cross-posted from: https://lemmy.world/post/32265822

xkcd #3109: Dehumidifier

xkcd #3109: Dehumidifier

Title text:

It’s important for devices to have internet connectivity so the manufacturer can patch remote exploits.

Transcript:

[A store salesman, Hairy, is showing Cueball a dehumidifier, with a “SALE” label on it. Several other unidentified devices, possibly other dehumidifier models, are shown in the store as well.]

Salesman: This dehumidifier model features built-in WiFi for remote updates.
Cueball: Great! That will be really useful if they discover a new kind of water.

Source: https://xkcd.com/3109/

explainxkcd for #3109

  • Landless2029@lemmy.worldOP
    link
    fedilink
    English
    arrow-up
    27
    ·
    edit-2
    4 months ago

    I just bought my first home and as soon as I’m decently unpacked I’m going to start my journey on self hosting.

    Currently planning:

    • Small i5 HP Pro SFF PC for hosting large apps (going to config for Linux and power it off until I get more mature
    • Raspberry Pi4: pihole and home assistant
    • Raspberry Pi4: NextCloud, Deck
    • ZigBee router thing:
    • NAS
    • Jellyfin
    • JBOD on SFF?
    • flashing old Netgear nighthawk into wwdrt
    • OS Ticket to replace NextCloud Deck for a JIRA type solution to manage projects and major house items.
    • ZigBee thermometers for better Nest accuracy
    • ZigBee motion sensors for entry ways and bathroom
    • smart plugs and motion sensors for basement TV lights

    Not sure what else to add. Open to advice or suggestions.

    • tburkhol@lemmy.world
      link
      fedilink
      English
      arrow-up
      27
      ·
      4 months ago

      I’ve watched enough Lock Picking Lawyer never to want a consumer ‘smart lock.’ Half of them can be opened with a magnet. Maybe commercial grade is better, but I’ve been locked out of my job after every power failure for the last 10 years, until someone comes along with a physical key.

      Re homeassistant on a Pi: homeassistant does a lot of database transactions, so you may want to have db storage on something other than an SD card.

      • Postmortal_Pop@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        4 months ago

        I have tentative plans to make my own smart lock by way of electric motor and commercial deadbolts with an RF scanner and a back up battery for emergency. It won’t be amazingly secure in a tech way, but I figure the combination of novelty and DIY should make it reliable.

        That said, I gotta be that guy and remind everyone that all locks are security theatre and are not going to protect your house from the persistent or prepared. Your best defense is a combination of foresight and social engineering.

      • Landless2029@lemmy.worldOP
        link
        fedilink
        English
        arrow-up
        5
        ·
        4 months ago

        Good call. I was thinking of trying a 128GB usb3 stick I got. Maybe a ssd/nvme on a USB3 controller.

        • copd@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          4 months ago

          I have an old 2.5inch 500GB laptop HDD plugged into a USB/sata adaptor into my rasberry pi.

          that’s been running flawlessly for 3 years and drops every concern with running HA on a pi

      • Bytemeister@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        ·
        4 months ago

        I’ve watched enough Lock Picking Lawyer never to want a consumer ‘smart lock.’

        I’m gonna differ on this. The point of a lock is to control law-abiding access to your house. If someone wants in your house, they can attack your windows, doors, or even a wall if the lock is too strong. A smart lock let’s you open the door for a family member remotely, or set one time-access for your in-laws to come over and pickup a tool.

        I wouldn’t use a smart lock for something hardened, like a bunker or a vault, but for a house and garage, it’s okay not to have the most bullet proof lock in the world.

        • ironhydroxide@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          2
          ·
          4 months ago

          Part of the function of the lock should be to indicate of forced entry.

          Sure they could attack a window, but then you know something happened.

          A magnet attack on a smart lock usually leaves no indication of bypass. So you still think everything is as you left it, untill you need that one thing and it’s gone.

          Of course this is more for specific targeted attacks, but still, if you report to insurance that things are missing and they ask if you locked the door, but then there’s no indication of forced entry. How likely are they to pay out, or keep you as a client?

          • Bytemeister@lemmy.world
            link
            fedilink
            English
            arrow-up
            2
            ·
            edit-2
            4 months ago

            Well, I guess I could point to my snake enclosure camera (which conveniently covers the front door) showing an entry, or if the perps walk through the house, they would trigger the bunny cams, the other snake cam, or the lizard cam. Plus I have my outdoor cameras, although that is my specific scenario.

            I’m sure there is an electronic lock on the market that logs when the door is opened, even if not locked. It would be trivial to look at the lock/unlock log and determine that the door was opened without unlocking. A regular tumbler lock isn’t going to give you that kind of info.

    • tux7350@lemmy.world
      link
      fedilink
      English
      arrow-up
      15
      ·
      4 months ago

      I wish I had setup an identity management system sooner. Been self-hosting for years and about a year ago took the full plunge into setting up all my services behind Authentik. Its a game changer not having to deal with all the usernames and passwords.

      In a similar vein, before Authentik, I used Vaultwarden to manage all my credentials. That was also a huge game changer with my significant other. Being able to have them setup their own account and then share credentials as an organization is super handy.

      • Landless2029@lemmy.worldOP
        link
        fedilink
        English
        arrow-up
        6
        ·
        edit-2
        4 months ago

        My SO is already using keepass locally. Used to be only a paper notebook. Data breach paranoia.

        I plan to setup vaultwarden or keepassXC

        • psud@aussie.zone
          link
          fedilink
          English
          arrow-up
          3
          ·
          4 months ago

          I use keepass, it’s a little more work than many closed source ones, but it’s only as online as you want it to be, and runs on anything

      • AtariDump@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        1
        ·
        4 months ago

        If it’s something that’s vital, my mantra is pay to have someone else professional host it.

        I’ll pay the $10/year for Bitwarden.

    • qjkxbmwvz@startrek.website
      link
      fedilink
      English
      arrow-up
      6
      ·
      4 months ago

      ZigBee router thing:

      I’ve been happy with the SMLIGHT SLZB-06M. You can easily flash firmware, and it has PoE which was important for me. I believe it also supports Thread, but I haven’t tried this yet (and I’m not sure if it supports it at the same time as Zigbee).

      Zigbee smart plugs from Third Reality have been pretty solid in my experience, and they report power usage.

      For circuit breaker level monitoring, I have an Emporia Vue2. I have it running esphome, completely local — unfortunately this requires some simple soldering and flashing, so it’s not turnkey. But it’s been rock solid ever since flashing it. (Process is well documented online.)

      I’ve had decent luck with cheap wifi Matter bulbs, but provisioning them is finicky, and sometimes they just crap out and need to be power cycled; Zigbee bulbs (e.g., Ikea) have generally been reliable, though sometimes I’ve had difficulty pairing them initially. After power cycling a Matter WiFi bulb, it takes a while for it to respond to Home Assistant; Zigbee bulbs generally respond as soon as you power them on.

      I have a wired smart light switch from TP-Link/Kasa (KS205), and it’s been completely hassle free (and totally local — Matter over wifi). The Kasa smart switch dongles I have work flawlessly but need proprietary pairing, and I’m afraid to update firmware in case they lose local support.

      Good luck! Fun adventure :)

    • Dudewitbow@lemmy.zip
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      4 months ago

      if you have a garage, design a method to basically ensure your garage door is closed without you needing to go back to check.

      of course if you trust yourself with never making that mistake.

      last thing you want to feel is if you remembered to close the door or not and youre already far off

    • k4j8@lemmy.world
      link
      fedilink
      English
      arrow-up
      3
      ·
      4 months ago

      Great list! If you already have the Raspberry Pi devices, great. If you were going to buy some, I would look at thin clients instead. Low-power, cheaper, more powerful, can use real hard drives instead of SD cards or adapters, and x86 instead of ARM. I have an HP T630 I like but I hear good things about the Dell Wyse 5070 too.

      • Landless2029@lemmy.worldOP
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        4 months ago

        I have:

        • 2x pi4 4gb (bought them previously for octopi and pihole)
        • Pi zero
        • Several old laptops
        • 2x SFF HPs
        • 2x netbooks
        • An old slim workstation

        I work as a sysadmin so I’ve picked up a few things that wouldve gone to recycling.

        My concern is power draw running 24/7 so I need wattage monitors and going to start with the Pi systems. Until I hit performance issues then migrate to a SFF.

      • Landless2029@lemmy.worldOP
        link
        fedilink
        English
        arrow-up
        3
        ·
        4 months ago

        Yeah that’s on the list. I want them hard wired though. Gotta hire an electrician to wire up the outside of the house.