Author Topic: 9 WiFi routers and 226 security problems  (Read 1948 times)

0 Members and 1 Guest are viewing this topic.

Offline madires

  • Super Contributor
  • ***
  • Posts: 6612
  • Country: de
  • A qualified hobbyist ;)
9 WiFi routers and 226 security problems
« on: December 05, 2021, 11:46:08 am »
Nine WiFi routers used by millions were vulnerable to 226 flaws: https://www.bleepingcomputer.com/news/security/nine-wifi-routers-used-by-millions-were-vulnerable-to-226-flaws/

Some issues are critical, many are overstated or possibly can't be exploited (a bit clickbaity). However, update if you have one of the affected routers.
 

Offline PKTKS

  • Super Contributor
  • ***
  • Posts: 1625
  • Country: br
Re: 9 WiFi routers and 226 security problems
« Reply #1 on: December 10, 2021, 09:01:36 am »
Expected to happen...

I have dozens units....
Autoupdate is out of question..

Older chipsets just can not afford newer kernels.. and better crypto

While having focus on selling new gear obsoletes have no attention

This situation will olny gets worst w. iot

The investment in qualified people is negletable faced with invested in new gear and fancy interfaces

So expect to be a lot bad with cloud bots
 In near future of powerful SOM SOCs

Paul
 

Offline PKTKS

  • Super Contributor
  • ***
  • Posts: 1625
  • Country: br
Re: 9 WiFi routers and 226 security problems
« Reply #2 on: December 10, 2021, 12:25:14 pm »
ALAS...

although the older ones are hopeless...

Presently I try to buy devices based on (really) smart hardware...

https://openwrt.org/supported_devices

bricky shitty firmware no more..  :-\

Paul
 

Offline madires

  • Super Contributor
  • ***
  • Posts: 6612
  • Country: de
  • A qualified hobbyist ;)
Re: 9 WiFi routers and 226 security problems
« Reply #3 on: December 10, 2021, 12:32:04 pm »
Yep, buying SOHO routers supported by OpenWrt is a good advise for long term usage and to reduce e-waste.
 

Offline PKTKS

  • Super Contributor
  • ***
  • Posts: 1625
  • Country: br
Re: 9 WiFi routers and 226 security problems
« Reply #4 on: December 10, 2021, 12:34:09 pm »
Yep, buying SOHO routers supported by OpenWrt is a good advise for long term usage and to reduce e-waste.

They are also order of magnitude more reliable and secure..

Paul
 

Online magic

  • Super Contributor
  • ***
  • Posts: 4551
  • Country: pl
Re: 9 WiFi routers and 226 security problems
« Reply #5 on: December 10, 2021, 03:13:16 pm »
OpenWRT will also get you maybe ten years out of it unless you select a high end machine.
It grows with bloat each year and drops support for systems which can't run it anymore.
Currently you need at least 8MB flash and 64MB RAM to run official builds.
Say goodbye to several devices popular back in the day.
 

Offline PKTKS

  • Super Contributor
  • ***
  • Posts: 1625
  • Country: br
Re: 9 WiFi routers and 226 security problems
« Reply #6 on: December 10, 2021, 04:06:54 pm »
OpenWRT will also get you maybe ten years out of it unless you select a high end machine.
It grows with bloat each year and drops support for systems which can't run it anymore.
Currently you need at least 8MB flash and 64MB RAM to run official builds.
Say goodbye to several devices popular back in the day.

The supported device list is very affordable..

Not to mention the FTP repository holds the old releases..
just in case you need an older firmware blob..

Got some time ago a bunch of TPLINK WR850 which are very well supported..

For some years now I always look the database to buy new stuff...

worthy.. better to have that kind of open and better alternative
Paul
 

Offline madires

  • Super Contributor
  • ***
  • Posts: 6612
  • Country: de
  • A qualified hobbyist ;)
Re: 9 WiFi routers and 226 security problems
« Reply #7 on: December 10, 2021, 04:17:21 pm »
For most of the cheap routers the manufacturers offer updates just for about two years. They want you to buy a new one every two years. AVM (Fritzbox) provides updates for up to 10 years. If you go for a more professional model, like LANCOM, you'll get also about 10 years. Telco branded routers are usually supported for a few years. One of the worst manufacturers is DLink. Many security issues (often fixed only after media coverage), poor WiFi performance, hardware-wise at the low end (often half the flash and memory compared to other manufacturers' models in the same price class) and don't expect to get updates for more than two years, even for expensive models.
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf