After agonizing about it for a while, I replaced Grace's door locks with Kwikset Kevo 2s. This wasn't just technology for technology's sake: I wear a backpack to work and generally lack pockets, and thus digging out a key is a hassle both leaving and returning. But convenience ever trades off security, and I felt conflicted about the idea for a long time.

The conflict wasn't, I think, really about security risks; it was that, in making the decision to change out the locks, I become accountable for all consequences. I've been burgled before, and even though I wasn't the one who was present at the time, it dramatically changed how I felt about my home. If that happens again, I'm always going to wonder if the old locks would have prevented it, particularly given how emotionally invested we are in Grace.

But realistically, the question of objective impact on security is quite separate from the psychological aversion to culpability, and my best assessment of the former is that it doesn't make much difference. While installing smart locks indubitably increases the attack surface, the external locks themselves are far from Grace's point of greatest vulnerability. We have huge and easily accessible windows. The door-frames appear to be neither reinforced nor particularly rigid. There's no Bluetooth repeater installed that might allow remote access (at the same time, we can't remotely verify that we locked our doors, which I do get very occasional OCD tingles about). Our security system shares no protocols (and therefore no vulnerabilities) with the locks. So while someone could bring along an RF amplifier or Bluetooth hacking rig to break in, that seems like a lot of unnecessary complexity when a crowbar would do the job just as fast.

At any rate, having decided to do it, installation wasn't complicated. The only surprises were, firstly, that lolcontractor had butchered the doors when installing the original locks and then tried to compensate with various forms of reinforcement that needed working around, and secondly that our front door is 2⅛" thick, and Kwikset claim not to make a thick door kit for the Kevo. This is a half-truth: the Kwikset 84221 thick door kit's bolts fit the Kevo, and even though the kit's tailpiece doesn't, the Kevo's own tailpiece slides out far enough to work unmodified.

At the end of it all, things are working well. The original keys still work (since the original locks also happened to be from Kwikset's self-rekeyable line), but I don't use them unless my phone is out of battery. Kevo's Bluetooth security appears robust, which is more than you can say for its physical security, but then see above re: physical bypass not being the thing this lock needs to protect against. So far, I'm pretty happy with the situation.
Grace is a mess of incomplete projects. I mostly blame the contractor who did the renovation before us for laziness (ha), though I guess I should also be better about seeing all of these as opportunities.

The recent success is finally fixing the Wi-Fi coverage in the library. The contractor didn't deign to put in conduit in the walls... or any kind of reasonable cabling, either. There is, at least, a wallplate in every room with a phone jack and coax, but all of the cabling is cat3, stapled to various beams along the way. Most of it is only connected at one end, too, with the other end dangling loosely in the attic or wall cavity, so getting any kind of aesthetically appealing wired connection between rooms has been challenging.

The DSL link is terminated downstairs, at a wall socket with two other cat3 cables present. I'd earlier worked out that one of those went up to the attic, and I repurposed a ceiling mounted smoke alarm's remodeling box to connect a Unifi AP. That mostly covers the top floor, and another AP directly connected near the DSL model handles the basement, but the signal at the main floor at the other end of the house is too weak to be able to video-conference from the couches in the library, which is something of a pity, given how beautiful that room is and my love for showing it off.

There's an enclosed crawlspace below the library which I've long had in mind as a machine room (despite an unhealthy amount of dust left over from construction), but I hadn't found a cabled path to it, despite one clearly visible cat3 cable. Two cable tracers and one unattractive patch cable later, it's finally wired up, with a third Unifi perched on a beam below the library (there is a wall plate in the library, presumably with a cat3 connection, but I have no idea where it connects to, and we bolted bookcases onto that wall anyway).

Together with a Unifi PoE switch and a Unifi Security Gateway, Grace is now an all-Unifi network which I manage by clicking around a UI on a controller that I don't even host and I just don't recognize myself any more. Somewhat to my surprise, all of the links are running cleanly at 1GbE. Modern ethernet hardware is pretty amazing.

After some prompting, we bought into the whole Sonos thing for sound. Even the Play:1s have great audio quality, but after investing in a bunch of them and a Playbar, we discovered that they don't work as simple wireless speakers. In particular, Eden wants to play audiobooks and movie soundtracks through them, and... can't. They just don't work that way. Which is amazing, but there you go. As a last ditch effort before investing in yet another piece of Sonos kit that was sufficiently expensive to offer external input to a standalone Bluetooth audio receiver (I can't even), I tried airsonos, which fakes up a bridge between AirPlay and Sonos hardware, and it sort of works. It only really solves half the problem, though, since it adds close to 10 seconds of audio latency, which means audiobooks are fine, but movies are not. I have some small hopes of this being solved for me, but since I also lack a host to run airsonos permanently, it's moot for the moment.

There's yet more ecosystems to kvetch about, but I'm realizing that about 90% of my complaints are about the wiring in the house. I was always politely bemused by all the earnest threads about choice of conduit when renovating or building. Now I finally understand. Argh.


