this post was submitted on 17 Sep 2024

558 points (99.3% liked)

World News

38578 readers

2152 users here now

A community for discussing events around the World

Rules:

Rule 1: posts have the following requirements:
- Post news articles only
- Video links are NOT articles and will be removed.
- Title must match the article headline
- Not United States Internal News
- Recent (Past 30 Days)
- Screenshots/links to other social media sites (Twitter/X/Facebook/Youtube/reddit, etc.) are explicitly forbidden, as are link shorteners.
Rule 2: Do not copy the entire article into your post. The key points in 1-2 paragraphs is allowed (even encouraged!), but large segments of articles posted in the body will result in the post being removed. If you have to stop and think "Is this fair use?", it probably isn't. Archive links, especially the ones created on link submission, are absolutely allowed but those that avoid paywalls are not.
Rule 3: Opinions articles, or Articles based on misinformation/propaganda may be removed. Sources that have a Low or Very Low factual reporting rating or MBFC Credibility Rating may be removed.
Rule 4: Posts or comments that are homophobic, transphobic, racist, sexist, anti-religious, or ableist will be removed. “Ironic” prejudice is just prejudiced.
Posts and comments must abide by the lemmy.world terms of service UPDATED AS OF 10/19
Rule 5: Keep it civil. It's OK to say the subject of an article is behaving like a (pejorative, pejorative). It's NOT OK to say another USER is (pejorative). Strong language is fine, just not directed at other members. Engage in good-faith and with respect! This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban.
Rule 6: Memes, spam, other low effort posting, reposts, misinformation, advocating violence, off-topic, trolling, offensive, regarding the moderators or meta in content may be removed at any time.
Rule 7: We didn't USED to need a rule about how many posts one could make in a day, then someone posted NINETEEN articles in a single day. Not comments, FULL ARTICLES. If you're posting more than say, 10 or so, consider going outside and touching grass. We reserve the right to limit over-posting so a single user does not dominate the front page.

We ask that the users report any comment or post that violate the rules, to use critical thinking when reading, posting or commenting. Users that post off-topic spam, advocate violence, have multiple comments or posts removed, weaponize reports or violate the code of conduct will be banned.

All posts and comments will be reviewed on a case-by-case basis. This means that some content that violates the rules may be allowed, while other content that does not violate the rules may be removed. The moderators retain the right to remove any content and ban users.

Lemmy World Partners

News !news@lemmy.world

Politics !politics@lemmy.world

World Politics !globalpolitics@lemmy.world

Recommendations

How to spot Misinformation and Propaganda

For Firefox users, there is media bias / propaganda / fact check plugin.

https://addons.mozilla.org/en-US/firefox/addon/media-bias-fact-check/

Consider including the article’s mediabiasfactcheck.com/ link

founded 1 year ago

MODERATORS

quinten@lemmy.world

NewsAutoMod@lemmy.world

jordanlund@lemmy.world

Tenthrow@lemmy.world

little_cow@lemmy.world

lemmyAtom@lemmy.world

FlyingSquid@lemmy.world

558

South Korea removed 1,300 cameras from its military bases after discovering they're designed to feed back to a Chinese server (www.businessinsider.com)

submitted 3 days ago by MicroWave@lemmy.world to c/world@lemmy.world

57 comments fedilink hide all child comments

South Korea's military has been forced to remove over 1,300 surveillance cameras from its bases after learning that they could be used to transmit signals to China, South Korean news agency Yonhap reported.

The cameras, which were supplied by a South Korean company, "were found to be designed to be able to transmit recorded footage externally by connecting to a specific Chinese server," the outlet reported an unnamed military official as saying.

Korean intelligence agencies discovered the cameras' Chinese origins in July during an examination of military equipment, the outlet said.

you are viewing a single comment's thread
view the rest of the comments

[–] ptz@dubvee.org 99 points 3 days ago* (last edited 3 days ago) (7 children)

Don't all cheap IP cameras feed back to at least one server in China?

I bought two different no-name brands from Amazon several years back, and both models of them were trying to call home. I ran them on an isolated network, so they couldn't get anywhere, but they were persistent little buggers. Oh, and the root password to one of them was hardcoded to "1234567" lol

Tangent, but if anyone can recommend a good IP camera that just craps out an RTSP stream locally and doesn't phone home anywhere, DM me lol.

[–] ulterno@lemmy.kde.social 3 points 1 day ago (1 children)

Just get some raspberry pi camera.

What to do about IR vision though?

[–] ptz@dubvee.org 2 points 1 day ago (1 children)

I don't currently have them, but there is (or was?) a NoIR version of the Pi cameras that didn't have IR filters. That should let the IR LED illuminators work same as most other cameras advertised with night vision.

[–] ulterno@lemmy.kde.social 1 points 1 day ago

That would be pretty useful.
I'm still looking for how I might manage to use my old phone's camera anyway. Seems like a waste of good engineering to keep the pinout and protocol closed.

[–] AnIntenseMoist@lemmy.world 111 points 3 days ago

Don't DM, reply so we may spread the word.

[–] oldfart@lemm.ee 31 points 3 days ago (3 children)

I'm really surprised that military in such a technologically advanced country just connected random IP cams to the internet

[–] UnderpantsWeevil@lemmy.world 2 points 1 day ago* (last edited 1 day ago)

It's a big bureaucracy and procurement often just means going to the private sector and scooping up what's on sale.

Non-zero chance the Koreans are running around with explosive pagers in their pockets right now.

[–] otp@sh.itjust.works 19 points 3 days ago (1 children)

They were on sale!!!

[–] oldfart@lemm.ee 1 points 2 days ago

That's fine, I got them too but they're isolated

[–] ptz@dubvee.org 1 points 3 days ago

Right?!

[–] curbstickle@lemmy.dbzer0.com 22 points 3 days ago (2 children)

Reolink, amcrest. Amcrest dont get anything starting with ASH in the model name.

If you want ONVIF, be sure to check the specs, many cheaper models drop support, but not all.

Some YI cameras have easily replaced firmware and can do rtsp too, but you have to do your homework on those models to be sure you're getting one that can be modded.

You'll still want to (IMO) toss any of them in a vlan without internet access, and rather than provide that vlan access to an NVR on another vlan, I'd lean toward your NVR having a second connection to that vlan. I'm a huge fan of segmentation though, so YMMV.

[–] TranscendentalEmpire@lemm.ee 7 points 3 days ago

I can vouch for reolink, they have fairly straight forward nvr with decent cameras for the money. Been using their poe nvr system for around 5 years now and have never had an issue with it.

[–] ptz@dubvee.org 6 points 3 days ago* (last edited 3 days ago) (1 children)

Yeah, that was my old setup: dedicated VLAN with the NVR and cameras in it. Had a firewall rule so I could access the NVR from regular LAN but nothing "got out" of the camera VLAN without being requested from the LAN first.

At first I had the NVR in the LAN with FW rules to reach the cameras in their VLAN, but my FW at the time struggled with all the simultaneous streams going through it so I moved the NVR in with the cams.

Maybe I'll just stick with my current setup of just getting old analog camera housings and sticking Raspberry Pi + camera module inside lol

[–] curbstickle@lemmy.dbzer0.com 4 points 3 days ago (1 children)

Dual nic NVR then? You could even just throw a simple switch with no uplink (but preferably managed so you can tag the traffic) and for extra safety just allow only the LAN traffic you want on the NIC/Port connected to your regular LAN from the NVR.

Nothing wrong with a DIY can though! As long as it works of course

[–] ptz@dubvee.org 3 points 3 days ago (1 children)

"NVR" in my case is just Zoneminder lol. I run it on a dedicated USFF PC and didn't want to deal with multi-homing it or a USB ethernet adapter. When I upgrade it, yeah, I'll probably get something with a dual NIC and go that route.

Right now, yeah, it's all DIY since I scrapped those cameras years ago (neither held up well to UV after 6-7 months outdoors), so I'm less concerned about it with all of them being RPis now. The only thing I lack is PoE since I didn't want to spring for the HATs.

[–] curbstickle@lemmy.dbzer0.com 3 points 3 days ago

Yeah all of my servers are on usff PC's, so I get it.

If you do a hypervisor like proxmox, then throw your NVR in a VM, you can just create a couple of virtual NICs (though you'll be back at that FW issue I'm sure).

USB NICs are pretty well supported these days though, and cheap to boot. Just need to be certain you've got usb3 if you want to make use of that gig though!

I've got a few pi-a-likes that I'm doing similar camera fun with, though using some webcams in there and a 3d printed case. At least that way they match my diy temp sensors with esp32s!

[–] dezmd@lemmy.world 7 points 3 days ago

Ubiquiti G3 and G4 cams do rtsp direct streams without needing Unifi Protect services on a unifi gateway device. G5 requires unifi prot but can rtsp from the protec gateway.

[–] andrew_bidlaw@sh.itjust.works 7 points 3 days ago* (last edited 2 days ago)

Same with russian 'grandma phones' with big buttons. Some researches found thst although they don't provide any functionality besides basic phone\sms stuff, they do try to call their motherbase, sending all credentials and geoloc. IIRC there was no argument about them sending the content of smses and voicecalls, but it's troubling as it is.

+ Russian as in sold there, they are chinese, sometimes with a local branding.

[–] Eldritch@lemmy.world 2 points 3 days ago (1 children)

Not a plug and play solution. But if you aren't averse to tinkering. RPI zero with a CSI camera and v4lrtsp server. can get you done rather cheap. Depending on your needs.

[–] ptz@dubvee.org 2 points 3 days ago (1 children)

That's actually my current setup :)

Got some old analog cameras at an estate sale, gutted them, and put some Pi + camera modules inside. Couldn't get the original optics to work with it, and they lack PoE, but they're otherwise doing well (3 years and going). Just occasionally have to reboot them more than I'd like.

Haven't messed with v4lrtsp server, but zoneminder has been good to me. Will check that out.

[–] Eldritch@lemmy.world 2 points 3 days ago

Yes you don't get things like Poe Etc. At least not on the zero models. There are hats for the full size pi. But you have full control and they are upgradable. I have a zero w in the official enclosure. Double-sided tape to a wall with a micro b cord plugged into power it. Can access the stream over Wi-Fi and get 30 frames per second 720P easy. Could easily do much better than that even. But the original Raspberry Pi camera module I think is the limitation. Because the cores on the Zero are barely being touched at all. In the low double digits if that.

It's so light on resources that if someone had an old USB hub. And some old web cameras laying around. You could run multiple cameras off of a single Raspberry Pi zero. I think you would hit Port bandwidth saturation before you would hit a CPU limit. Unless of course you're trying to reincode.