Ask HN: Routers that are secure out of the box?
My apple router just broke due to a power surge. I've searched HN and apparently Linksys, Netgear, Asus and TP-LINK all have had decently-bad vulnerabilities/back doors, at least in the past. There's also discussion of open firmware but I don't want to have to maintain that.
Is there a safe router I can get that works out of the box or should I just stick with apple?
10 comments
[ 3.0 ms ] story [ 46.7 ms ] threadhttp://www.gateprotect.com/en/Products/UTM-Solutions
They are selling an Intel based appliance running a hardened Linux [I think] distro that is customized to provide the service/protection they want. I guess it is only as secure as the packages they bundle.
Their site details their TeleTrust Cert comitment as:
The company headquarters is in Germany
The company offers trustworthy IT security solutions
No solutions that contain non-declared backdoors are offered
All the company's IT security research and development takes place in Germany
The company complies with the German data protection law.
[http://www.gateprotect.com/en/why-you-should-consider-techno...]
Even if an open source firmware was the preferred solution, OpenWRT or another libre firmware would be a better choice. DD-WRT is harder to keep updated, often relies on closed source wireless drivers, and has had several remotely exploitable vulnerabilities in the past.
https://www.ubnt.com/edgemax/edgerouter-lite/
They perform well, as easy to setup, and regularly receive updates from Apple.
If you decide you want something more powerful, with more features, or generally want to learn more about networking and security, I'd recommend buying an official pfsense device. See: https://www.pfsense.org/