this post was submitted on 19 Aug 2024
186 points (97.4% liked)

politics

19103 readers
3386 users here now

Welcome to the discussion of US Politics!

Rules:

  1. Post only links to articles, Title must fairly describe link contents. If your title differs from the site’s, it should only be to add context or be more descriptive. Do not post entire articles in the body or in the comments.

Links must be to the original source, not an aggregator like Google Amp, MSN, or Yahoo.

Example:

  1. Articles must be relevant to politics. Links must be to quality and original content. Articles should be worth reading. Clickbait, stub articles, and rehosted or stolen content are not allowed. Check your source for Reliability and Bias here.
  2. Be civil, No violations of TOS. It’s OK to say the subject of an article is behaving like a (pejorative, pejorative). It’s NOT OK to say another USER is (pejorative). Strong language is fine, just not directed at other members. Engage in good-faith and with respect! This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban.
  3. No memes, trolling, or low-effort comments. Reposts, misinformation, off-topic, trolling, or offensive. Similarly, if you see posts along these lines, do not engage. Report them, block them, and live a happier life than they do. We see too many slapfights that boil down to "Mom! He's bugging me!" and "I'm not touching you!" Going forward, slapfights will result in removed comments and temp bans to cool off.
  4. Vote based on comment quality, not agreement. This community aims to foster discussion; please reward people for putting effort into articulating their viewpoint, even if you disagree with it.
  5. No hate speech, slurs, celebrating death, advocating violence, or abusive language. This will result in a ban. Usernames containing racist, or inappropriate slurs will be banned without warning

We ask that the users report any comment or post that violate the rules, to use critical thinking when reading, posting or commenting. Users that post off-topic spam, advocate violence, have multiple comments or posts removed, weaponize reports or violate the code of conduct will be banned.

All posts and comments will be reviewed on a case-by-case basis. This means that some content that violates the rules may be allowed, while other content that does not violate the rules may be removed. The moderators retain the right to remove any content and ban users.

That's all the rules!

Civic Links

Register To Vote

Citizenship Resource Center

Congressional Awards Program

Federal Government Agencies

Library of Congress Legislative Resources

The White House

U.S. House of Representatives

U.S. Senate

Partnered Communities:

News

World News

Business News

Political Discussion

Ask Politics

Military News

Global Politics

Moderate Politics

Progressive Politics

UK Politics

Canadian Politics

Australian Politics

New Zealand Politics

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] CharlesDarwin@lemmy.world 19 points 3 months ago (6 children)

What routers are trustable?

[–] assassinatedbyCIA@lemmy.world 35 points 3 months ago (1 children)

Whatever one the NSA has compromised

[–] queue@lemmy.blahaj.zone 13 points 3 months ago

American Alphabet Soup backdoors good, Non-American Alphabet Soup backdoors bad.

We could just ban the idea "companies that have open vulnerabilities for corporate and government use" but that would benefit every citizen of every nation, so no.

If there's a backdoor for the FBI, there's nothing to stop Russia and China to also not use it. Same for a Chinese backdoor, nothing to prevent America from figuring it out. It's why China bans American companies, and we're phasing out Russian and Chinese companies.

It's impossible for an open door to know who's using it, and keys for a closed one can be copied and leaked. The safest way to garuntee noone else uses a backdoor, is to not have a backdoor.

[–] AnarchoSnowPlow@midwest.social 11 points 3 months ago (1 children)

If you're not afraid of picking up a wrench yourself:

I just switched to an OPNSense router on protectli hardware.

You don't have to use something like that to use OPNSense though, you can just put it on nearly any old machine with a couple of nics. The out of the box config isn't terrible and you can find a ton of guides on how to set yourself up securely.

[–] CharlesDarwin@lemmy.world 1 points 3 months ago

Any of this work on mesh systems?

[–] Hazzia@infosec.pub 4 points 3 months ago

I use Linksys myself as I originally heard that they're pretty up there in security, but I've heard from a few people that they're not as good as they used to be. I'm only a cybersec hobbiest and haven't been a customer for long, so I couldn't tell you much more.

[–] spaghettiwestern@sh.itjust.works 4 points 3 months ago* (last edited 3 months ago)

I've been using DD-WRT for many years and just moved to OpenWRT. Although there have been various generic vulnerabilities that effected all IP devices and needed to be patched on these platforms too, I can't remember a single vulnerability that was specific to either DD-WRT or OpenWRT.

[–] Ansis100@lemmy.world 3 points 3 months ago (1 children)
[–] Andromxda@lemmy.dbzer0.com 1 points 3 months ago

+1 for MikroTik, they're based in the EU (Riga, Latvia to be precise) and have a really good reputation. And they're really cheap, while offering many features that can otherwise only be found on Cisco enterprise equipment.

[–] Andromxda@lemmy.dbzer0.com 1 points 3 months ago* (last edited 2 months ago)

The ones that you build yourself and load with free & open source software. Basically any x86 PC or even ARM SBCs like the Raspberry Pi can work as a router, as long as you have 2 separate network interfaces. There are quite a few FOSS router/firewall operating systems like OpenWRT, dd-wrt, pfSense and OPNSense (my personal favorite). If you don't want to do this yourself, there are companies like Protectli that offer dedicated pre-built hardware that's ensured to be compatible with pfSense/OPNSense and comes Coreboot pre-installed.