Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Thu May 19, 2022 7:25 Post subject:
DWCruiser wrote:
Having said that i think Netgear engineers are very good at what they do.
Except where using modern kernels, libs and other firmware components to ensure CVE's are patched in a timely manner across these areas, and of course cease and desist kafkaesq practices like planned obsolesce.
Of course not limited to Netgear, indeed <insert your fav brand here>.
Also of note using modern hardware components and embracing opensource fully inclusive of said components source code.
Regrading reboot() including nvram commit, there is a file in my router /etc/profile looking at reboot.c and reboot.h outside of this its not obvious at all.
I tend to agree that nvram commit is needed after nvram erase, currently on some platforms and wont hurt anything on any platforms.
Joined: 15 Aug 2016 Posts: 223 Location: Melbourne, Australia
Posted: Thu May 19, 2022 21:49 Post subject:
the-joker wrote:
...
Your friendly neighborhood devils advocate -- Joker
Greetings,
My earlier comment re 'Netgear engineers are very good at what they do' lacks a clarification: Hardware-wise. Sorry.
If Netgear's stock firmware was really excellent, there may not be enough reasons for me to have ditched it for DDWRT. So, it may be cool not to criticize too much those that pass you the opportunities to shine over their weak points. (In the similar vein, although i use MikroTik gears in my line of work, i have not seen the need for alternative 3rd party's firmware on them).
The landscape is changing though. Netgear's adoption of DUMA OS on its selected range of XR-xxx routers, aimed squarely at gamers, is a recognition that DUMA OS is a better enticement for them to buy. After all, gamers want to win in their reality-escaping universe, rather than gaining knowledge about QoS. Let alone other aspects of routing and networking.
Good day. _________________ Life is a journey; travel alone makes it less enjoyable and lonely.
Joined: 31 Jul 2021 Posts: 2146 Location: All over YOUR webs
Posted: Tue May 24, 2022 9:35 Post subject:
It doesn't matter what manufacturer it is or what they call their OS, as long as they use ancient EOL kernels and outdated libraries and other software components as well as old hardware which is optimized firmware side to deliver that extra performance, its all bullshit.
Users will lap up the marketing bullshit and remain kept in the dark about the facts that under the bonnet, they have an OS that is ridden with unpatched known/unknown security flaws.
Now, even in DD-WRT very latest builds using newer still maintained kernels which contain the latest security patches against all known CVEs that affect DD-WRT and even though 3rd party libraries and component are updated in DD-WRT to fix any know security flaws, there exists the unknown security flaws which are still exploitable.
Now, personally I prefer to run something that is patched against all known security flaws, because this reduces the attack surface since a large number of malware payloads which trawl the intrawebs looking for affected devices out there created by bad actors only rely on these known exploits to succeed.
The unknown exploits still present IN ANY kernel/library or component modern and maintained is still an issue, and these days the bad actors are really really rebuilding their botnets that have been taken down by worldwide operations between law enforcement and tech companies and are going after everything via their automated delivery systems and campaigns.
Its irresponsible from most consumer devices manufacturers to continue to build their solutions ontop of a crap flawed foundation, no matter who they are, its still more profitable for them to pay fines, then to use modern kernels/libraries and components.
This is possible for them because users dont care and continue falling for the marketing gimmicks year after year and ths a very profitable business because they have no interest in educating consumers.
Planned obsolesce FTW.
My only interest is educating people in the reality rather than pulling the wool over their eyes.
Ultimately, freedom is a great thing, even if misused by the vast majority of humans on this planet due to lack of education and factual information and providing such is against these corporations interests and profit margins.
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=332327 _________________ "The woods are lovely, dark and deep,
But I have promises to keep,
And miles to go before I sleep,
And miles to go before I sleep." - Robert Frost
"I am one of the noticeable ones - notice me" - Dale Frances McKenzie Bozzio