this post was submitted on 16 Sep 2023
79 points (100.0% liked)
Privacy
31892 readers
568 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
As a tangent, for me the entire utility for this stuff is cloud integration and alerts. Otherwise the only use of the camera is sending your insurance company videos of the break-in. This is one of those places where I am willing to give up a bit of privacy in a controlled way for the ability to get alerts in real time in case I need to call emergency services while away from home. Or tell my wife the delivery driver left the gate open and to close it so the dog doesn't get out.
To be honest, if you have a good security framework to begin with, there's no reason why a ring camera is super dangerous.
You don't have to give up privacy for this, or voluntarily give your data to a giant corporation with a track record of abusing their customer's privacy and giving your video footage to police without your consent.
I have 5 Amcrest PoE cameras that have been configured to not "call home". The cameras have built-in web servers that allow you to configure them without being forced to install an app or make a cloud account.
All of the built in detection stuff has been turned off because the feeds from the cameras go to Frigate NVR, which does all of the detection stuff with the help of a Coral TPU. I have it running as an add-on to Home Assistant OS, but it can also run separately in a docker container.
Frigate is set to detect certain things, like "person", "car", "dog", etc. If it detects those things, it records a clip and takes a snapshot. Both are sent as notifications to my phone via a Home Assistant automation. If I'm not at home, I pay $65/year for Nabu Casa, which gives me secure remote access to my Home Assistant install and also helps fund Home Assistant development.
Are you running the cameras by themselves or do you also use the Amcrest NVR? I bought a PoE kit with the NVR but find it very clunky to use and have yet to figure out how to transfer video clips off of it (USB flashdrive only?). I've been interested in Frigate and the like but have yet to really dig into it. I'm also running a server with Plex and HA with lots of storage which would work for storage provided I buy a PoE switch.
I only use Frigate. All of the Amcrest stuff is turned off.
Each of the cameras have two video streams. The "live" stream is set to 1080p, and the "sub" stream is set to 720p. The sub stream is what Frigate uses for detection. Here is a sample of what a camera config would look like in the frigate.yml file:
My HA runs in a Proxmox VM with 4 vCPUs, 4GB of RAM and 128GB storage. The VM also has access to a network drive, which is where nightly backups are stored.
By default, the HAOS Frigate addon will store recordings on the host machine (you can define any volume if you're running Frigate in docker), and you can set "event" retention in the frigate config file - default is 10 days. You can download any clip or snapshot directly from the Frigate UI to whatever device you are using. OR, if your setup is similar to mine, you can pull from backup.
My nightly backup to my network drive includes the frigate folder with the recordings and snapshots, which is also set to retain 10 days/backups, and finally there is a weekly Borgbase backup of that network folder to a server on another continent, so I don't feel like I need any kind of dedicated storage hardware - normal backup procedures work just fine!
With this setup, CPU usage never goes above around 35% (keep in mind that I have a Coral TPU, which takes all the detection load off of the CPU) and with the configured Frigate retention policy, storage usage for the entire VM never exceeds 50% of the total available space.
This setup has been running flawlessly for almost 3 years now. Detection is immediate, as are the push notifications. Very happy with it!
Thanks for the breakdown! I've definitely got some research to do.
Yes, you can obviously build your own version of event detection and remote storage, and then appify it in a way which is secure and ergonomically useful, nobody is claiming otherwise. This requires a considerable amount of expertise to do safely, and additional complexity generally expands your threat surface. For you, that may be fine. I'm pretty tech literate and have a bunch of other self hosted services, but I just don't think the additional complexity is worth maintaining for push notifications. Again, that might be different for you.
I wasn't implying that anyone was claiming anything, just attempting to detail a way in which privacy can be maintained while also having push notifications (both snapshots and video). I'm more pushing back against the general notion that it's "too hard" to maintain privacy while using software and hardware that is supposed to enhance security.
If people think it's "too hard" to maintain their privacy, they are likely to either give up and not do the security thing at all, or give their data away to a giant corp/cops, which undermines the security they were trying to enhance in the first place.
For the price of Ring hardware + subscription (you need a $20/mo subscription even if you want to use local storage), you can get an entire home automation setup with a robust security component in which everything is local and no data is sent anywhere, except to a device you control, over a secure and encrypted connection.
It's not even hard to do - Home Assistant is very easy to get up and running these days (this was not always the case), and Frigate is also pretty easy - the documentation is extensive and there are a ton of videos available that cover installation and configuration.
The notification automation is available as a Home Assistant blueprint template - all one has to do is fill in some blanks.
And all of this can run on a Raspberry Pi or even a used $150 SFF Dell or Lenovo machine, or even just an old laptop.
You don't even need a ton of storage space or dedicated drives - my 5 cameras use less than 64GB of storage in a month, and that is total, ROLLING storage, not cumulative, because you can configure how long each clip is saved before it's automatically deleted. All of my clips and snapshots are deleted after 10 days. If there's anything I want to keep, I just download it before 10 days is up.
For longer term storage, I have a simple nightly backup to a network drive, and weekly backup from there to an offsite location, but that's just me, it would be just fine to save clips to a USB drive or a phone - whatever works.
I'm just saying that you don't need to compromise privacy to obtain security.