this post was submitted on 04 Oct 2025
193 points (97.5% liked)

homeassistant

16629 readers
397 users here now

Home Assistant is open source home automation that puts local control and privacy first.
Powered by a worldwide community of tinkerers and DIY enthusiasts.

Home Assistant can be self-installed on ProxMox, Raspberry Pi, or even purchased pre-installed: Home Assistant: Installation

Discussion of Home-Assistant adjacent topics is absolutely fine, within reason.
If you're not sure, DM @GreatAlbatross@feddit.uk

founded 2 years ago
MODERATORS
 

First thing I do when I get a smart appliance is scan it with nmap. This has revealed some interesting Easter eggs, like my Davis instruments air quality sensors having a local REST API.

Doing the usual scan against my GE washer and dryer shows that port 53 is listening. What could that be for? Is there a way I can at least query their status locally or something?

When I got the washer and dryer I was excited about the smart home features because getting an alert when my laundry is done or starting the washer remotely so the clothes are done when I get home are genuinely useful features. However, last time I checked the app none of that was available, so I just have these Trojan horses in my home spying on me with no benefit in exchange. Their app wanted my freaking mailing address when I signed up for their mandatory account, so the features mentioned above are the least they could offer in exchange for my digital soul. But I digress.

My fridge is in a similar situation. It commits the additional cardinal sin of ONLY being controllable via the app, with no on-board temp or filter status indicators whatsoever.

top 50 comments
sorted by: hot top controversial new old
[–] SeeMarkFly@lemmy.ml 75 points 3 weeks ago (3 children)

Or the old fashion way, don't BUY them.

[–] homesweethomeMrL@lemmy.world 29 points 3 weeks ago

Seriously. The dryer needs a mandatory account?

That’d be a No.

[–] grue@lemmy.world 14 points 3 weeks ago (14 children)

The trouble is, you don't know how bad the shit is until after you get it home, unless you do a large amount of research beforehand.

Frankly, at this point I think the better tactic is to buy the smart appliances and then return them as "not fit for purpose," even though that takes even more effort, because it punishes the manufacturer in a way that merely not buying the thing in the first place does not.

load more comments (14 replies)
[–] Swedneck@discuss.tchncs.de 6 points 3 weeks ago (1 children)

i have to wonder if people even research the things they buy or if they just walk into the store with 2000€ and say "give me a washing machine", and never see the machine until the crew comes home to install it.

It's an expensive piece of machinery that is going to be a core part of your home for like 10 years, check the manual and online reviews to make sure it doesn't have a major flaw you'd be unhappy with, please.

[–] SeeMarkFly@lemmy.ml 8 points 3 weeks ago (4 children)

Yea, I don't understand sales either. I drive into the BIG city and pass a new car lot that has a sign on the sidewalk that says "Ford truck month".

I want to know WHO is driving down the street and SEES that sign then thinks to themselves "OH, I forgot to buy a truck this month"?

The sign was there for half a year.

load more comments (4 replies)
[–] spaghettiwestern@sh.itjust.works 60 points 3 weeks ago* (last edited 3 weeks ago) (1 children)

Upon installation LG's app helpfully informed me that to be notified that my LG refrigerator temperature is high or my washer's cycle is complete I am expected to inform a Korean company of my exact location at all times. The reason LG gives for this bullshit is "analytics". There is no way in hell.

I disconnected my LG appliances from wifi, deleted their spyware from my phone and duplicated the functions with Home Assistant. A couple of inexpensive sensors and a power monitoring plug provide almost all same functions without getting Korea (or the Internet) involved at all. Surprisingly this setup is much more reliable than LG's spyware too.

[–] decended_being@midwest.social 8 points 2 weeks ago (4 children)

Which sensors did you use? I like how the oven can display how many minutes left, same with the laundry stuff.

[–] spaghettiwestern@sh.itjust.works 14 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

For the washer a smart plug with power monitoring. The current draw goes to almost zero when the cycle's finished. A Zigbee vibration sensor for the dryer (or another smart plug if it's a gas dryer) and temperature sensor for the fridge. All in they were less than $20.

load more comments (1 replies)
load more comments (3 replies)
[–] Zwuzelmaus@feddit.org 50 points 3 weeks ago* (last edited 3 weeks ago) (19 children)

First thing I do when I get a smart appliance is scan it with nmap.

A wonderful habit. I will try to copy it from you :)

About your main question, I can only guess that it's for the initial setup of these appliances. Initially, they know nothing about your Wifi situation. So maybe they open up their own Wifi and connect their app so that you can enter some info. Afterwards, maybe some services continue to run there...

load more comments (19 replies)
[–] IphtashuFitz@lemmy.world 29 points 3 weeks ago

You mention it’s listening on port 53, but have you actually tried DNS queries to see how it responds? Will it resolve www.google.com or <reverse_ip>.in-address.arpa?

[–] r0ertel@lemmy.world 25 points 3 weeks ago

A port scan and then inspection of the ports is a great habit. Another fun thing to do is to set up WireShark to listen to what your fridge's IP address is doing. Who is it calling? How often? What services (ports)? While your fridge may have a DNS server, unless it's been pre-loaded with the internet, it'll need to query another DNS to reach the outside world. DNS is usually unencrypted, so you can see what it's asking to connect to.

Many of these devices announce their services via Bonjour or whatever protocol. It's a way for devices like Alexa to find out that you have a printer, interrogate the printer and then Alexa will tell you that your printer is low on ink and by the way, Amazon has a special sale, just for you.

If anything is unencrypted, check it out (with WireShark). If it is encrypted, there's a chance that you can hijack it with a proxy server. Set up a SOCKS proxy and add a DNS label (I can't remember what it is) to tell the devices in your network that you have a proxy. Block the fridge from the internet and see if it will autodetect the proxy. There are other ways to tell devices that your home network requires a proxy via autodetection & wpad.dat files in specific locations on your network. You can configure your proxy to log all traffic, like WireShark does and then see what's in the payload.

I've done this with limited success on various devices. More mature products like Alexa are locked down. Those cheap home cameras from China are pretty hackable.

Have fun!

[–] fubarx@lemmy.world 14 points 3 weeks ago

Most appliances connect using a cheap microprocessor like an ESP-32 which provides both WiFi and BLE.

If there's a DNS server running, it's usually for mDNS/ZeroConf service discovery. Usually so it can easily get provisioned via a smart speaker or hub.

More details here: https://circuitlabs.net/dns-server-and-dns-sd-implementation/

[–] MangoPenguin@lemmy.blahaj.zone 14 points 3 weeks ago

Maybe for mDNS so the app can discover the appliance.

[–] early_riser@lemmy.radio 14 points 2 weeks ago (7 children)

For those who are saying I shouldn't have bought these half-baked smart appliances, I agree. But I wasn't always this aware of the privacy issues involved. The washer and dryer were purchased before I grasped how problematic cloud-connected always online IoT devices are, and as mentioned in the OP the ability to tell me when my laundry was done seemed like a genuinely useful feature. In the case of the fridge it was an emergency replacement and we took what fit the preexisting niche in our kitchen, and the complete lack of output on the fridge itself necessitated the app.

load more comments (7 replies)
[–] Greddan@feddit.org 12 points 2 weeks ago (4 children)

The only thing LG makes that's of any value are OLED-panels. The TVs they build around them however suck ass now.

load more comments (4 replies)
[–] the_q@lemmy.zip 11 points 3 weeks ago (14 children)

No one needs "smart" appliances. I know it's fun to get a message telling you your water filter needs replacing, but come on...

[–] ThunderQueen@lemmy.world 14 points 3 weeks ago (3 children)

The fact people trust these devices to not push a replacemnt before it is actually necessary in the name of profit baffles me.

load more comments (3 replies)
[–] deathbird@mander.xyz 5 points 2 weeks ago (1 children)

Listen man I want smart everything. I want a fridge that tells me if I left the door open and when I last replaced the filter and if the OJ is out and then automatically asks if it should add more OJ to the grocery list.

And this can all be accomplished with modern technology without sending my data to an outside entity. It should be, even if it isn't. So much of the sci-fi future we used to dream of can be a reality today, we just have to mold it into being.

load more comments (1 replies)
load more comments (12 replies)
[–] echo@lemmy.tf 8 points 3 weeks ago (2 children)

If you want your fridge to tell you its temp, just slap your own temp sensor in it. Put a mic by your laundry machine to detect the buzzer and alert you. DIY all the things, don't give these "smart" appliance companies money to spy on you.

[–] okamiueru@lemmy.world 10 points 2 weeks ago* (last edited 2 weeks ago) (2 children)

Laundry machine can be monitored reliably with a smart socket.

Here is a blueprint for HomeAssistant that has been working well: https://community.home-assistant.io/t/detect-and-monitor-the-state-of-an-appliance-based-on-its-power-consumption-v2-1-1-updated/421670

load more comments (2 replies)
[–] KyuubiNoKitsune@lemmy.blahaj.zone 5 points 3 weeks ago (3 children)

The only issue I see is that getting most sensors to work in the fridge/freezer is difficult for 2 reasons, the cold fucks with the batteries and the metal body of the fridge fucks with the signal.

[–] Aussiemandeus@aussie.zone 5 points 2 weeks ago (6 children)

Simple, just drill a hole into the fridge and use a probe from outside.

/s just in case

load more comments (6 replies)
[–] sramder@lemmy.world 4 points 2 weeks ago

I just used zigbee and put a repeater right next to the fridge. The big ass coin cells in the sonoff temp sensors are lasting around 6 months. Would probably be longer but I have the sensor with a screen in there.

Obviously YMMV if you have a SubZero or something, but in my jankey LG it works fine.

load more comments (1 replies)
[–] Greddan@feddit.org 7 points 2 weeks ago

None of the brands I considered when buying a new dishwasher had any spyware nor networking capability. Electrolux and Gram are both excellent and affordable. My last dishwasher was a Gram that I bought second hand for 300€, used for 12 years, and gave to the new tenant of my old apartment because I couldn't be arsed to remove it. Never had a single issue.

load more comments
view more: next ›