zlacker

[return to "The Philips Hue ecosystem is collapsing"]
1. jmuguy+Ey[view] [source] 2023-09-27 03:03:39
>>pictur+(OP)
Can someone explain the Home Assistant anecdote regarding JS and curl | sudo sh? Does the author mean Home Assistant isn't secure? Or that there's some issue with the front end of it? Or something else?

Because imo... that is the answer. We have seen so many stupid closed ecosystems of home automation stuff come and go, I dunno why you'd mess with anything else at this point. In fact I just got another email reminder that Google is turning off the old Works with Nest stack. Remember Nest? Yeah...

◧◩
2. Beingl+Mz[view] [source] 2023-09-27 03:11:26
>>jmuguy+Ey
I'm also curious about the Home Assistant anecdote. It seems like there might be some security or reliability concerns, but I'd like more information to understand the context better.
◧◩◪
3. dugite+PQ[view] [source] 2023-09-27 05:24:55
>>Beingl+Mz
It's confusing because the OP is referring to a pipe to bash method as if it's a recommended install method, which I can't seem to find anywhere on the HA installation page.

Yes there are security concerns with any home automation system, but if you run HA locally and only access it via a VPN like Tailscale you're probably safer than if you used any of the big name cloud first smart home providers. Even if you access it over the Nabu Casa site, because everything is ostensibly Local first your attack surface is always going to be quite minimal.

[go to top]