Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. lancethepants

    ARM toolchains with NPTL for Asuswrt/Merlin

    My one concern is that uClibc doesn't guarantee compatibility between different versions. If the firmware uses an older version, you can't do anything with binary blobs You may not immediately encounter some issues, or you may be lucky. Sent from my XT1049 using Tapatalk
  2. lancethepants

    DNSCrypt on Asus-Merlin Variants?

    Space permitting, I would put DNSCrypt in jffs which mounts more dependably then external hdd. Plus I don't like the thought of having to rely on hdd to work for internet access to work as well.
  3. lancethepants

    Let's Encrypt is now trusted by all major browsers... AiCloud SSL problems solved?

    I pay ~$15 per year (with whois privacy) per domain. Usually a lot of places have promos for even less than that though. Not too bad of an expense I think. Plus you can already get free trusted certs, so not a huge expense from start to finish.
  4. lancethepants

    Let's Encrypt is now trusted by all major browsers... AiCloud SSL problems solved?

    If however aicloud allows you to access it with your own domain, instead of using xxxx.asuscomm.com, then you could create a cert for that domain you own.
  5. lancethepants

    Let's Encrypt is now trusted by all major browsers... AiCloud SSL problems solved?

    Only the owner of the domain can have ssl certs issued for it. Asus would have do something along the lines of what plex recently has done to give all their clients trusted encryption. https://blog.plex.tv/2015/06/04/its-not-easy-being-green-secure-communication-arrives/ I've been using free...
  6. lancethepants

    DNSmasq dnssec support

    dnssec and dnscrypt are not competing technologies. They perform different functions, and can (and do) work complimentary. dnssec = dns authentication dnscrypt = dns encryption/privacy You can in fact use both simultaneously, there are dnscrypt resolvers with dnssec authentication. If I had to...
  7. lancethepants

    DNSmasq dnssec support

    Here is how dnssec is implemented in tomato. https://github.com/lancethepants/tomato-dnssec/commit/90e172261242f21e9ba3169d44eafdc051713052 nettle + gmp are statically linked - which increases dnsmasq size - but less so than dynamic linking them. Eventually Asus would have to implement it, but...
  8. lancethepants

    Has OpenVPN-NL been looked at?

    And not necessarily more secure. https://guidovranken.wordpress.com/2015/10/07/cve-2015-5291/
  9. lancethepants

    Is the httpd service configurable?

    You could always use something like nginx or stunnel to create a reverse SSL proxy to expose the httpd server.
  10. lancethepants

    AC68U as plex server

    Well it's unable to do any transcoding, so it's pretty much a glorified dlna server. Mostly I think people like it for content management and the nice interface. I personally do not run it on my router, it's just something I whipped up for fun.
  11. lancethepants

    AC68U as plex server

    You can actually. http://www.linksysinfo.org/index.php?threads/plex-media-server-on-arm-routers.71659/ No transcoding or remuxing with this though, so your clients have to be able to play the file natively. (For this I like the wdtv line).
  12. lancethepants

    Dnscrypt from opendns

    I use dnscrypt to circumvent DNS filtering and interception.
  13. lancethepants

    How to disable Windows 10 tracking using ipset + Entware

    @theMIROn DNSMasq + DNSSEC activated < 1 MB Memory DNSCrypt < 1MB Memory. Modern ARM Routers >= 256MB Memory. Even running Asterisk 11 on my router only takes 11MB Memory, for a system total of <50MB. The only time I've seen memory usage >100MB was me attempted to compile llvm on the router...
  14. lancethepants

    How to disable Windows 10 tracking using ipset + Entware

    Yes, DNSSEC uses nettle, and DNSCrypt uses libsodium, instead of the already included OpenSSL. Modern routers have more than sufficient flash now-a-days, so issues of space isn't a concern. Diverging too much from Asus's source is the larger concern I imagine. It makes things harder to stay in...
  15. lancethepants

    How to disable Windows 10 tracking using ipset + Entware

    dnsmasq + DNSSEC -> nettle -> libgmp, so a couple additional dependencies. dnsmasq does have a nice compile time option to link the libraries statically. Still have to compile them and make a few changes that take DNSSEC into account...
  16. lancethepants

    Please explain how source code can be used to confirm the legitimacy of firmware?

    Given the level of concern the OP shows, surely he wouldn't run anything like Windows or OSX :) If you're looking for a good way to justify your concern - Richard Stallman wouldn't touch asuswrt with a 10 foot pole. But then you have to ask yourself... could you really commit to the Stallman...
  17. lancethepants

    Please explain how source code can be used to confirm the legitimacy of firmware?

    Reminded me of this. https://madiba.encs.concordia.ca/~x_decarn/truecrypt-binaries-analysis/ This process definitely would not be practical for a project like Asuswrt. Timestamps ruin everything when it comes to comparing hashes (who knows how many in this project), and looking through a bunch...
  18. lancethepants

    Blocking Minecraft with parental cotrols?

    Minecraft's official port is '25565'. You could try and blocking all incoming/outgoing connections on that port (iptables). That would probably block >99% of all servers.
  19. lancethepants

    [Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

    @anontemp123 You can check whether you are affected by running tcpdump on the wan interface and looking for the DSCP value. The link below is a similar discussion that took place regarding DSCP and tomato. Several users remark that having it enabeled greatly helped with wireless throughput...
  20. lancethepants

    No vpnc in Merlin release?

    entware should have openconnect, which is the successor to vpnc.
Top