Definitely some tradeoffs there. I recall going back and forth in my head "I'm paranoid, I don't need to enable this" to "what if there was a breach..".
Thats not what E2E encryption means. Encryption during transmission is called transport layer encryption (eg via TLS). E2E (end to end) encryption is encryption where the data is encrypted in transit and at rest. Generally E2E systems only have the keys to decrypt the data on the user's (endpoint) device.
That's a nice idea, but Blue Iris in particular, while being affordable and while not requiring a subscription, only runs on Windows. Keeping a Windows system running 24/7 is a whole chore in itself.
Got any suggestions for OSes that are easy to secure and easy to run 24/7?
MotionEyeOS isn’t as easy as a Windows installer and is probably only as secure as you make the rest of your network, but as a main Windows user and occasional *nix, the various guides weren’t too hard to follow and it’s been fairly reliable.
I rolled my own system, initially with MotionEye, and then rolled over to Frigate. I appreciate the extra object detection feature in MotionEye, whereas MotionEye really only records on, well, motion. Even with two 720P streams, I'm able to do motion detection and object recognition on an ancient Core2Duo Mac Mini, no TPU.
No data leaves my LAN unless I want it to.
The most painful part of the whole process was the YAML files for Frigate.
Limited notifications,.loss of timeline feature, inaccessible on desktop and other non-mobile platform