Comment openwrt? dd-wrt? More secure?! (Score 1) 197
Users who replaced their TP-Link firmware with Open/DD-WRT firmware can sleep well.
On what basis?
On the basis of the security updates that occur, every single time a kernel or userland vulnerability is discovered?
I have yet to see a security release for DD-WRT. I see updates, randomly, which have nothing to do with security issues. Certainly the stable branches of both projects releases rarely.
Note, I'm not faulting these guys -- these are nice firmwares. However, to think that they are somehow more secure, when they fall prey to the same problem -- THAT IS, NO UPDATES DUE TO SECURITY ISSUES, is strange. These firmwares are just as insecure as stock firmwares.... in fact, likely MORE insecure, because what stock firmware has SSH exposed? Or other userland tools exposed?
Stock firmwares seldom have fluff modz, whereas one of the strengths of DD-WRT and others is to expose these services on user request.
If I look at
Where were the automatic, day-of-announcement updates for DD-WRT? OpenWRT? Until these tools incorporate Debian (or other copycat distros) updates with tools like apt-get, these things are WORSE than standard router firmwares.
What we need is to standardize these router firmwares on something like Debian.