My reason for wanting HomeAssistant and a locked down VLAN...
-
I have a rule that "Nothing will be automated that cannot be manually overridden."
Well, actually it's my wife's rule but it's a good rule nonetheless.
As a result, there's a big panel full of relays in the basement that is the "last mile" for anything climate control or security related.There have been a few times when it's been handy. Like when the exhaust fan isn't working and I don't want to debug the ESP32 controller today so I just flip it over to "Manual".
wrote on last edited by [email protected]KNX.
Everything is decentrally programmed, and you can do extra automations and stuff from home assistant, but KNX devices are wired (generally) and will always Just Work
. More expensive that the cheaper retrofit options, but if you factor in manual overrides or getting the "better" wireless smart devices it is comparable. They generally also have a manual override at the panel. For core functions like lights, HVAC, roll shutters or blinds, etc... That is honestly the best option (unless you want every light to be an RGB light for some reason, then you still need smart bulbs) -
I thought Hue bulbs used Zigbee?
you’re right, my bad
-
Gahhhh...
Sounds like a total PITA
And yes we need stronger consumer protections.
I follow FUTO so I'm aware of TOS BS.
wrote on last edited by [email protected]I’ve been happy with reolink cameras fwiw though not 100% so. They do have some nonsense though
I also prefer Lutron Caseta for lighting. It’s fairly bulletproof (I’ve literally never had any connectivity issues in like 6+ years) and they haven’t pulled any tos nonsense as far as I know. Downside is pricey and the install is more complex than typical iot stuff. And while they can control outlets they are only rated for 10A lighting so keep that in mind.
The only internet requirement for both of these (not always with reolink I think but at least with the cameras I have) is that you have to allow internet once during initial setup to pair devices. Once that is done you can remove internet access and delete the app
The common thread with these is wired too. The further along I go the more I realize that 2.4ghz WiFi iot shit is garbage. going from WiFi cameras that had privacy concerns and disconnected to local only poe cameras that just work was very nice. Learn from my mistake, don’t buy bullshit eufy cameras that you then have to sell at a loss.
And for your own sanity don’t try to get smart smoke detectors. Your options are either Google/nest that apparently does work well (never tried it, fuck Google), the new kidde that is built into amazons ring platform (never tried it, fuck amazon, plus the preceding model had awful reviews), or the new firstalert that is replacing the Google/nest (again, fuck Google, but I did try the preceeding first alert and it was atrociously bad).
I mention this because this brings up a key issue with regulatory compliance in the US (and probably EU, dunno). You can also try a number of off brand detectors as well that apparently work a lot better. If you search amazon for smart detectors you’ll see stuff like x sense and these apparently have somewhat solid reviews and work okay (though getting them to work in HA is mixed).
However, what amazon fails to mention is that these types of detectors have not been submitted for regulatory compliance in the US (unlike Kidde, firstalert, etc that you’d find at a home depot). They “meet UL requirements” but they have not been submitted for testing so they cannot print the UL logo on the box (legally) but they can write “meets UL requirements”, which is misleading. Fuck amazon and fuck the us government for giving them no culpability in selling obscenely dangerous bullshit
This means if you use these and your house burns down your insurance could technically nullify your policy for not having adequate protection. Or they could not work and you could die, of course
There are smart relays you can tie into an interconnected smoke detector circuit using normal smoke detectors that are appropriately rated if you do want alerts on your phone. There are also device that will listen for chirps but these get false positives
-
Or add new bloat features / brick devices after updating TOS...
Remote device bricking is cheaper than researching part wear for planned obsolescence.
-
We do have more than one type of water, D~2~0, HD0, HT0, T~2~0, DTO, which are all different mixtures of Hydrogen, Deuterium and Tritium or in other words the hydrogen has more neutrons, there is also a different ionization for each of those, plus there are different phases of ice which are made from different pressure that is ice I-VII, and it's not impossible for more types we don't know about, then there is isotopic water that have different mass and reaction rates and it's not impossible for other types that we just don't know about or even to create other types.
Tldr: atoms and molecules are more varied and complex than you'd think.
Right, but none of them are new. They've all been around for billions of years.
-
My house has manual windows, manual locks, and a dumb garage door controller... because I work in IT.
I do have a few smart appliances (environment reporting) but they are only allowed on the banishment VLAN so they don't get to interact with any single appliance inside my network. All they see is internet and nothing else.
The S in IoT stands for security
-
Remote device bricking is cheaper than researching part wear for planned obsolescence.
And both make me go with a different company next time so idk what they think they're gaining.
-
cross-posted from: https://lemmy.world/post/32265822
xkcd #3109: Dehumidifier
Title text:
It's important for devices to have internet connectivity so the manufacturer can patch remote exploits.
Transcript:
[A store salesman, Hairy, is showing Cueball a dehumidifier, with a "SALE" label on it. Several other unidentified devices, possibly other dehumidifier models, are shown in the store as well.]
Salesman: This dehumidifier model features built-in WiFi for remote updates.
Cueball: Great! That will be really useful if they discover a new kind of water.Source: https://xkcd.com/3109/
New kinds of water, you say? The marketing department is already on it and boy have I got news for you!
-
New kinds of water, you say? The marketing department is already on it and boy have I got news for you!
wrote on last edited by [email protected]Wait... Is that heavy water?? /s
-
Wait... Is that heavy water?? /s
How about I hook you up with a brand new water softener on a 30 year lease but no payments in the first 5 years so it’ll be the next owner’s problem
-
How about I hook you up with a brand new water softener on a 30 year lease but no payments in the first 5 years so it’ll be the next owner’s problem
Omfg it's like solar panel companies...
So many damn houses with solar leases more expensive than just electricity
-
The up arrow moves through the letters, e.g., A->B->C. The down arrow moves to the next character in the sequence, e.g., C->CA->CAA. If you click past the correct letter, you’ll have to click all the way through again. And if you submit the wrong letter, you have to start all over (after it takes twenty seconds attempting to connect with the wrong password and then alerts you that it didn’t work, of course).
wrote on last edited by [email protected]And when you press down, the current letter's value briefly increments to the next letter before being replaced by an asterisk. Z causes the router to crash.
-
cross-posted from: https://lemmy.world/post/32265822
xkcd #3109: Dehumidifier
Title text:
It's important for devices to have internet connectivity so the manufacturer can patch remote exploits.
Transcript:
[A store salesman, Hairy, is showing Cueball a dehumidifier, with a "SALE" label on it. Several other unidentified devices, possibly other dehumidifier models, are shown in the store as well.]
Salesman: This dehumidifier model features built-in WiFi for remote updates.
Cueball: Great! That will be really useful if they discover a new kind of water.Source: https://xkcd.com/3109/
FYI I learned About VLANs that it is in no way „locked down“. I can spoof the MAC address of a known device from a specific VLAN and I’m in that VLAN. Yes your devices can’t reach the internet/other devices by default but it won’t stop a bad actor.
-
I'd assume all Chinese devices are being backdoored via CCP incentives. Buy Asus perhaps, assuming Taiwan never gets infiltrated.
Don't buy ASUS, they have a terrible security record. At this point I would trust only MikroTik and Ubiquiti.
-
FYI I learned About VLANs that it is in no way „locked down“. I can spoof the MAC address of a known device from a specific VLAN and I’m in that VLAN. Yes your devices can’t reach the internet/other devices by default but it won’t stop a bad actor.
Yes, VLAN is an IT convenience feature, you don't need it just because it is a feature of the more expensive hardware.
Instead just establish separate L2s and operate proper L3 firewalls between them. For IoT devices, any kind of reliable potato will do just fine.
-
Boiling definitely helps and is a hell of a lot cheaper than constantly buying gallons of distilled
I bought a distiller for €60 capable of distilling 4 liters of water (about 1 gallon) en generates some heat. The electricity cost is way lower than buying 4 liters of distilled water, don't need to throw away a 4 liter plastic bottles every time and the distiller heats up my room in the winter (when the air is dryest here).
-
FYI I learned About VLANs that it is in no way „locked down“. I can spoof the MAC address of a known device from a specific VLAN and I’m in that VLAN. Yes your devices can’t reach the internet/other devices by default but it won’t stop a bad actor.
I'm aware you need a firewall (I used sonicwall professionally) vlans are for segmentation
-
FYI I learned About VLANs that it is in no way „locked down“. I can spoof the MAC address of a known device from a specific VLAN and I’m in that VLAN. Yes your devices can’t reach the internet/other devices by default but it won’t stop a bad actor.
wrote on last edited by [email protected]Depends on you hw. That seems rather poor implementation.. I believe my TP switch might handle that, because it rejects traffic to its management interface from mac X from vlan 20 because it sees the same mac in vlan 10.. (only vlan 20 is allowed for management)
-
FYI I learned About VLANs that it is in no way „locked down“. I can spoof the MAC address of a known device from a specific VLAN and I’m in that VLAN. Yes your devices can’t reach the internet/other devices by default but it won’t stop a bad actor.
Isn't that what 802.1x is for? If you really want to lock down your network, there are options.
-
cross-posted from: https://lemmy.world/post/32265822
xkcd #3109: Dehumidifier
Title text:
It's important for devices to have internet connectivity so the manufacturer can patch remote exploits.
Transcript:
[A store salesman, Hairy, is showing Cueball a dehumidifier, with a "SALE" label on it. Several other unidentified devices, possibly other dehumidifier models, are shown in the store as well.]
Salesman: This dehumidifier model features built-in WiFi for remote updates.
Cueball: Great! That will be really useful if they discover a new kind of water.Source: https://xkcd.com/3109/
We have water, heavy water, hydrogen infused water, nitrogen infused water, ice-9, h2o2...what will they think of next?!
