this post was submitted on 16 Sep 2023
78 points (100.0% liked)

Privacy

32221 readers
641 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I couldn't find a post in this community about cameras so I figured I'd make one. Requirements:

  • No "sign up" required to record video
  • Video is stored locally
  • Video is in a non-propriatary format
  • Can work offline

Optional/Discussion Points:

  • Can wireless connectivity be hardware disabled
  • Can auto-update be disabled
  • Does the device try to "phone home" if it is connected to wifi
  • Disk encryption would be nice but I doubt that'll be an option for anything other than self-hosted stuff

Does anyone know about Lorex (it seems more privacy centered)?

I'm highly technical, so feel free to mention self hosted raspberry pi soltuions as well.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 11 points 1 year ago (2 children)

You don't have to give up privacy for this, or voluntarily give your data to a giant corporation with a track record of abusing their customer's privacy and giving your video footage to police without your consent.

I have 5 Amcrest PoE cameras that have been configured to not "call home". The cameras have built-in web servers that allow you to configure them without being forced to install an app or make a cloud account.

All of the built in detection stuff has been turned off because the feeds from the cameras go to Frigate NVR, which does all of the detection stuff with the help of a Coral TPU. I have it running as an add-on to Home Assistant OS, but it can also run separately in a docker container.

Frigate is set to detect certain things, like "person", "car", "dog", etc. If it detects those things, it records a clip and takes a snapshot. Both are sent as notifications to my phone via a Home Assistant automation. If I'm not at home, I pay $65/year for Nabu Casa, which gives me secure remote access to my Home Assistant install and also helps fund Home Assistant development.

[–] [email protected] 2 points 1 year ago (1 children)

Are you running the cameras by themselves or do you also use the Amcrest NVR? I bought a PoE kit with the NVR but find it very clunky to use and have yet to figure out how to transfer video clips off of it (USB flashdrive only?). I've been interested in Frigate and the like but have yet to really dig into it. I'm also running a server with Plex and HA with lots of storage which would work for storage provided I buy a PoE switch.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (1 children)

I only use Frigate. All of the Amcrest stuff is turned off.

Each of the cameras have two video streams. The "live" stream is set to 1080p, and the "sub" stream is set to 720p. The sub stream is what Frigate uses for detection. Here is a sample of what a camera config would look like in the frigate.yml file:

cameras:
  back:
    ffmpeg:
      inputs:
        - path: rtsp://camera-username:camera-password@camera-ip-address:554/cam/realmonitor?channel=1&subtype=2
          roles:
            - detect
            - record
    detect:
      width: 1280
      height: 720

My HA runs in a Proxmox VM with 4 vCPUs, 4GB of RAM and 128GB storage. The VM also has access to a network drive, which is where nightly backups are stored.

By default, the HAOS Frigate addon will store recordings on the host machine (you can define any volume if you're running Frigate in docker), and you can set "event" retention in the frigate config file - default is 10 days. You can download any clip or snapshot directly from the Frigate UI to whatever device you are using. OR, if your setup is similar to mine, you can pull from backup.

My nightly backup to my network drive includes the frigate folder with the recordings and snapshots, which is also set to retain 10 days/backups, and finally there is a weekly Borgbase backup of that network folder to a server on another continent, so I don't feel like I need any kind of dedicated storage hardware - normal backup procedures work just fine!

With this setup, CPU usage never goes above around 35% (keep in mind that I have a Coral TPU, which takes all the detection load off of the CPU) and with the configured Frigate retention policy, storage usage for the entire VM never exceeds 50% of the total available space.

This setup has been running flawlessly for almost 3 years now. Detection is immediate, as are the push notifications. Very happy with it!

[–] [email protected] 2 points 1 year ago

Thanks for the breakdown! I've definitely got some research to do.

[–] [email protected] 0 points 1 year ago (1 children)

Yes, you can obviously build your own version of event detection and remote storage, and then appify it in a way which is secure and ergonomically useful, nobody is claiming otherwise. This requires a considerable amount of expertise to do safely, and additional complexity generally expands your threat surface. For you, that may be fine. I'm pretty tech literate and have a bunch of other self hosted services, but I just don't think the additional complexity is worth maintaining for push notifications. Again, that might be different for you.

[–] [email protected] 2 points 1 year ago

I wasn't implying that anyone was claiming anything, just attempting to detail a way in which privacy can be maintained while also having push notifications (both snapshots and video). I'm more pushing back against the general notion that it's "too hard" to maintain privacy while using software and hardware that is supposed to enhance security.

If people think it's "too hard" to maintain their privacy, they are likely to either give up and not do the security thing at all, or give their data away to a giant corp/cops, which undermines the security they were trying to enhance in the first place.

For the price of Ring hardware + subscription (you need a $20/mo subscription even if you want to use local storage), you can get an entire home automation setup with a robust security component in which everything is local and no data is sent anywhere, except to a device you control, over a secure and encrypted connection.

It's not even hard to do - Home Assistant is very easy to get up and running these days (this was not always the case), and Frigate is also pretty easy - the documentation is extensive and there are a ton of videos available that cover installation and configuration.

The notification automation is available as a Home Assistant blueprint template - all one has to do is fill in some blanks.

And all of this can run on a Raspberry Pi or even a used $150 SFF Dell or Lenovo machine, or even just an old laptop.

You don't even need a ton of storage space or dedicated drives - my 5 cameras use less than 64GB of storage in a month, and that is total, ROLLING storage, not cumulative, because you can configure how long each clip is saved before it's automatically deleted. All of my clips and snapshots are deleted after 10 days. If there's anything I want to keep, I just download it before 10 days is up.

For longer term storage, I have a simple nightly backup to a network drive, and weekly backup from there to an offsite location, but that's just me, it would be just fine to save clips to a USB drive or a phone - whatever works.

I'm just saying that you don't need to compromise privacy to obtain security.