days ago
                                    0
                                    1
                                    47
                                  • Problem after upgrading to 25067
                                    R
                                    retireditguy
                                    11 days ago
                                    0
                                    4
                                    164
                                  • Reactor (Multi-System/Multi-Hub) Announcements
                                    toggledbitsT
                                    toggledbits
                                    13 days ago
                                    5
                                    119
                                    17.0k
                                  • Global expressions not always evaluated
                                    tunnusT
                                    tunnus
                                    13 days ago
                                    0
                                    3
                                    121
                                  • [Solved] Local expression evaluation
                                    tunnusT
                                    tunnus
                                    24 days ago
                                    0
                                    13
                                    370
                                  • [Solved] Runtime error when exiting global reaction that contains a group
                                    G
                                    gwp1
                                    26 days ago
                                    0
                                    7
                                    553
                                  Powered by NodeBB | Contributors
                                  Hosted freely by 10RUPTiV - Solutions Technologiques | Contact us
                                  • Login
                                  • Don't have an account? Register
                                  • Login or register to search.
                                  • First post
                                    Last post
                                  0
                                  • Categories
                                  • Recent
                                  • Tags
                                  • Popular
                                  • Unsolved