[ale] Home Assistant / Docker / Network Security
Derek Atkins
derek at ihtfp.com
Tue Jul 24 10:22:06 EDT 2018
Hi,
I'm looking to install Home Assistant to integrate a bunch of various
home automation tasks (this is a longer-term project, but I'm looking to
start experimenting early). Unfortunately I found [0] which seems to
imply that there is at least one (if not more) serious security flaws in
HA.
My plan was to set up Hass.io in a Fedora VM on oVirt. I was NOT
planning to enable/turn on SAMBA (Eww) -- but it does appear there may
be some other security issue. I suppose I don't HAVE to use Hass.io --
I could theoretically run HA directly on the Fedora VM and manually
install the AddOns -- and I could do this for final deployment -- but I
was thinking about Hass.io at least for my initial experimentation.
However, Hass.io is released as a docker instance -- and I've never run
docker. I can take this as yet another learning experience, of course.
But finding someone more knowledgeable would be a good first step.
So... Anyone run HA? Hass.io? Docker? And have insights to provide?
Thanks,
-derek
[0] https://community.home-assistant.io/t/home-assistant-security-concern/57914
--
Derek Atkins 617-623-3745
derek at ihtfp.com www.ihtfp.com
Computer and Internet Security Consultant
More information about the Ale
mailing list