Comment on Wireguard easy and third party von service.
LetchLemon@lemmy.blahaj.zone 4 days agoYeah only if you enable their cloud api and dont randomise your web interface port. Both of which i do. I have also pen tested my router remotley. Also i have a router not a router wifi combo. Its not an isp or consumer router. Router splits to poe switcher and a wifi ap puck.
moonpiedumplings@programming.dev 3 days ago
Randomized interface ports change nothing except for stopping automated scanners. They don’t really help. Just lock it behind ssh, physical access or similar, and then never worry about it again.
No, all of the local web interfaces have had problems too. Literally every router or network appliance has had similar issues.
ISP, consumer, and enterprise routers have all the same issues due to the same architecture. All of them.
Me too. But it’s just not about my router being secure today, it’s about it being secure tomorrow. I want to be able to rest easy knowing that if a new vulnerability appears in xyz component then I don’t have to worry about it.
LetchLemon@lemmy.blahaj.zone 3 days ago
Cool story bro write it in your blog. You dont know my config and you dont know my infrastructure so all you can do is speculate.
LetchLemon@lemmy.blahaj.zone 3 days ago
Im very much aware of the cves out on tplink and the one you showed i patched months ago and hardened to recommendation to the rest. Nothings perfect but i fail to see when you look at security flaws beyween cisco ubiquity and tplink ill go for tp link even tho they are missing some useful features. If i was doing it all again and not buying on a budget id setup my own pfsense.