homeassistant

19014 readers

82 users here now

Home Assistant is open source home automation that puts local control and privacy first.
Powered by a worldwide community of tinkerers and DIY enthusiasts.

Home Assistant can be self-installed on ProxMox, Raspberry Pi, or even purchased pre-installed: Home Assistant: Installation

Discussion of Home-Assistant adjacent topics is absolutely fine, within reason.
If you're not sure, DM @GreatAlbatross@feddit.uk

founded 2 years ago

MODERATORS

GreatAlbatross@feddit.uk

greatalbatross@lemmy.world

How many of you have an HA solution, which is open to the internet? (lemmy.world)

submitted 5 days ago by oz1sej@lemmy.world to c/homeassistant@lemmy.world

42 comments fedilink hide all child comments

I'm running my own HA locally, in my house, but I would like to be able to access it also when I'm not home. So I've put it on my Zerotier One VPN, which works fine. Except for two things:

HA no longer knows when I'm home - it thinks I'm always home;
Other people in my household would also like to have remote access, but it's unrealistic to have them install and use the VPN.

So - can I just open it up, and rely on long, complex passeords? Or is that a complete no-go?

you are viewing a single comment's thread
view the rest of the comments

[–] The_Zen_Cow_Says_Mu@infosec.pub 1 points 1 day ago* (last edited 1 day ago)

the wildcard certificates make a huge difference. I had my services all on servicename.mydomain.com each with an individual certificate, and those certificate registration scrapers make them public and they got hit a lot (but blocked by crowdsec). since moving all my services to servicename.app.mydomain.com with a wildcard dns record and cert for *.app.mydomain.com, they're completely not-public and my crowdsec logs have gone silent.

would running everything thru my tailscale be better? yup, but there's a lot of situations that I want to access home that I can't use with a vpn, where I can't install my own software.