security

Security Problem on Asus RT-BE88U same on RT-AX88U re Dual WAN Enabled - Running Merlin 3006.102.6 on RT-BE88U re below 4 screengrabs. Trend Micro Ai Protection is enabled and upon pressing the “Scan” button reports that all is secure. Now Enable Dual WAN at “WAN” > “Dual Wan” Tab – allow...

Disclaimer: I'm by no means a security expert, and I acknowledge that some of the issues I found after installing AdGuardHome could be caused by my own configuration mistakes, or might have nothing to do with AdGuardHome. I installed AdGuardHome today (version 1.9.3, via amtm). I'd been...

📌 Skynet v8 - Router Firewall & Security Enhancements The largest upgrade in Skynet’s 11-year history Built exclusively for ASUSWRT-Merlin, Skynet v8 delivers a fully modernised codebase with major performance, reliability, and maintainability improvements - while keeping the familiar...

Per the title, how secure it she backhaul channel. I am setting up a pair of AX92U that are tri-band. 5ghz-2 to be the dedicated backhaul. * This is a sports scoring system that moves from venue to venue. * Purpose is to replace a hard wire that currently runs about 40 feet but typically...

Today I run a port scan to my Asus RT-AX86U router running firmware 3004.388.9_2. To my surprise, I discovered that my SSH port is opened to WAN even though I have set it to "LAN only". Meaning, the "LAN only" setting is not in action at all! When I try SSH to my external IP address, the...

Posting it here as I would like to understand if and how ASUS routers are affected, and if affected is there mitigation. Please move post as applicable. from https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2025q3/018288.html

Hi, I'm getting 8 connection attempts per minute around the clock, or about 11500 per day. Is this normal? It seems a lot to me. What about you?

Hey all, I listen to the Security Now podcast, and on this week's Episode Steve mentioned a 9.8 rated CEV targeting Asus routers. I'll have to go back and listen to the podcast again once it posts, as I like to watch it live. What I'm curious about is, what all do these vulnerabilities affect...

Merlin feature request: Two factor authentication web login. (TOTP - Time-based one-time password) I think this would benefit PAM (Pluggable Authentication Modules) authentication the routers use. For those that have no idea what I’m talking about it’s a security feature that requires you to...

This might be rather uncomfortable for the Linksys folks... Their SmartWifi solution is storing the WiFi credentials in plaintext up in their cloud servers... https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/

This had some traction over in AsusWRT-Addon's thread... I would post there, but the thread was closed. https://www.snbforums.com/threads/backdoor-in-linux-xz-utils-on-linux-distros.89469/ A couple of good write ups and analysis for this CVE are below...

Might have slipped below the radar - but Android and Routers have an issue here... https://www.top10vpn.com/research/wifi-vulnerabilities/ wpa_supplicant: CVE-2023-52160 IWD: CVE-2023-52161

Let's assume you like to rotate your WPA2 shared secret (SSID passphrase) once a year. How do you do it without downtime and with minimal fuss? Is it possible to do it without changing SSID? Here's how I do it: Start with existing SSID `wireless-net` Add new virtual SSID `wireless-net-A`...

It's found on go, but this is something of interest to many... https://rachelbythebay.com/w/2023/10/16/env/ Be safe out there...

The current firmware is using OpenSSL 1.1.1, which already ends support in September 2023. This means that it is no longer possible to get public security updates since last month. I still remember that it took about a year to migrate from OpenSSL 1.0.2 to 1.1.1 in 2019. I know there's so much...

I'm just curious, how exactly does a smart lock, or a light bulb or a smart kitchen appliance pose a threat? If you have your router properly set-up, disabled UPnP, enabled the firewall and no port forwarding, then there's no way some remote hacker can enter my home network through a security...

Hi, I need some information about how Security (CVEs) are handled in the Merlin firmware. There is a security advisory from around two weeks ago that ASUS have released to the public saying to patch the routers to the latest version of their original firmware. I have checked the details log for...

Hello all - I have multiple VPNs types going, Wireguard (via raspberry pi not via router), IPSec on RT-AX86U, and IPSec via Instant Guard -- the last two are really just me trying them out and as alternatives to Wireguard. I am running stock firmware. They all work well and as expected. What...

Topic iot devices separated from Main devices within the home, but what qualifies as Main and what qualifies as iot and how to separate them when you don't have a switch that can tag packets? I also cannot run to land cables to the router or switches that I need to as each run through the house...

Hello, I use my home network which is connected to broadband internet connection for the purposes such as streaming, financial secured web accounts, insurance secured web accounts, and health secured web accounts. More recently it seems that the streaming services that I've used a VPN are now...