54 comments

[ 4.8 ms ] story [ 120 ms ] thread
I love my RT-AC router and I do not use Ai Cloud and I have FTP turned off. I check all the time. People that buy $200+ routers should be the ones to turn things off.

My name wasn't on the list.

>People that buy $200+ routers should be the ones to turn things off.

The price of an object says nothing about the cluefullness or cluelessness of the end user. A tech illiterate soccer mom could easily buy one of these because their child told them they need 'extreme performance' to play BF4. Releasing products with poor security, then not fixing it when released to the public is unacceptable in this day and age.

A tech naif that doesn't know how to turn off a service is certainly not going to be reflashing a wifi AP.
That's why you don't release terrible security flaws in the first place.

The second problem of the illiterate flashing ones router is more difficult, but not completely impossible to deal with. It's not optimal, but you could force redirect all http connections to the router from inside the network to a page where the user has to log in and click flash for the router to download and update the flash itself. Auto-updates are possible, but not without risk either.

That's not very nice. They won't remain crimeless for long.
Asusgate? How about 'Asus RT-series router vulnerabilities'? Asusgate is a less informative headline .
Everything is gate nowdays. I hope some politician would mess up something with some gate somewhere, and we'd have a Gategate.
(comment deleted)
Then we'll uncover a coverup relating to gategate, and we'll have gategate-gate.
And if a bunch of politicians mess up with some bills (which they do all the time), that would collectively be called BillGates... :-P
Look on the bright side. It's a router made by Asus that has its gates wide open. It could have been Asusgateisopengate.
I am rather bored by the specifics of Asusgate, but I do think the story has one very interesting conundrum. If change has to be driven by impassioned masses. And the masses only become impassioned when directly affected. Does it become OK for the good guys to accelerate exposure of the masses to the risks in order to prevent harm happening at a larger scale in the future?
That is a question researchers have been asking for decades. Rain Forest Puppy, with the help of some smart, invested colleagues, put together a good framework for Full Disclosure a long time ago:

http://dl.packetstormsecurity.net/papers/general/rfpolicy-2....

When I first found myself involved in disclosures in the mechanical security world, I turned to that document to orient myself, though mechanical security has some different challenges that make following that framework perfectly fairly hard.

Chuck Palahniuk?
"We are sorry for exposing innocents in this manner."

Quit lying you pricks.

My RT-AC66u died a month ago (trying to factory reset, and it never woke up), and I just plugged my 5-year old Apple Wifi-N router and never looked back.

Looks like there isn't really a good AC router - most AC routers have poor reliability reviews everywhere (even the new Apple one).

That's usually because the spec wasn't finished at release time so your card might be following one set of rule and your WAP another. I'm always leary about a company who wants to be first to market before everyone has agreed on how things should work. You can see that pattern in their security audit too.

EDIT: Asus' security audit, The apple one should work if you don't leave their eco system since the card and WAP probably have the same specs.

Another failing in consumer-grade routers.

It's depressing how bad many consumer-targeted products there are in the tech space. Printers (seriously, why do we still have printer drivers), routers, operating systems, even software. Even non-techie users take notice of this!

Is there space for a competitively priced consumer router of high quality?

TP-links have been long-standing favorites of hacker community. They might not be the highest specced and you need to be careful about which model you pick, but there are some good (value) devices there.

Of course assuming you are going to run OpenWRT or something equivalent. Running some OEM crap on routers is just madness.

Yes! TP-Link is awesome :D

TL-MR3020+OpenWRT = <333

Buffalo makes some great hardware with DD-WRT preinstalled at a reasonable price ($50-90 depending on what you want).
I would definitely fund a kickstarter campaign for a fully open-source AC router designed for OpenWRT.

I would imagine that the OpenWRT community (and related open-source firmwares like Tomato and DD-WRT) are sufficiently large enough that there is a market for a piece of hardware that is optimal for open-source router firmware.

For quite a long time, there was a Linksys WRT model that remained in production long after its useful life (because it had old radio standards and was slow and because newer devices were much cheaper with greater capabilities) because it ran Linux, and could be hacked very easily and could use all Open Source drivers and such. It's even where "OpenWRT" got the WRT in its name.

So, there's definitely a market for it. But, I don't know that it's comparable to the market for consumer oriented devices. It'd be nice if consumers were smarter and knew enough to demand this kind of thing.

It'd be really nice if one could go to the store and buy a router running OpenWRT or Tomato or whatever, like you can go to the store and ask for an Android phone or a Windows PC. As operating systems go, many current routers are probably more complex than DOS or early Windows versions and certainly more complex than many early phone operating systems. Not sure why nobody has thought to make the OS a competitive factor for routers.

You're thinking of the WRT54G (earlier firmware versions only, as later versions used VxWorks which prevented third-party firmware from being used), and finally the WRT54GL that was created specifically for OpenWRT and such (they returned to a Linux based OS).
The WRT54G went through several generations, the later generations having different hardware and just sharing the model name. They weren't all compatible with the various xWRT's of the day.

I had a v1 WRT54G; after six or seven years running OpenWRT, it finally died last month. Now I have a cheap TPLink while I wait for the dust to settle on the AC models.

What's worse is that the older generations were not necessarily an improvement either (IIRC). I think the amount of persistent memory of the device in later generations was reduced to lower costs and that some later generation models don't have enough disk space for OpenWRT.
Almond+ is probably worth looking at. It isn't fully open-source (AFAIK), but OpenWRT is used for the underpinnings, and is fully available.

https://www.kickstarter.com/projects/2037429657/almond-80211...

The beta units are just now shipping, and I would expect full production to be underway within a few months.

If you are serious about your SOHO router, I suggest you use a MikroTik.
If you're serious about your equipment, avoid MikroTik.
I would personally recommend Ubiquiti or some ALIX-based pfSense router over MikroTik. They seem like a better value for the money to me.
Only if it has OpenWRT installed.
Bruce Schneier did an interesting writeup about a month ago about the fundamental problems behind router (and other embedded device) security:

> The problem with this process is that no one entity has any incentive, expertise, or even ability to patch the software once it's shipped.

https://www.schneier.com/blog/archives/2014/01/security_risk...

Similarly echoed in the OpenWRT talk from 30C3 https://www.youtube.com/watch?v=Y-OlUxeS57E
TBH the only moderately safe way forward is open source firmware that is autoupdated via signed packages made by individuals with impeccable reputations and verified/audited by others with impeccable reputations.
Someone needs to make a Rocket Surgeon t-shirt.
I came here to comment about that but it looks like you have everything under control.
CafePress.

I mean, it's not exactly rocket surgery

OpenWRT or other OpenWRT-based firmwares are really easy to get up and running these days. Trusting consumer electronics manufacturers running on razon-thin margins for your security is pure madness, not advisable at best.