Guest Posted ... hi all, i've been having problems with my internet connection and my ISP switched my router and other things. I was wondering, being that the firmware is not open source, is there any other way to check whether the router has a backdoor installed? thanks Quote Share this post Link to post
zhang888 1066 Posted ... Only if you can attach a JTAG/serial interface to it, most routers have those pins on the board.You will need a USB-TTL-UART adapter for it and 3 pins and attach it to the router board.That is only half of the way, you will then have to check the file system and various proprietary init scripts.Most routers that are provided by ISPs collect some sorts of data/telemetry, whether you call it a backdoor or not.A good start can be found here:https://wiki.openwrt.org/doc/devel/debugging However it is not something you should do, and will most likely void your warranty and ISP agreement.The best way to ensure that your device is safe is using FOSS firmware such as OpenWRT/LEDE, on your own device. 1 Flx reacted to this Quote Hide zhang888's signature Hide all signatures Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees. Share this post Link to post
Guest Posted ... thank you zhang888, thats a good starting point for me. i am concerned about state level players so for them to attach things to the router would not be an issue. Quote Share this post Link to post
OmniNegro 155 Posted ... Since you want to avoid state level backdoors, remember that hardware itself has to be open sourced too. And perhaps consider a Turris Omnia as the most open sourced router ever made.https://www.amazon.com/dp/B01MG47OY3/(Staff, please delete the link if you think of this as spam.) Quote Hide OmniNegro's signature Hide all signatures Debugging is at least twice as hard as writing the program in the first place.So if you write your code as clever as you can possibly make it, then by definition you are not smart enough to debug it. Share this post Link to post
Guest Posted ... thanks OmniNegro. I never thought about open source hardware so will definitely look into this. Am I correct in thinking that using a VPN makes no difference if state entities install compromised firmware in a router? Quote Share this post Link to post
OmniNegro 155 Posted ... Yes. Even with open sourced hardware, if the firmware makes it betray you, it has no choice but to do that. And if the hardware is backdoored, it hardly matters if the firmware is good. There are some models of commercial routers that are known to "call home" and report details that betray your privacy due to the hardware, even if they have open sourced firmware installed without any bugs or backdoors. So it is an all or none thing. While the Turris Omnia is expensive, it is a resounding success because it is literally the last router you would ever need for the foreseeable future. It has a hardware crypto chip that takes the load off the dual core ARM CPU. So it can maintain a full speed connection to the VPN for your entire local network to have the VPN available without having to encrypt and decrypt anything. But I am starting to sound like a sales pitch. So I will shut up now. Have a nice day everyone. Quote Hide OmniNegro's signature Hide all signatures Debugging is at least twice as hard as writing the program in the first place.So if you write your code as clever as you can possibly make it, then by definition you are not smart enough to debug it. Share this post Link to post
Guest Posted ... Vulnerabilities in circuit design (like the recent Intel embarrassments) are "discovered" when the United States can no longer be sure they're the only ones who know about it. Quote Share this post Link to post
Not connected, Your IP: 3.144.89.152
Online: 26374 users - 320032 Mbit/s total BW