this post was submitted on 12 Feb 2024
883 points (98.9% liked)

Technology

59605 readers
4202 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] rekabis@lemmy.ca 19 points 9 months ago (18 children)

And that’s why hardlining is still by far the best option available.

  1. Hardlined cameras need to be physically accessed and the cables snipped in order to disrupt them, and most cameras offering hardlining now feed Ethernet through their bases, providing additional protection.
  2. Most sub-20 camera systems can run for up to an hour or two on a 500VA UPS, and up to a week or more with PowerWall backups, defeating intentional power outages.
  3. A fully airgapped system can defeat any sort of direct Internet intrusion.
  4. Shielded Ethernet can help protect from crosstalk attacks provided they are correctly grounded with the appropriate switches.
  5. Hardware auth between cameras and the DVR can help defend against direct attacks via an unplugged cable or an open wall jack, in that only approved hardware can make the needed connections with either end.
  6. Encrypted communications between cameras and DVR can enhance the security of data across the wire.
  7. A brace of identical dummy cameras - similarly powered, if they have external indicators - alongside real ones will waste the time and effort of attackers who conduct physical attacks, while keeping recording-infrastructure needs to a minimum.
  8. Bonus if identical but “dark” Ethernet is similarly spoofed throughout the building, as not only will it confuse physical attackers, but it’ll also be already in-place for future communications-infrastructure improvements.
  9. DVR needs to be in a secured location, ideally fireproof. In combination with № 7 and № 8, a dummy DVR (with live screens showing actual content) can exist elsewhere to distract any physical attackers.

Sure, this list isn’t 100% coverage, but it gets you nearly there with a minimum of effort.

[–] hydroptic@sopuli.xyz 45 points 9 months ago (1 children)

You have some interesting ideas about what a minimum of effort looks like

[–] rekabis@lemmy.ca 2 points 9 months ago (1 children)

If you are in the middle of a frame-off gut of a home, as I currently am, much of this is trivial to implement.

Even my parent’s 1978 home, with it’s drop ceiling in the basement, would not make most of this all that much more difficult.

[–] hydroptic@sopuli.xyz 19 points 9 months ago (1 children)

If you are in the middle of a frame-off gut of a home, as I currently am, much of this is trivial to implement.

A notoriously low-effort endeavor in itself.

"It's doable with a minimum of effort as long as you have your house gutted down to the foundations" isn't exactly the shining defense of "a minimum of effort" that I expected to read

[–] GBU_28@lemm.ee 0 points 9 months ago (2 children)

Go in your attic for 20 minutes. Throw some Ethernet around. You don't even have to plug all of it in lol

[–] Telodzrum@lemmy.world 12 points 9 months ago (1 children)

I had to buy almost $500 of mdf to get around my attic well enough to pull cable for backhaul. It's not as easy as you make it sound in a lot of cases.

[–] GBU_28@lemm.ee 0 points 9 months ago

You only need 2 pieces and some creativity.

[–] Drusas@kbin.social 7 points 9 months ago (1 children)

Not all attics are that accessible. Mine is basically an above-house crawlspace full of insulation such that you need a mask.

[–] GBU_28@lemm.ee -3 points 9 months ago (2 children)

It's 2024, do you not have a mask

[–] BlueEther@no.lastname.nz 3 points 9 months ago (1 children)

No, I’ve used them all up in the last 3 years

[–] GBU_28@lemm.ee 2 points 9 months ago

They made more.

[–] Drusas@kbin.social 1 points 9 months ago (1 children)

Requires a different type of mask, but yes, I have many masks of different types.

[–] GBU_28@lemm.ee 1 points 9 months ago (1 children)

And would you describe it as challenging to wear, there one or two times you would need to be in the attic for this task?

[–] Drusas@kbin.social 2 points 9 months ago* (last edited 9 months ago) (1 children)
  1. You have completely missed the point of attics not always being very accessible in order to argue for no good reason.

  2. Yes, I would. The respirator type mask which you require in that environment is very stuffy and tough on someone like me who has a lung condition.

  3. It being tiny makes it more inaccessible than the need for a mask does. The opening into the attic is narrow. I can fit through it, but most Americans would not be able to. Once up there, you have to crawl. I have a medical condition affecting my muscles which makes it exceedingly difficult to crawl.

Point is, once again, that not all attics are accessible. This isn't a discussion about masks.

[–] GBU_28@lemm.ee 1 points 9 months ago (1 children)

Obviously if you have medical conditions there's limitations.

[–] Drusas@kbin.social 1 points 9 months ago (1 children)

Going with "your experience doesn't count because you're a little different" is not the winning argument you might want it to be.

[–] GBU_28@lemm.ee 1 points 9 months ago

When discussing a general situation, one is not obligated to write off every possible situation.

A person without medical conditions can navigate an attic, even if tight, and requiring a mask. That's not revolutionary.

load more comments (16 replies)