I agree. Buy a new router that isn’t Dlink.
D-Link refuses to patch yet another security flaw, suggests users just buy new routers — D-Link told users to replace NAS last week
Submitted 2 months ago by Xatolos@reddthat.com to technology@lemmy.world
Comments
Imgonnatrythis@sh.itjust.works 2 months ago
SkunkWorkz@lemmy.world 2 months ago
Yeah after gettin screwed by the D you might as well use the TP
psmgx@lemmy.world 2 months ago
Welp never buying anything D-Link ever again
pearsaltchocolatebar@discuss.online 2 months ago
Because they won’t support routers that were EOL a decade ago?
SaharaMaleikuhm@feddit.org 2 months ago
Companies should be forced to release all source code for products that are “EOL”. I will never change my mind on this.
Dran_Arcana@lemmy.world 2 months ago
Because that bug was so egregious, it demonstrates a rare level of incompetence.
Corr@lemm.ee 2 months ago
Most reached EOL in may of this year.
Steamymoomilk@sh.itjust.works 2 months ago
There right you and i should just buy a new one
Of a diffrent brand
Iheartcheese@lemmy.world 2 months ago
Our shit sucks. Buy more lol
irotsoma@lemmy.world 2 months ago
I mean this is pretty standard in all industries regardless of whether it’s a software flaw or a physical flaw in any other kind of product. What’s the likelihood of a vacuum manufacturer replacing a part in a 15 year old product that had a 1 year warrantee even if it’s a safety issue?
SplashJackson@lemmy.ca 2 months ago
I work for a manufacturer with part catalogues going back to 1921, and while the telegraph codes no longer work, you could absolutely still order up a given part, or request from us the engineering diagram for it to aid in fabricating a replacement. You can also request service manuals, wiring diagrams, etc. Don’t all half-decent manufacturers do this?
TheGrandNagus@lemmy.world 2 months ago
Don’t all half-decent manufacturers do this?
No. That is phenomenally uncommon. To the point it’s almost unheard of.
dragonfucker@lemmy.nz 2 months ago
Yes they do, but half decent manufacturers are extremely rare.
boonhet@lemm.ee 2 months ago
Now I wish you’d tell us what the company is so if I ever need anything in that industry, I’d know where to buy from.
wholookshere@lemmy.blahaj.zone 2 months ago
This is why a number of countries have laws saying spare parts must be made available for a number of years past being sold. Well beyond what the warranty is.
How is this significantly different?
skillissuer@discuss.tchncs.de 2 months ago
but does it run openwrt?
Hobbes_Dent@lemmy.world 2 months ago
No mercy from Low Level.
Deebster@infosec.pub 2 months ago
I watched and enjoyed that one yesterday, and he’s bang on the money. People here are saying “well it’s EoL” but that means it’s got all the way through development and its full lifetime with such a prominent set of bugs.
I don’t think I’ll be buying D-Link if that’s what supported means.
sunbeam60@lemmy.one 2 months ago
I moved to an OPNsense router a couple of years ago and I’ve never looked back. Hell is shitty consumer routers.
CarbonatedPastaSauce@lemmy.world 2 months ago
This is the way.
FutileRecipe@lemmy.world 2 months ago
Same website (granted, different author, but), same inflammatory language, same vendor, referencing previous erroneous article…I’m not even gonna read this one. Just going to copy/paste my previous response from the previous post:
At a certain point it’s the consumer’s (and blog writer’s) fault, and that’s after EoL. Not patching a supported one and just getting rid of support, saying buy a newer one? Yeah, that’s bad.
Continuing to not support an EoL model that you already don’t support due to EoL (or even dropping support for an EoL model that no one expected you to support in the first place due to EoL)? Non-issue.
anon_8675309@lemmy.world 2 months ago
Why do they say they’re prohibited to provide support? That a bad translation?
andyortlieb@lemmy.sdf.org 2 months ago
Commodity hardware & open source software for the win.
When my Western Digital NAS was never going to get critical security patches, I was so freaking glad to find out that they just used software raid… I threw them in a Debian server and never looked back.
It’s certainly nice to have things that are turn-key, but if you can find your way around any OS, just avoid proprietary everything.
viking@infosec.pub 2 months ago
Can highly recommend ASUS, most of their models can be flashed with custom firmware that is supported beyond EOL. And their EOL cycle is also pretty long.
ch00f@lemmy.world 2 months ago
Is DDWRT still a thing?
pastermil@sh.itjust.works 2 months ago
OpenWRT is. Not sure if it’s supported on that hardware tho.
Someonelol@lemmy.dbzer0.com 2 months ago
Instead of trusting DLink with an off the shelf NAS, it might be easier to build your own with a Raspberry Pi running openmediavault hooked up to a couple of USB hard drives. It’s worked well for me for over 6 years now with no issue and could cost way less.
Cyber@feddit.uk 2 months ago
“Easier“, no. Not for the average person on the street.
Don’t get me wrong, I’ve built several NAS over the years (dropped OMV for just Arch and the packages I want) and loaded OpenWRT (etc) on routers
But, building my own NAS, servicing my own car, repairing my own house, felling my own trees, at some point I’ll just lack knowledge and buy something simple / pay someone to do it… and that’s where cheap consumer electronics fits (unfortunately)
GhiLA@sh.itjust.works 2 months ago
Except a lot of it doesn’t fit because tons of it is predatory trash sold as functional when one or two things can go wrong and ruin everything.
It’s hard to expect the layman to need something technical, not know enough technically to do it themselves, but have enough surface knowledge to not get ripped off. It’s like threading a needle of the perfect level of wisdom.
Like I’d wager the common every dude would look for a connected hard drive, maybe Western Digital because of the market saturation, but there’s just so much garbage online that half works.
Then there’s interconnectivity issues, software not being available cross-platform after already spending hundreds on hardware, Apple problems.
The average user is just set and ready to be ripped off at like, all angles.
tal@lemmy.today 2 months ago
I mean, some of those EOLed nearly a decade ago.
You can argue over what a reasonable EOL is, but all hardware is going to EOL at some point, and at that point, it isn’t going to keep getting updates.
Throw enough money at a vendor, and I’m sure that you can get extended support contracts that will keep it going for however long people are willing to keep chucking money at a vendor – some businesses pay for support on truly ancient hardware – but this is a consumer broadband router. It’s unlikely to make a lot of sense to do so on this – the hardware isn’t worth much, nor is it going to be terribly expensive to replace, and if you’re using the wireless functionality, you probably want newer WiFi standards anyway.
I do think that there’s maybe a good argument that EOLing hardware should be handled in a better way. Like, maybe hardware should ship with an EOL sticker, so that someone can glance at hardware and see if it’s “expired”. Or maybe network hardware should have some sort of way of reporting EOL in response to a network query, so that someone can audit a network for EOLed hardware.
But EOLing hardware is gonna happen.
db2@lemmy.world 2 months ago
Both of these are solved by one thing: open platforms. If I can flash OpenWRT on to an older router then it becomes useful again.
Rivalarrival@lemmy.today 2 months ago
Bingo.
Either support the device until the heat death of the universe, or provide consumers with the access to maintain it themselves.
thejml@lemm.ee 2 months ago
Definitely don’t this in the past (Linksys WRT54G!) but let’s be honest, the kind of people running 10yo Dlink routers aren’t going to flash new firmware, let alone OpenWRT or even know to look for it. It would have to come that way from the factory.
YaksDC@sh.itjust.works 2 months ago
This is the correct reaction to old home equipment.
BearOfaTime@lemm.ee 2 months ago
Right?
Something this old is going to be power inefficient compared to newer stuff, and simply not perform as well.
I would know, I just booted up a 10 year old consumer router last night, because the current one died. It’ll be OK for a few days until I can get a replacement. Boy, is this thing slow.
shininghero@pawb.social 2 months ago
I think there should be a handoff procedure, or whatever you want to call it.
As EOL approaches, work with whatever open router OS maker is available (currently OpenWRT) to make sure it’s supported, and configs migrate over nicely. Then drop one last update, designed to do a full OS replacement.
Boom, handoff complete.
Brkdncr@lemmy.world 2 months ago
I’d support a regulation that defines either an expiration date or commitment to open source at the time the hardware is sold.
tabular@lemmy.world 2 months ago
When the users are in control of the software running on their devices then “EOL” is dependent the user community’s willingness to work on it themselves.
viking@infosec.pub 2 months ago
The ones with EOL 2015, fair play. But May 2024 isn’t all that long ago.
Rinox@feddit.it 2 months ago
EoL of anything should mean open source code. You don’t want to open source your code? Then you must keep servicing your products and must keep your servers up