[clug] ADSL Routers

Sam Couter sam at couter.dropbear.id.au
Mon Apr 21 10:50:47 EST 2003


Brian Morris <brian at netspeed.com.au> wrote:
> Firstly - if you budget can reach it buy a modem/router - the router part is
> worth its weight in gold.  If you can also get a router with a built in SPI
> firewall (not just NAT)  then that is even better.

I'll just butt in here and say "Don't do that!". The two-bit network
stacks in these pieces of crap aren't worth the electrons they're
implemented with. Every week another notice hits BugTraq about another
vulnerability in the various ADSL routers around the world. Some
manufacturers don't even release firmware updates for their
known-vulnerable products, and keep selling the vulnerable products.

Do yourself a favour and get a P100 or even a 486 with two or more network
cards. Run Linux or OpenBSD depending on your paranoia level. Then you
have easy updates when vulnerabilities are found (which is far rarer
than they're found in ADSL routers anyway) *and* you have the added
advantage of running the publically available code you know and love.
-- 
Sam "Eddie" Couter  |  mailto:sam at couter.dropbear.id.au
Debian Developer    |  mailto:eddie at debian.org
                    |  jabber:sam at teknohaus.dyndns.org
OpenPGP fingerprint:  A46B 9BB5 3148 7BEA 1F05  5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/linux/attachments/20030421/30e8a51c/attachment.bin


More information about the linux mailing list