Tuya WiFi security cameras
:) I bought myself one of the 'replaces the peephole on your front door' camera's that are all over Amazon at the moment.
I'm under no illusions on how much is handed off to someone else with it and I'm a strong believer in not renting my doorbell to someone else.
I've been picking it apart to see how bad it is (it's not getting fitted till I've looked under as many rocks as I can find and blocked the snakeholes).
I've gotta say, I thought it would be bad, but it's much worse. It's a big bloated generic build that's been optimised by configuration for the particular model.
Because of this there are a couple of heavy lifting binaries in it that seem to do all the main work, ankya_ipc being one of them. A couple of years ago these generic builds were easy to get a root shell to, but the builds now are doing basic good things (long passwords so John is unlikely to crack them in my lifetime) making it harder to simply open a telnet, give it a sdcard hosted file to update it's config and call the save function to set that as part of it's firmware image.
I'm at the point now that I can at least watch what it's output is throwing while it 'does stuff' and I've gotta say, before I was leery about it being fitted, now it's an absolute no, not until it's walled in and I've made it truly local only.
Here's the thing, these devices have face recognition on board, they are little linux'es so that's entirely feasible. They do a fair amount of the instantaneous heavy lifting onboard for this, but as the article says, it's all sent up to a centralised location. With that as well, a lot of it is centralised in one way. The way to view the feeds on this thing are to use the app, there are local feeds you can access and find, but it's very much not a trivial thing to work out.
Final point is this, mine has a mic and speaker so if someone is at the door I can enable the mic and speak to them. This is only accessible (so far that I've found so far) through the app, so the app sends the command to the device.
So the stream is an endpoint on the apps servers
the ability to enable mic audio into the stream is an endpoint on the apps servers
the ability to send audio to the speakers is an endpoint on the apps servers
...so anyone who can find my cameras endpoint on the public application can watch, listen and send audio through my camera.
Biting the hand that feeds IT
