Router Security Website Change Log Website by     
Michael Horowitz 
Home | Site Index | Bugs | News | Security Checklist | Tests | Resources | Stats | About | Search |
See my June 17th blog: Debunking the New York Times on Router Security and VPNFilter
 

Changes made to this website

September 2018

September 20, 2018: Updated Gryphon router summary on the Resources page.

September 20, 2018: Minor changes to the page on configuring the Pepwave Surf SOHO router

September 18, 2018: After all this time, I added a new security suggestion to the long list on the home page - use a clean browser session.

September 17, 2018: Updated WPA2 Enterprise section on the WPA and WEP page to note that IoT devices may not support WPA2 Enterprise.

September 14, 2018: Minor update to Turris Omnia page about the lights

September 8, 2018: Updated the mesh router page to note that Eero, Gwifi, Velop and AmpliFi do not support WPA2 Enterprise. Also added a section on WPA2 Enterprise the WPA and WEP page. Added a mention on the Surf SOHO page that it supports WPA2 Enterprise.

September 7, 2018: Added two stories to the News page

September 3, 2018: Yet another botnet added to Router News page

September 2, 2018: Updated the bandwidth monitoring screen shots on the Pepwave Surf SOHO page.

August 2018

August 31, 2018: The first two routers that you can talk to were just announced. Updated the Introduction page with a link. Also updated the Surf SOHO page to add that it does monthly bandwidth allowance tracking for an Internet/WAN connection.

August 30, 2018: Updated the Pepwave Surf SOHO page to note that it can now create 16 SSIDs. The old limit was 3.

August 25, 2018: Updated the Pepwave Surf SOHO page to add that it scores well on BufferBloat at DSL Reports.

August 22, 2018: Updated the section on port scanning the WAN interface of a new router on the New Router page.

August 21, 2018: Added a News story that broke a couple weeks ago while I was on vacation. Its much ado about nothing - a new way to crack WiFi passwords. Updated the Pepwave Surf SOHO page to note that fix is finally available for the problem connecting to modems.

August 20, 2018: Expanded the Detecting WPS section of the WPS page, again.

August 19, 2018: Updated the Router News page with a story of the NSA using hacked routers to copy VPN traffic. Expanded the section on Detecting WPS on the WPS page.

August 18, 2018: Updated the WPS page to add that on macOS, WiFi Explorer detects wireless networks that support WPS.

August 17, 2018: Updated Pepwave Surf SOHO page, they do support dynu.com for DDNS. Added pcWRT router to Resources page.

August 16, 2018: Added another gripe about consumer routers. From September 2017 by Robert K. Knake

August 15, 2018: Multiple bugs in multiple TP-Link Wi-Fi Extenders added to the Bugs page

August 14, 2018: Minor updates to the Pepwave Surf SOHO page. Added a Cisco VPN bug from Jan. 2018 to the Bugs page.

August 12, 2018: Added a story about D-Link routers hacked to changed DNS servers to the News page. Added www.whatsmydnsserver.com to the DNS server tester pages on the Test Your Router page.

August 3, 2018: Added a WPA3 topic to the WPA2, WPA, WEP encryption page.

August 2, 2018: Added a new Gotcha section to the IP Addresses page (thanks to reader feedback).

August 1, 2018: A new thing here; some good news. Added note about a new OpenWRT release to the News page. And, added a story about MikroTik routers being hacked at ISPs.

July 2018

July 28, 2018: Added suggestion to turn off QoS to the Turn Off Stuff page as per an article about Netgear routers. Added a couple articles to the Modems page about modems with buggy Puma6 chipsets.

July 24, 2018: More router attacks added to the Router News page

July 22, 2018: Added Intel AMT bugs as another VLANs in the News story to the VLAN page

July 19, 2018: More gripes about the Google Wifi mesh system. New Avira router security product added to News page. A Russian bank lost almost a million dollars due to an outdated router - added to News page.

July 12, 2018: Added a story to the Router News page, a Netgear router hack of FTP led to the leaking of military documents. Added a Juniper bug to the Bugs page.

July 11, 2018: Added a summary of a Linksys Velop review to the Mesh Routers page.

July 8, 2018: Added a VLANs in the News story to the VLANs page. Added new bug fixes to the Bugs page for ADB routers and gateways.

July 7, 2018: Updated text for disabling UPnP on home page. Added a link to the ShieldsUP! UPnP tester to the home page. Added other secure router suggestions to the home page. Added DrayTek as a close competitor to the Surf SOHO router on the Surf SOHO page.

July 5, 2018: Added a link on the home page to my presentation on Router Security from October 2017. Minor tweaks to the home page.

July 4, 2018: Another story about routers being abused in DDoS attacks added to News page.

July 2, 2018: Added note about a future update to the page on configuring the Surf SOHO router

June 2018

June 30, 2018: Added link to Symantec VPNFilter tester page to the Router News page.

June 28, 2018: Updated the Turris Omnia page. Updated the Bugs page with a response from Vilfo to a review of their VPN router.

June 26, 2018: Updated the Turris Omnia page. This will be happening often, each update may not get mentioned here.

June 25, 2018: Linked to a slew of new Netgear patches on the Bugs page. Added a new DNS rebinding attack as another VLANs in the news story to the VLAN page. Updated the Turris Omnia page.

June 24, 2018: Added the Fortigis security device and the Beam router to the Resources page.

June 23, 2018: Added a new page on the Turris Omnia. Not much there, yet.

June 22, 2018: Added comments on the lights of the Surf SOHO router to the And section of its page. Added a gripe about firmware updating a TP-Link access point to the Firmware Update page.

June 21, 2018: Minor update to the section on buying the Pepwave Surf SOHO on its page. Minor update to my recommendation for it on the home page.

June 20, 2018: Added story about D-Link DSL gateways being hacked by the Satori botnet to the Router News page and the Bugs page. Added two new TCP ports to the Tester page because they are used by the latest update to the Satori botnet. Added link to emulator for Turris routers to the Resources page.

June 19, 2018: Minor updates to the Other Gripers page, Bugs page and the Resources page.

June 16, 2018: Added some known modem flaws to the Modems page. Added an eero article to the Mesh Routers page.

June 15, 2018: Added a Router News story about a hacked MikroTik router serving as Command and Control. Also added survey results from Rapid7 showing 453,000 routers with an open Telnet port.

June 14, 2018: Updated the What Can Go Wrong page to include a couple tricks from the VPNFilter malware.

June 11, 2018: Added Recon Sentinel to the list of security devices that be added to a network on the Resources page

June 9, 2018: Updated the beginning of the Surf SOHO Initial Configuration page.

June 8, 2018: Added lots of Cisco bugs to the Bugs page. Coverage of VPNFilter on the news page has been updated a few times the last few days. Added the Netgear R6400 to the list of self-updating routers on the Resources page and the Self Updating Firmware page.

June 2, 2018: Update VPNFilter coverage on the Router News page. Added a test of port 2000 to the Test Your Router page, for VPNFilter which uses it to attack Mikrotik routers. Updated the Firmware Updates page to add the issue of re-installing the same firmware on top of itself - thanks to VPNFilter.

May 2018

May 30, 2018: Better late than never, added coverage of VPNFilter router malware to the News page.

May 29, 2018: Updated the What Can Go Wrong page to add that a router can be permanently disabled by malware, as seen with VPNFilter. More funny Wi-Fi network names added the to the SSID page.

May 28, 2018: Updated the Pepwave Surf SOHO to note that it was resistant to the VPNFilter malware.

May 27, 2018: Updated the avoiding ISP hardware page to mention how Verizon used WEP years after it was know insecure and the FTC went after them in 2014 (and did nothing in the end).

May 26, 2018: Added two more reasons for Comcast customers not use their equipment to the avoiding ISP hardware page. Also added Comcast leaking customer info to the bugs page.

May 24, 2018: Added D-Link router bugs found by Kaspersky to Bugs page

May 22, 2018: Added to the bugs page that British ISP Talk Talk routers are vulnerable to WPS pin code attacks

May 21, 2018: Added flaw in DrayTek routers to both the bugs page and news page. Added WICKED botnet to the news page and updated the Test Your Router page with tests for ports 8443 and 8080 that it attacks.

May 18, 2018: New section on the Resources page for Supposedly Secure routers, those marketed based on their security features

May 17, 2018: Another set of bugs in Cisco software including three critical ones, added to the Bugs page

May 15, 2018: Added article by Imperva to Router News page about UPnP being abused in a new way

May 14, 2018: New article on router security for train operators add to the Other Router Security Advice page. New bugs in Sierra Wireless routers added to the bugs page.

May 12, 2018: Added the suggestion to periodically reboot a router as a way of removing malware to the home page.

May 11, 2018: Updated the Router News and Router Bugs pages. Updated the Resources page to add F-Secure SENSE being offered to router vendors to integrate into their routers.

May 10, 2018: Redid the opening section of the Introduction to Routers page.

May 8, 2018: There is no end to bad articles about router security. Added another to the Other Router Security Advice page. Also updated the firmware update advice on the home page.

May 7, 2018: Not wanting to promote bad articles about router security, the Other Router Security Advice page no longer links to the worst articles, just lists the URL in plain text instead.

May 2, 2018: Added a new bug report that a million routers are vulnerable to two different flaws. Also a new article on hacking MikroTik routers added t o the bugs page.

April 2018

April 30: Added a router in the news story, added a VLAN in the news story to the VLAN page and added another griper to the Other Gripers page. Added an article about being victimized by malicious DNS servers to the What can go wrong page.

April 29: Updated Mesh router page with more details on the downside of cloud based management and a link to an article about evaluating mesh router systems. Added a networking quiz at the bottom of the VLAN page.

April 26: Apple finally came clean and admitted they don't make routers any more. Added to news page. Added two TP-Link bugs to the Bugs page, one from this month, the other from Oct. 2017.

April 25: Added new flaw with ZTE routers used by British ISP Hyperoptic to the Bugs page. Added changing LAN side IP address of the router to the home page. Added more funny SSIDs to the SSID page.

April 24: Added info about a Wi-Fi slowdown bug to the Surf SOHO page

April 23: Updated news page story on UPnProxy, yet again

April 22: Updated news page story on UPnProxy

April 21: Added note about stolen Peplink routers to the Surf SOHO page. Added note about registering a new Peplink router with InControl2 to the setup page for the Surf SOHO. Added a new potential downside to the Surf SOHO page that involves Wi-Fi speed. Added TP-Link Guest Wifi networks to the VLAN page.

April 18: Moved some coverage of router exploitations from the Bugs page to the Routers In The News page. In the page on initial configuration of the Surf SOHO, I added a paragraph about connecting it to an existing router/gateway.

April 16: Updated the What Can Go Wrong page and added two stories about router hacking to the Routers In The News page

April 15: Updated the SSID page and added a news story about the Boston Red Sox. Also updated the VLAN page with more on VLANs that allow the fish to see each other.

April 13: Minor changes to the home page and a new Routers in the news story from The Register

April 12: Added a Router News story about a Chinese city where shops are forced to use government approved routers. Added Nirsoft DNS Query Sniffer as a tester for DNS leaks when using a VPN.

April 11: New web page devoted to Routers in the News. Huge clump of Cisco bugs and attacks on Cisco devices added to the Bugs page. Added TCP port 2000 to the Tester page. And, due to these Cisco bugs, added TCP port 4786 and UDP port 18999 to the Tester page.

April 10: Added the GL.iNet GL-AR750 as a VPN client router on the Resource page

April 6: Added router security gripes by Kirill Shipulin of Positive Technologies to the Other Gripers page

April 2: Modified the Surf SOHO page to note that both OpenVPN client and server are coming to Peplink routers. Also added that the router can easily block all domains that end with "cm" and noted the problems it sometimes has connecting to Arris cable modems.

March 2018

March 29: Added ip.voidsec.com as a WebRTC tester to the Test Your Router page

March 26: Improved the first two paragraphs of the Test Your Router page

March 24: On the Resources page, brought the info on InvizBox up to date

March 21: Added Vilfo router security issues to the bugs page. Also added a Symantec report about UPnP flaws still being abused by bad guys all these years later. Updated the introduction to routers page with a new introduction.

March 20: Add new Vilfo VPN client router to the Resources page

March 18: Updated the WPS page to include a push button attack from the kid next door.

March 17: Changed text on the home page in a number of areas. Added warning about buying used routers. Added a US Government report to the What can go wrong page.

March 16: The bugs page was getting too big, so bugs from 2016 have been moved to their own page.

March 15: There seems to be a rash of DNS hijacking of Asus routers. Added to bugs page.

March 10: Modified the Surf SOHO page and the page on initially configuring it, to clear up confusion about uBlock origin and disabling Wi-Fi.

March 9: Added spyware operation that abused MikroTik routers to the bugs page. Minor additions to the Surf SOHO page. Also updated the Other Gripers page with a couple new quotes.

March 2: Added a new Additional Thoughts section to the home page. Also updated the What Can Go Wrong page with a story aobut routers that were hacked last month at the Olympics.

February 2018

Feb 26: Updated the Downsides of the Surf SOHO with screen shots of Bandwidth Control. Also updated the Resources page to note that Gryphon routers just started shipping.

Feb 25: Added Avira SafeThings to the Resources page in the Coming Soon, Maybe section

Feb 24: Revised the last section of the Pepwave Surf SOHO page, the one about stepping up to higher end Peplink routers.

Feb 23: Revised the intro to the VLAN page (yet again) and the new Shodan page. Intros are hard.

Feb 21: Added a new Shodan Query my Router page

Feb 20: Added two screen shots and made some minor text changes to the Surf SOHO Initial Configuration page.

Feb 19: Revised the intro to the VLAN page

Feb 18: Re-wrote the Ethernet Port section of the VLAN page.

Feb 16: Another bug - Dasan refuses to fix its buggy router

Feb 14: Added a minor Asus router bug from the end of January

Feb 11: Added Netgear router bugs to the bugs page.

Feb 9: Major update to the Consumer Routers page. Also, a major revamp of the home page.

Feb 8: The experience using Google Wifi keeps getting worse.

Feb 7: Added a VLANs In The News story to the VLAN page. Added Synology to the Firmware Self Updating page.

Feb 6: More proof that routers include old open source components with know security flaws was added to both the bugs and consumer router pages. Also added an article to the Other Security Advice page. At the bottom of the VLAN page, linked to a similar scheme done with Ubiquiti hardware.

January 2018

Jan 27: A total re-write of the IP Addresses page

Jan 23: Added two bugs to the bugs page and tests of UDP port 9999 for Asus routers to the Test Your Router page.

Jan 22: A number of updates to the Other Router Security Advice page

Jan 14: Added a new section to the Resources page for Add-on Security via Router Firmware

Jan 13: Added article about defaced MikroTik and Ubiquiti Routers to the bugs page.

Jan 4: Updated the Other Router Security Advice page with links to two good articles written yesterday. Updated the VLAN page with a paragraph on Sonos speaker isolation and a Total Reverse topic.

Jan 2: Added an explanation of Access vs. Trunk Ethernet ports to the VLAN page.

Jan 1: Created a new Other Router Security Advice page. This used to be a section on the Resources page.

December 2017

Dec 31: Added note to the About page that the site just had its 2 millionth page view. Go figure.

Dec 30: Yet another update to the introductory section of the VLAN page.

Dec 26: Added bug in the GoAhead web server to the Bugs page.

Dec 23: Big update to the introductory section on the new VLAN page.

Dec 19: Assorted minor updates to the new VLAN page.

Dec 15: New page devoted to VLANs. Moved VLAN discussion from the Surf SOHO page and expanded it.

Dec 14: Updated the WPS page with more bad news about WPS and the AmpliFi mesh router. Added Fingbox to the list of Add-on Security Devices in the Resources page.

Dec 12: Updated the WPS page with a Netgear KB item on defending against WPS.

Dec 6: Added this to the bugs page: A botnet spreads by attacking un-named flaws in Huawei Home Gateways. Also updated the Test Your Router with tests for the TCP ports (37215 and 52869) used by Satori botnet that abuses Huawei routers.

Dec 3: Added a non security section to the mesh routers page.

Dec 2: Added a full list of recent Netgear patches to the bugs page.

November 2017

Nov 29: Added to the bugs page, reports of a new botnet attacking ZyXEL routers

Nov 25: Completely redid the Firewall topic (item 10) on the Security Checklist page.

Nov 24: Revised the Port Scanning section of the Setup a New Router page and added a new Open Wi-Fi Network Testing section to it.

Nov 21: Added a few brief notes about the TP-LINK Deco M5 to the Mesh Routers page.

Nov 20: Added a summary of a blog about TP-Link firmware rollouts in Europe to the bugs page.

Nov 17: Added a gripe about AmpliFi to the mesh router page and the firmware self updating page. Also added F-Secure Sense and Fingbox to the firmware self-updating page.

Nov 16: More gripes about the Google Wifi app added to the Google Wifi page. The more I use the app, the less I like it.

Nov 15: Added a new section to the Pepwave Surf SOHO page with details on the three hardware editions of the router.

Nov 13: Added some notes about Asus Lyra to the Mesh Routers page and the WPS page

Nov 8: Site search now uses DuckDuckGo. Previously used Google.

Nov 7: Added a bug from June 2017 with EnGenius routers sharing files on USB attached storage.

Nov 6: Great quote about why routers are not secure was added to the Other Gripers page. "... the real goal is that the dumbest person who opens the box be able to connect to the internet without them paying a tech support person for an hour to help you on the phone"

Nov 4: Added more proof to my argument about avoiding ISP hardware. A presentation at DEF CON 25 (summer 2017) where researchers found 26 bugs in assorted ISP provided devices. Updated the firmware self-updating page with the latest audit of eero and some minor editing changes.

Nov 3: Netgear Orbi does not self-update. My bad. Its been corrected on the Resources page. Also, minor changes to the "Secure Router Configuration in Detail" section on the home page. And new colors for the home page stripes. The orange was just too much.

Nov 1: I spoke about Router Security at the O'Reilly Security Conference today and added a link to a PDF of the slides to the home page.

October 2017

Oct 28: Added that ESET thinks ISPs are helping install malware to the ISP Routers page.

Oct 27: More Netgear bugs added to the bugs page along with Dnsmasq. Added another griper complaining about the bad state of consumer router security.

Oct 26: Minor revision to the Setup a New Router page and some hard stats on brute forcing passwords added to the WiFi Encryption page

Oct 25: Minor revisions to the SSID page.

Oct 24: Another bug and an eero warning on the Mesh Router page.

Oct 23: Added KRACK flaw in WPA2 to bugs page.

Oct 18: Added wired bandwidth testing of the Pepwave Surf SOHO.

Oct 14: Added a section on Guest Networks to the Setup a New Router page.

Oct 13: Added info on warranty and InControl2 to Pepwave Surf SOHO page. Lots of changes to the New Router page.

Oct 12: Updated the nmap commands on the Setup a New Router page.

Oct 9: Added topic of blocking internal-use-only IP address to the And... section of the Pepwave Surf SOHO page. Also, other minor tweaks to the page. Added to the WPS page that AmpliFi only supports push button WPS.

Oct 7: Minor updates to the Surf SOHO page

Oct 6: Updated the Firmware Update history section of the Firmware Updates page to include Synology, Eero and Peplink. Also updated the Security Checklist to add locking out IP addresses after too many failed logon attempts.

Oct 4: Updated the More Horsepower section of the Pepwave Surf SOHO router page and added link to test drive the Peplink web UI.

Oct 3: Lots of minor updates to the Pepwave Surf SOHO page, including screenshots of scheduling SSIDs and DSL/cable optimization.

Oct 1: Minor updates to the Pepwave Surf SOHO page, including purchasing info.

September 2017

Sept 24: Added link to the Network Port Checker and Scanner Tool from ipfingerprints.com to Test Your Router page

Sept 18: Updated information on the F-Secure Sense router on the Resources page.

Sept 16: Added ArmorVPN to the Coming Soon Maybe section of the Resources page.

Sept 15: Added a clump of 3 D-Link router bugs and a group of 3 Netgear router bugs to the router bugs page. Then too, Netgear routers are being abused via an old bug for credential stuffing. Updated the Test Router page to note that web based DNS server tests may not be reliable after a router has been hacked. The Resource page now links to a router security article by Trend Micro. Minor updates to the What can go wrong page and IP address page.

Sept 14: Updated the intro to the bugs page and added the ability to display ALL bugs on one page

Sept 13: Added a Closest Competition section to the Pepwave Surf SOHO page.

Sept 12: Added some observations (all bad) about the Google Wifi app to the Google Wifi page.

Sept 9: Added three security flaws in ARRIS TG852G gateways from July 2012 to the bugs page. Also added a 2013 router bug. Updated the modem tests on the Test Your Router page. New current bug in D-Link routers added.

Sept 6: Lots of changes to the home page. The short checklist is shorter, the long checklist is longer.

Sept 3: Updated the new router page

Sept 2: Updated the bugs page April 2017 section on the bug in Intel Puma chipsets in some modems that generated a lawsuit against Arris and Netgear. The flaw affects more Intel puma chipsets than first suspected. Also added new flaws in AT&T Arris gateways that were discovered by security firm Nomotion. Updated the router test page to include TCP ports 22 and 49152 which may be open on AT&T provided devices.

August 2017

Aug 20: Added a Juniper router flaw to the bugs page

Aug 19: New flaw in Cisco routers using SNMP added to bugs page.

Aug 17: Minor update to the firmware self-updating page to add bricked smart locks.

Aug 15: Minor updates to Eero and Google Wifi on the Firmware self-updating page.

Aug 12: Updated the WPS page to note that Ubiquiti AmpliFi now supports WPS and you can not disable it. Bad.

Aug 9: Many minor changes to multiple pages, including the Security Checklist and Pepwave Surf SOHO pages.

Aug 2: Updated Gryphon and Betterspot info on the Resources page. Also added Karma Black to the page as a Coming Soon, Maybe router. Minor updates to home page security cheat sheet.

July 2017

July 31: Updated eBlocker description in the Resources page.

July 29: The website was made secure. All HTTPS all the time. So long HTTP.

July 22: Added info on Netgear spying on their routers to the bugs page and page arguing not buy a consumer router.

July 15: Updated the Mesh Routers page to add that the Eero app shows a list of recently connected devices.

July 14: Two changes to the Resources page. Added DNSthingy as a consumer router alternative. Added more space between bullet list items.

June 2017

June 23: Lots of updates to the explanation of how to update the firmware on the Surf SOHO at the bottom of the Firmware Updates page.

June 19: A small revision to the Guest Network section of the Pepwave Surf SOHO router page. Also, updated the Firmware Updates page with screen shots of updating the Surf SOHO firmare.

June 17: A large revision to the Guest Network section of the Pepwave Surf SOHO router page

June 16: Updated the bugs page and the What can go wrong page with information about the WikiLeaks reports of the CIA hacking routers for many years.

June 10: Updated the bugs page with flaws in multiple old WiMAX routers.

June 7: Updated Turris Omnia info on the Resources page.

June 6: Updated the bugs page with details of flaws in Peplink Balance routers running firmware 7.0.0.

June 6: Updated the home page to add that I will be speaking about Router Security at the O'Reilly Security Conference.

June 5: Updated the DNS server section of the Test Your Router page with revised comments and added the ExpressVPN tester.

June 2: Dojo was finally released. Updated the Resources page with the latest info.

May 2017

May 31: Updated Resources page to note that myopenrouter.com is a great match for open source firmware on Netgear routers.

May 23: Big revision to the Guest Network section of the Pepwave Surf SOHO router page

May 14: Minor improvement to the Pepwave Surf SOHO router page explanation of current bandwidth reports.

May 8: Minor changes to the Tester page. Added my blog about my Google Wifi router updating its firmware to the Google Wifi page and the Resources page. Added info on current bandwidth display to Pepwave Surf SOHO page.

May 5: Added info on the Pepwave Surf SOHO sending emails to notify about errors.

May 4: Added lots of bugs to the bugs page. Also added item 30 the security checklist page, that it may be best to avoid Asus routers with Trend Micro software included as part of the firmware.

April 2017

April 27: Big update to the WPS page with details on which mesh routers support WPS and which do not. Also, added a bug in cable modems using the Intel Puma 6 chipset to the bugs page. And, the bugs page was getting pretty big, so bugs from 2015 no longer display by default.

April 26: Removed the Routers 4 Dummies page and replaced it with a new Mesh Routers page. Roughly the same topic, but greatly revised content.

April 26: Two updates to the Firmware self-updating page. A note from Eero about how quickly they roll out firmware updates and a claim by Google to have a single web page with their full firmware release history.

April 24: Added a new Site Index page

April 21: More bugs, ten to be exact, in 25 different Linksys routers added to the bugs page

April 11: Added bugs in four different travel routers to the bugs page.

March 2017

March 30: Lots of updates to the WPS page.

March 29: New page on WPS, Wi-Fi Protected Setup.

March 26: Added point that each VLAN can use different DNS servers to the Surf SOHO page.

March 19: Added two bugs in GLi routers to the bugs page. They have been fixed.

March 18: Three new bugs in D-Link routers added to the bugs page

March 16: Added a Ubiquiti Networks flaw to the bugs page.

March 10: Another griper added to the Other Gripers page. Added a test for TCP port 10554 to the Test Your Router page in response to flaws in video cameras.

March 8: Added a section on UPD Port testers to the Test Your Router page.

February 2017

Feb 28: Added an article about dealing with a hacked router to the bugs page and the Consumer Routers page. Also updated the Test Your Router page to note that if you see ads on this website, then the router you are connected to has been hacked.

Feb 25: Added a bug in two TP-Link routers to the bugs page.

Feb 24: Added some observations after living with eero to the Firmware Self-Updating page. Nothing good.

Feb 22: Added link to an article about Spectrum/Time Warner Cable/Charter cheating their customers and being sued in New York State to the ISP Routers page.

Feb 21: Added a link to Security Router from Halon Security to the Resources page

Feb 20: Added Flter secure router to the Resources page. When released, it will offer both Tor and a VPN client.

Feb 18: Added two things to the Firmware Self-Updating page: details provided by Google on how their Google Wifi routers self-update and tracking of the eero automatic firmware installation. So far, 11 days and no automatic update to an eero system.

Feb 15: Revised the Security Checklist for automatically updating router firmware. Called out three companies for being cowards for not explaining the details of their firmware auto-update system.

Feb 13: Updated the Security Checklist page with info on vouchers offered on UniFi Guest Wi-Fi networks. Added more funny Wi-Fi network names to the SSID page.

Feb 9: Added two more stats pages. The main menu goes to a new page that offers two types of stats: long term only or both long term and short term. The latter page is new.

Feb 8: Added two more printer related ports (515, 631) to the Test Your Router page.

Feb 7: Added a new page with home grown site stats. Linked to it in the main menu replacing the little populated Reviews page. Approaching one million page views (961,500) since the site went live.

Feb 6: Added a test for TCP port 9100 (used by printers) to the Test Your Router page.

Feb 5: Added a new page on Routers with Self Updating Firmware that details how Linksys compares to my security checklist.

Feb 2: On the resources page, modified the list of Linksys self-updating routers to note that all of their "Smart-Wifi" branded routers can self-update.

January 2017

Jan 30: Added yet another Netgear router bug to the bugs page

Jan 29: Added another IPv6 tester site to the Test Your Router page: test-ipv6.com from Jason Fesler. Also improved the explanation of UPnP on that page and added a menu to it.

Jan 28: Added two tester sites to the Test Your Router page: ipv6leak.com tests for IP version 6 and dnsleak.com tests for leaking DNS servers

Jan 22: Added two new sections to the New Router page: Port Scanning and Extra Credit.

Jan 19: Added Android malware that attacks TP-Link routers in China to the bugs page.

Jan 18: More router bugs, this time with ZyXel and Billion routers in Thailand. Also added quote from Bruce Schneir on how government regulation is the only solution to router and IoT security to the Other Gripers page.

Jan 14: Added info about FTC lawsuit against D-Link for insecure routers and cameras to the bugs page

Jan 13: Updated the WiFi Encryption page

Jan 6: Assorted updates to the Pepwave Surf SOHO page.

Jan 3: Updated page on Google Wifi/OnHub routers. Added Google custom search of this site. My first crack at this, we'll see how it holds up...




Top 
This page was last updated: September 21, 2018 4PM CT     
Created: November 21, 2015
Viewed 15,552 times since November 21, 2015
(15/day over 1,040 days)     
Website by Michael Horowitz      
Feedback: routers __at__ michaelhorowitz dot com  
Changelog
Copyright 2015 - 2018