You are here

Router Security

2 posts / 0 new
Last post
w8erd
Router Security
These articles indicate that many of our routers are unknownst to us infected with dangerous software, and there may not be any easy solution.
Should we be doing something about this?

Bob W8ERD

https://www.schneier.com/blog/archives/2018/06/router_vulnerab.html
https://blog.talosintelligence.com/2018/05/VPNFilter.html
AE6XE
AE6XE's picture
Bob, we are doing something
Bob, we are doing something about this.  With ongoing cat and mouse security ever present, staying up with the latest security fixes is important.    If you google further, you'll find that one of the benefits of the opensouce community is an ability to stay ahead of vendors, who may not provide fixes to their prior year released models.  They are working on their next big bang model.   

Our nightly builds are as current as we can make them with the latest security fixes on the linux platform we are building upon.  It's probably more the concern that the stream of changes we receive hasn't been vetted enough.   There will be a steady stream of these security fixes, could be 100s in a given month.   By keeping our releases close behind this stream from the linux community, we keep on top of the security risks.

But security goes beyond the mesh nodes.  Each local mesh island should be talking about and concerned members attach laptops and other devices that are also current with OS patches and Antivirus updates.    Proper device hygiene should be on each group's checklist.  It's a matter of time before someone unknowingly connects an infected device and propagates to other devices on the network.  All devices should be connected to the internet monthly to receive OS updates and virus definition updates.

Joe AE6XE

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer