It's a much better UI experience, performs better, and with better stability than most OEM firmwares, and it's open source so you can inspect/recompile the code as needed to satiate your security concerns, install arbitrary software, etc.
This is literally the first thing I do with every router I pull out of the box.
Unfortunately, ASUS's devices tend to use the Broadcom 47xx series chipsets in general, which tend to be not as well supported as newer chipset like the Atheros 7k and 9k variants, which are in most of the recommended devices these days.
I wish there was an OpenWRT firmware for my Billion 7800N. Apart from the pretty naff firmware it's an excellent router. Just wish it had OpenVPN support :\
Given the recent NSA revelations, and the various posts discussing software and hardware backdoors, this vulnerability sent me into full-blown paranoia mode.
You can't trust web service providers, you can't trust your ISP, you can't trust your gov't, you can't trust hardware providers. Jesus H. Christ, is there anything left to trust?
I'm starting to feel that by the simple act of connecting a device to the Internet I'm already compromised which makes me feel dirty.
I guess Richard Stallman isn't so crazy after all for demanding open source hardware (well, he's actually demanding 'free' hardware). I know that DD-WRT is an open source router firmware, but I'm not sure whether high-end routers support it.
I've got TomatoUSB on my Asus router. EXCEPTIONALLY powerful and stable firmware with great wireless coverage. This past weekend, pardon my humblebrag, I was able to segregate my network into separate VLANs for the home LAN, guest wireless, and a DMZ for my servers, with appropriate access ACLs (via iptables) for each. I feel very secure with this firmware, far moreso than with the Asus stock one that's for sure!
There are vulnerabilities and weaknesses in everything. Your operating system, your apartment's gate lock, your car's firmware. If you worry about things that are outside of your control you'll never stop worrying. Focus on what you have control of. Put an open source firmware on your router.
[+] [-] zdw|12 years ago|reply
http://wiki.openwrt.org/toh/start#asus
It's a much better UI experience, performs better, and with better stability than most OEM firmwares, and it's open source so you can inspect/recompile the code as needed to satiate your security concerns, install arbitrary software, etc.
This is literally the first thing I do with every router I pull out of the box.
Unfortunately, ASUS's devices tend to use the Broadcom 47xx series chipsets in general, which tend to be not as well supported as newer chipset like the Atheros 7k and 9k variants, which are in most of the recommended devices these days.
[+] [-] prawks|12 years ago|reply
http://www.polarcloud.com/tomato
http://en.wikibooks.org/wiki/Tomato_Firmware/Supported_Devic...
[+] [-] dmm|12 years ago|reply
[+] [-] robotmay|12 years ago|reply
[+] [-] draugadrotten|12 years ago|reply
[+] [-] gecko|12 years ago|reply
On the other hand, the second vulnerability listed--that UPnP is available on the @#%( WAN port--should have people incredibly upset.
[+] [-] achillean|12 years ago|reply
For comparison, there are more public UPnP services than there are HTTPS.
And as a side-note, there are also more Telnet servers than HTTPS servers by a narrow margin.
[+] [-] mikevm|12 years ago|reply
You can't trust web service providers, you can't trust your ISP, you can't trust your gov't, you can't trust hardware providers. Jesus H. Christ, is there anything left to trust?
I'm starting to feel that by the simple act of connecting a device to the Internet I'm already compromised which makes me feel dirty.
I guess Richard Stallman isn't so crazy after all for demanding open source hardware (well, he's actually demanding 'free' hardware). I know that DD-WRT is an open source router firmware, but I'm not sure whether high-end routers support it.
[+] [-] anon1385|12 years ago|reply
You forgot your compilers: http://cm.bell-labs.com/who/ken/trust.html
[+] [-] lwhalen|12 years ago|reply
[+] [-] driverdan|12 years ago|reply
[+] [-] unknown|12 years ago|reply
[deleted]
[+] [-] fulafel|12 years ago|reply
[+] [-] diminoten|12 years ago|reply
But I've got DD-WRT on there, so I'm... good to go?
uPNP has been a no-go security wise for a while now though, hasn't it?
[+] [-] zokier|12 years ago|reply
[+] [-] leeoniya|12 years ago|reply
also great: http://tomato.groov.pl/download/
[+] [-] deelowe|12 years ago|reply
[+] [-] sramov|12 years ago|reply
[+] [-] gwu78|12 years ago|reply
[+] [-] joshSimms|12 years ago|reply