Tomas, Please note the following:
https://kyivindependent.com/media-chinese-cameras-widely-used-in-ukraine-pose-security-risks/ "Schemes pointed out that the cameras used by the "Safe City" and state bodies work as part of an isolated network, preventing them from sending data to their manufacturers." https://www.reddit.com/r/reolink/comments/t97flv/do_reolink_cameras_use_dahua_or_hikvision_chips/ "Tracking camera compliance by the model is difficult because of the number of OEM's. For example, Hikvision has over 90 companies that relabel their cameras. The FCC hasn't addressed these manufacturers by name." Note that the list of NDAA compliant cameras are all very expensive. While the stuff that's HiSilicon and Ambarella SoC based is all cheap. Infinova, an American/Chinese company, owns the majority of Swann, which is the parent company of SV3C. SOME of their cameras are NOT NDAA compliant: https://bishopfox.com/blog/sv3c-l-series-hd-camera-advisory Additionally, it doesn't matter what firmware you write and load into a SoC, the microcode in the SoC is "in control" of the actual camera hardware and can pick IP addresses off the interface and "call home" with data. And it is very likely that these SoC's also require firmware developers to use "binary blob" drivers much like Broadcom does for it's wireless SoCs so there is no way to know what code may be concealed in those drivers. You are safest just assuming that EVERY security camera except for the extremely expensive stuff by Axis, etc. which are owned by the Japanese, is "calling home" behind your back periodically, and can be commandeered by China's PLC if it's on a network that has any kind of connection to the Internet. There's no question that the Russian military had assistance from the Chinese PLC to break into all of the security cameras in Ukraine during the war. The safest policy is to either use these devices on an isolated network, or block their IP's in a firewall during production use. It does not matter if they have to call home for firmware updates, setup, etc. as long as you can just take the block down and reestablish it. Obviously, security cameras that cannot operate without being connected to a Cloud server are the most unsafe at all. Just assume that any Cloud NVR out there is compromised or otherwise accessible. These would be the very highest value targets during war. It's worth noting that Axis Communications HAS a series of cameras that were like this a few years ago, but pulled them from the market due to these concerns. Even though the ownership chain of Axis is clean. Ted -----Original Message----- From: PLUG <[email protected]> On Behalf Of Tomas Kuchta Sent: Thursday, October 17, 2024 4:42 PM To: Portland Linux/Unix Group <[email protected]> Subject: Re: [PLUG] Suggestions please for a outdoor camera Hi Chuck, Does SV3C require to call home to activate and setup? How often do they release FW updates if at all? Can you do local update without calling home? Thanks, Tomas On Thu, Oct 17, 2024, 18:07 Chuck Hast <[email protected]> wrote: > I use SV3C cameras, have helped several folks with setups using > ZoneMinder for the server, we also use SV3C cameras at some of our > AREDN sites, two in particular are next to very heavily trafficked > railroad tracks, they have quite a following of railroad fanatics. The > SV3C's went through a hail storm the other day, took out my van > windshield but the cameras are still up there capturing video. Some of > those stones were about fist size. > > On Mon, Oct 14, 2024 at 8:31 PM King Beowulf > <[email protected]> > wrote: > > > > > > > > > > > -------------------------------------------------------- > > The true sign of intelligence is not knowledge but imagination. > > --Albert Einstein > > > > > > > > On Monday, October 14th, 2024 at 6:19 PM, [email protected] < > > [email protected]> wrote: > > > > > On Mon, 14 Oct 2024 15:19:24 +0000 King Beowulf > > > [email protected] wrote: > > > > > > > On Mon, Oct 14, 2024 at 6:54 AM, Michael Ewan <[ > > [email protected]](mailto:On Mon, Oct 14, 2024 at 6:54 AM, > > Michael Ewan <<a href=)> wrote: > > > > > > > > > I am looking for a cheap wireless camera, but not one that > > > > > sends > > anything > > > > > at all to an upstream provider, just something with motion > > > > > detect > > that I > > > > > can capture video to a local server. > > > > > > > > I’ve had pretty good luck with a pair of Reolink RLC-520A PoE > > > > outdoor > > cameras. they have both a low and a high resolution video streams. > > They have various features built in that I don’t use. I just capture > > with > ffmpeg > > or you can use Zoneminder etc. > > > > > > > > > lol. I came here to warn you to avoid reolink. > > > > > > Right out of the box it would hang when attempting to continuously > > stream over wifi. > > > > > > Updated firmware after back and forth with support (credit to them > > > for > > having tech support that actually answered) and then it would hang > > after about 6 hours. > > > > > > replaced it with an amcrest which has worked really well. > > > > > > > > > Brian > > > > Weird, never had any issues. > > > > The 2 PoE Reolinks have been running for over a year, and the wifi > Reolink > > E1 Pro (indoor) almost as long (only rebooted when the cat played > > with > the > > power cord). > > > > Other than the initial f/w update about 1 yr or so ago when I set > > them > up, > > never an issue and never complained about not being able to "dial home". > > > > -Ed > > > > >
