this post was submitted on 30 Oct 2025
65 points (98.5% liked)

Technology

76500 readers
5159 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
65
U.S. agencies back banning top-selling home routers on security grounds (www.washingtonpost.com)
submitted 1 day ago by silence7@slrpnk.net to c/technology@lemmy.world
16 comments fedilink hide all child comments
 

The Commerce Department has proposed barring sales of TP-Link products, citing a national security risk from ties to China, people familiar with the matter said.

Access options:

top 16 comments
sorted by: hot top controversial new old
[–] frog_brawler@lemmy.world 4 points 19 hours ago

Every. Single. AWS CPU…. Security concern.

[–] chronicledmonocle@lemmy.world 42 points 1 day ago (1 children)

All WiFi routers should run OpenWRT or another open source solution. There is nothing in these black boxes that needs to be closed source. They're WiFi and NAT FFS.

[–] Venator@lemmy.nz 14 points 1 day ago

You could say that about almost anything with a computer in it...

[–] cardfire@sh.itjust.works 27 points 1 day ago (1 children)

Things are getting Hua-wei out of hand!

[–] FauxLiving@lemmy.world 10 points 1 day ago* (last edited 1 day ago) (1 children)

I xí what you did there

[–] prex@aussie.zone 7 points 1 day ago (1 children)

Dahua-t are you talking about?

[–] FauxLiving@lemmy.world 4 points 1 day ago

I could be wǎng yǒu, could yī píng OP and ask?

[–] jubilationtcornpone@sh.itjust.works 23 points 1 day ago

With TP-Link, I would say the bigger concern is that they are reeaaaalllyyy slow to patch vulnerabilities, if they do it at all.

[–] tal@lemmy.today 9 points 1 day ago (2 children)

I think that, TP-Link aside, consumer broadband routers in general have been a security problem.

  • They are, unlike most devices, directly Internet-connected. That means that they really do need to be maintained more stringently than a lot of devices, because everyone has some level of access to them.

  • People buying them are very value-conscious. Your typical consumer does not want to pay much for their broadband router. Businesses are going to be a lot more willing to put money into their firewall and/or pay for ongoing support. I think that you are going to have a hard time finding a market with consumers willing to pay for ongoing support for their consumer broadband router.

  • Partly because home users are very value-conscious, any such provider of router updates might try to make money by data-mining activity. If users are wary of this, they are going to be even more unlikely to want to accept updates.

  • Home users probably don't have any sort of computer inventory management system, tracking support for and replacing devices that fall out of support.

  • People buying them often are not incredibly able to assess or aware of security implications.

  • They can trivially see all Internet traffic in-and-out. They don't need to ARP-poison caches or anything to try to see what devices on the network are doing.

My impression is that there has been some movement from ISPs away from bring-your-own-device service, just because those ISPs don't want to deal with compromised devices on their network.

[–] jubilationtcornpone@sh.itjust.works 3 points 19 hours ago (1 children)

A long time ago, for whatever reason, I decided to do a port scan on my entire WAN subnet. That's how I discovered that a certain brand of DSL modem (I don't recall which) made the admin portal accessible from the WAN. And of course the credentials were admin/admin.

I think most hardware providers do better now but it was just mind boggling to me that it even happened in the first place.

[–] tal@lemmy.today 2 points 19 hours ago* (last edited 19 hours ago)

Honestly, even limiting it to, say, the WiFi network, having a default admin login is not great.

Like, Android isolates apps from the rest of your Android system, but not from touching the rest of the network. If any random app I install on my phone can reflash my WAP's firmware or something like that, that's not great.

[–] Jason2357@lemmy.ca 5 points 1 day ago (1 children)

Yes, this really is a situation where ISP managed devices could really be the right option for most -if they weren't such terrible companies.

[–] phoenixz@lemmy.ca 7 points 1 day ago (1 children)

That last part says it all, though.

The ISPs are horrible companies, mostly, and that alone warrants that users should be able to have their own router

I need a better router than my ISP wants to give me, then just give me the modem, I'll do the rest

[–] Jason2357@lemmy.ca 1 points 1 day ago

I agree, but for the reasons above, it's a terrible outcome for everyone on the internet. The number of people who will keep their router up to date with security patches are abysmal. Fix the ISPs and it would work, but you can't fix the situation where the majority of residential humans suck at managing routers.

[–] masterofn001@lemmy.ca 15 points 1 day ago* (last edited 1 day ago)

They want to take away your ovens!!!!!

https://www.newsweek.com/republicans-mocked-over-outraged-claims-government-coming-gas-stoves-1773145

[–] darkevilmac@lemmy.zip 7 points 1 day ago

Right after I upgrade my omada setup...