this post was submitted on 12 Nov 2023
1479 points (96.1% liked)

tumblr

3444 readers
70 users here now

Welcome to /c/tumblr, a place for all your tumblr screenshots and news.

Our Rules:

  1. Keep it civil. We're all people here. Be respectful to one another.

  2. No sexism, racism, homophobia, transphobia or any other flavor of bigotry. I should not need to explain this one.

  3. Must be tumblr related. This one is kind of a given.

  4. Try not to repost anything posted within the past month. Beyond that, go for it. Not everyone is on every site all the time.

  5. No unnecessary negativity. Just because you don't like a thing doesn't mean that you need to spend the entire comment section complaining about said thing. Just downvote and move on.


Sister Communities:

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] DoomBot5@lemmy.world 27 points 1 year ago (2 children)

Confirming the opposite here. Network is properly separated and locked down. IoT devices do their thing while I enjoy all the benefits.

[–] bladerunnerspider@lemmy.world 13 points 1 year ago (3 children)

IoT devices are still tracking and reporting on you and your family.

[–] penguin@sh.itjust.works 8 points 1 year ago (1 children)

For me, they could be trying to report on it, but the firewall blocks them from the internet.

[–] RGB3x3@lemmy.world 1 points 1 year ago (1 children)

Why have smart home stuff if you can't use it when you're not home?

[–] penguin@sh.itjust.works 1 points 1 year ago

I can. I VPN into my home and the connect to the NAS. The cameras are only allowed to talk to the NAS and any attempt for them to talk directly outside is blocked.

[–] smeg@feddit.uk 3 points 1 year ago (2 children)

Well not if the network is properly separated, that way they can't ever access the public internet, right?

[–] bladerunnerspider@lemmy.world 6 points 1 year ago (1 children)

Maybe I misunderstand but the benefits of the IOT things is to access this stuff remotely, from your phone, from anywhere.

[–] smeg@feddit.uk 2 points 1 year ago

I have some smart lighting which I control from my phone, set up timers, automation etc. It's all local though, I have no need to access it remotely. You can set up a VPN to access your home network remotely if you want to be secure, but I've got no need so it's not worth the effort. But yeah, smart/IoT doesn't have to mean can talk to the public internet!

[–] DoomBot5@lemmy.world 0 points 1 year ago

Anything that needs to access the internet only has that access and to nothing else on the network. Anything that doesn't need it only has access to the local devices it reports to.

[–] Dewded@lemmy.world 0 points 1 year ago (2 children)

True to some extent, but I think a lot people give these firms too much credit.

Your microwave will not send your food heating data to NSA. At best the manufacturer uses it to see how people use their appliances.

Voice guided home assistants might send sound to servers for analysis, but even then it's just the stuff you actively sent to be used as a query. When they're listening for activation messages "passively", this data does not get sent outside of the device. This conception really bothers me as it really propagates an illusion that we've already lost and have no control.

There's no need to covertly spy when the biggest data is given voluntarily through the TikToks, Facebooks and Twitters of the world.

[–] smeg@feddit.uk 8 points 1 year ago (1 children)

It's not that they're actively spying, it's just another way that an attacker could get in. You can have a highly secure network setup but if there's a cheap IoT device with no security connected then suddenly that's a backdoor in for a real attacker. Maybe that's John Hackerman at the NSA, maybe it's some script kiddie scanning for anyone running a device with a known exploit!

[–] DoomBot5@lemmy.world 0 points 1 year ago

And that's why IoT devices needing internet access don't have access to other devices on the network and vice versa for devices with a local interface.

[–] ook_the_librarian@lemmy.world 4 points 1 year ago* (last edited 1 year ago) (1 children)

I agree with you, but I would add that they also might be doing their best to crosstrack what other products you use and how. Obviously, that's one of the reasons why you have them quarantined in the first place. I just wanted to mention it in case a reader wants to set up a different network for each potential creepy device. I don't.

[–] Dewded@lemmy.world 1 points 1 year ago

Crosstracking is indeed a thing. Obviously it has its limits, since the other devices have to communicate back. It should be easy enough to see all devices that are on the same network though.

IoT is a popular attack vector. So proper precautions should be made. Perhaps only give them access to your guest wi-fi. Perhaps a separate network entirely.

[–] SzethFriendOfNimi@lemmy.world 5 points 1 year ago

Same. IOT vlan where they can’t talk to each other and can’t talk to the intranet unless the connection was established from the intranet