Every so often I take a look at my systems and my network and consider if they are still appropriately set up.
Reading recently on the blog that Reolink now “works with Home assistant”, I wondered if it was time to be more trusting of my (Reolink) cameras?
Currently all cameras are on their own VLAN with no access to the internet. The problem with this is that I can’t check or update if necessary, their firmware.
I understand the principle of if it ain’t broke, don’t fix it but is it time to relax a little?
I use HikVision cameras which many will say not to trust, which I do not. As such I too have them on a restricted VLAN so they can’t ‘phone home’.
For firmware updates, I simply download the firmware files on a networked PC, login to the camera Web UI and perform the file upload / firmware update to the camera that way. Works fine for the rare requirement.
“Works with homeassistant” speaks to the devices interoperability with HA and partnership. It does not have anything to do with security that I know of.
I don’t think these cameras actively work to break your networks security or hack local devices but I would never allow their access to the internet or free communication. I don’t trust the companies security practices. Don’t forget that companies have removed features in updates.
A software engineer at TV manufacturer once said to me “ update will fix problem but for every fix it may add new problem”.
Why would you update the camera firmware if it is steady and working only on a local network? To enable the manufacturer tot implement its lock in? Never ever trust a camra or microphone controlled by someone else than you. Just block them on a local vlan and enjoy, forget about firmware updates.