643
Philips Hue will force users to upload their data to Hue cloud
(www.home-assistant.io)
This is a most excellent place for technology news and articles.
This is the only way I would go about it. Maybe in the future if I really want it but really, the more tech, the more vulnerabilities. I'm fine with manually turning things on and off even if it's self hosted.
Unfortunately, no. Ultimately it’s a tiny computer that happens to produce light when a certain gpio pin is enabled. The light bulb is the portion you see, but inside, it’s an internet-connected microcontroller. I’ve even seen smart devices that internally run a full Linux distro complete with a shell session you can access if you know what you’re doing.
The problem is that some of these firmwares and/or exploits for these firmwares actively scan your local network and report things. Further, they can be used as a jumping off point for attacks deeper in your network.
And what about the zigbee hub, assuming you didn’t know enough to use homeassistant or some such?
Or a wifi bulb?
Point is, consumer smart electronics don’t have the same attention to security paid to them.
Fwiw, I’m not anti-smart device. I run HA and have all kinds of smart crap, so clearly I accept at least part of the risk.
But saying “it’s just a light bulb” is disingenuous as best.
The LIFX bulbs announced your WiFi password to anyone who asked. This is not a breach of the bulb itself, it’s a gateway to your LAN.
I don't want to be annoyed
It opens up another vector for attacking other sensitive devices on my network. I haven't segregated my network so I don't feel safe doing this.