Jump to content

Linus' Badminton

wanderingfool2
By wanderingfool2
in Off Topic
 Share
Posted

On a WAN show Linus talked about creating a badminton court with cameras; and allowing people to get clips from the system [but was trying to think of ways to do it...with the thought maybe of just buying a new USB each time].

 

That does seem a bit wasteful, and I do think there could be better solutions.

 

A good thing about Unifi is that Linus should be able to just use the API's to access specific clips; and it's super easy to do in python (https://github.com/danielfernau/unifi-protect-video-downloader/ ) and it's easy enough to modify it to meet your needs.

 

I mean the easiest way to keep things secure would be to just have a Raspberry Pi that's hosting a local website...they can join the wifi and scan a QR code (link to the IP address of the Pi), select on the website the time frame...then the RaspPi downloads the clip from the NVR (but importantly the RaspPi is essentially isolated and can only communicate with the NVR on the given port...no internet access as well).  After that the RaspPi can just present a new QR code that lets them download the clip (active for like 5 minutes before deletion).  That way there isn't much that could go wrong, given the circumstance.  To attack you would have to first find a vulnerability in the hosting software, then also have malware that would install on the people's mobile via webpages...it's something that I don't think would be feasible to attack  [The key is the firewall would effectively be isolating the Pi...it allows connections to the Pi so the Pi can communicate that way...but the Pi wouldn't be able to actively connect to anything other than the NVR through the 443 port]

 

Or since that might be a bit complex to setup, have a Pi with an USB port exposed (like an extension one so the Pi is locked away).  Firewall blocks all communication with the Pi except on port 443 to the NVR.  Just have a monitor and keyboard on the Pi...the python script has an UI to pick dates and times.  The script will just download to the USB drive, and the user profile running the script is just a basic user and pref. make it so only python script is accessible...then periodically remake the OS on an SD card so that anything that might have happened gets wiped. 

 

Realistically with the above to attack it they would have to have an USB virus that can infect a Pi, and then it delivers a payload to Windows.  While not unheard of, the reality is in Linus' situation the likelihood of something happening would be small.

3735928559 - Beware of the dead beef

Link to comment
https://linustechtips.com/topic/1521528-linus-badminton/
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Off Topic

×