• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.
  • The forums have been upgraded with support for dark mode. By default it will follow the setting on your system/browser. You may override it by scrolling to the end of the page and clicking the gears icon.

America's crackdown on open-source Wi-Fi router firmware – THE TRUTH and how to get involved UPDATED

Ferrum Master said:
The thing comes that I will take some dual port NUC(Or whatever ARM based solution... they become more and more powerful.) and turn it into a simple slackware machine...( still don't get why DDWRT is so popular as any linux does everything since dino age). In terms of power consumption the Bay Trail NUC eats even less than my current router while running 1080p kitten video due to proper p states.
Click to expand...
And you are already talking about something completely different than what the topic here is about. Building your own router at home using pfsense or something is not the same as buying an off the shelf, store bought router (and then the firmware THAT runs on). That is the purpose of what this is all about.

This could be an evolution of the wireless industry. I just hope that when they start locking these down, manufactures start embedding some of the features users seek alternatives firmware for. (Like robust VPN solutions, and hefty QOS )
 
Cybrnook2002 said:
That is the purpose of what this is all about.
Click to expand...

The name firmware is kind of screwed and it is a relic from dino age... meant for one time flashable devices. It ain't so simple as a cuckoo voiced doorbell for routers. It is a proper upgradeable OS with kernel and their driver modules. And the title contains - America's crackdown - are you serious? This just pure populism translated from a user perspective. The idea is to control untested transmitter hardware features that the FCC have not approved nor certified for the each specific device. Very noble from engineering perspective. FCC has no authority on the subject of secured bootloaders and telling how to build each device. So the idea itself is fishy.

The control is still in the hands of the manufacturer it was and will be... you don't want the upper channels? Adjust the cap in the saw filter section, and bang no more than allowed. So the all rubbish about possible software control dies instantly, you can toggle the software set amount of channels like a monkey but no signal will come in or out. You want that? You will get it. So why it is not done like that already? Because America is NOT the only country in the world obviously. And this software limitation is just a minor issue... is it locked or not. Anything made by man can be broken. Like boot loader lock for phone, it will get sued and then allowed, except for the one Cupertino located company...

And I fully agree that there are too many cheap haywire radio transmitting devices that working out of specs produces such offset radio distortion, that it causes malfunctioning to other close located devices too. Then an angry wife spanks their husband for not being reached on cell phone and cheating her. It is a good matter for a debate, and it started well, the problems will be clear and thus the compromise. FCC just does their job!

One does not care what he actually takes from the shelf, he even does not know the wifi channels exist or what DDWRT or Tomato is.

One does not care about open source as he actually don't give a damn about it as long it works. And this is valid for Billions of people.

If one does not do that, he starts to seek and question for the product he actually wants will find it no matter what usually custom serious solutions. Taking mikrotik for example or any other maker. Or builds himself or asks a specialist... using the huge arsenal of devices that are available now... no one killed GPL?
 
ill just say this
anybody that reads The Register,and believes it
is a fucking moron
 
this is being reported on way more sites than them tho
 
And I agree with you, and yes while the title of this thread is click bait, there are some concerns in this that are out in the wild RIGHT NOW. Whether we like it or not, manf's (broadcom) are already starting to tighten the strings on the boot-loader's and the security checks that firmware's are able to check via an encrypted boot-loader using a closed source executable. Once the boot-loader gets locked out, then we are in trouble. (Not sure if you read my link above in my first post, you should (was over a month ago, so not related to this thread))

And yes, that is the idea. That the majority of your business base cares less on what is happening behind the scenes of their wireless routers, as long as they work. We are but a small few (I assume) that like to go a little deeper and play around. However, we are not a "business model" and will be an afterthought when strategies get agreed on in board rooms. So, like you said, it will be down to the manf's to sort out how they want to secure their systems. But as said in the article of the OP, software methods (while popular now) are not a viable solution to the FCC's concerns. Thus introduce encryption. It's not going to be pragmatic for manf's to design radios for different country regions, it's cheaper for one radio for them all, and restricted afterwards.

I know the USA is not the world. But the reach they have is far and wide, look at the RIAA and file sharing. While these are US laws, they are now globally enforced. I would expect no different from the FCC. In the end, the FCC is not trying to be mean, they are just trying to utilize a system that works for most. That's fine for me, cause I cant use any European channels here in the US anyways, my clients don't see it. But unfortunately the way this gets enforced may have repercussions on the open source community. That's why I am sad.
 
Last edited:
Cybrnook2002 said:
That's why I am sad.
Click to expand...

There are always such things... And Broadcom had always been idiotic. Even on Raspberry Pi it took a year of begging to give them the source for videocore... No changes in years for that company.

Well the debate has started and that's not bad... a sign of democracy still. Encryption... btw modern qualcomm Snapdragon phones already encrypt driver and PNP service activities in order not to tamper them on android (Like CPU voltage scaling ramp and profile for example). So it ain't something new... just nobody shouts about that. The thing is not entirely shut, with some proper reason it can also do good. As it actually protects the device from burning down if some virus executes via root access if there is one. SELINUX shows them the door.

FCC just does what they are paid off... strange ain't it? :D
 
Can someone put this "issue" into layman's terms?
 
The issue is that the frequencies, when amplified enough interfere with weather radar that measures wind shears. Aerohive networks put it nicely there:
http://boundless.aerohive.com/technology/why-we-lost-the-weather-radar-channels.html

Simple fix is to have DFS. But many ignore that. All they need to do is use DFS and not need to worry so much, however people are like "mah frequencies" and then they want to take away a lot from many instead of a little from a few.

Also most modern routers have dedicated CPUs for the radios that can be easily locked down intead of the whole thing
 
TheMailMan78 said:
Can someone put this "issue" into layman's terms?
Click to expand...

FCC intends to make updating firmware imposable on wireless devices
Hackers find vulnerability in wireless gear that you cannot update to close / remove vulnerability
your Screwed your pwned ect
 
dorsetknob said:
FCC intends to make updating firmware imposable on wireless devices
Hackers find vulnerability in wireless gear that you cannot update to close / remove vulnerability
your Screwed your pwned ect
Click to expand...
The MFG. will be able to update the firmware I assume?
 
TheMailMan78 said:
The MFG. will be able to update the firmware I assume?
Click to expand...

Probably yes and with the same Frequency that they currently do

So that means seldom or never and yes your still Screwed unless you buy the latest newest device ( complete with undisclosed vulnerability as yet to be exploited )
And so the Circle goes around and around
 
Cybrnook2002 said:
Yep, as they will have access to the signing keys
Click to expand...
Meh. Then I don't see what the big deal is. 99.9999999% of people don't even know WTF Firmware is. That and ISP's regularly update personal routers they issue remotely. They have too, to maintain network security and avoid lawsuits from customers. This seems like another homebrew controversy that effects a minority of a minority.
 
Please tell me you are not on a hardware enthusiasts forum and ALSO have your ISP update the firmware on your ISP provided rental router. :fear:

Sigh, I guess your right. We are a minority of a minority....:ohwell:
 
Cybrnook2002 said:
Please tell me you are not on a hardware enthusiasts forum and ALSO have your ISP update the firmware on your ISP provided rental router. :fear:

Sigh, I guess your right. We are a minority of a minority....:ohwell:
Click to expand...
Sure do and don't care. What should I do DL some Linux firmware and install it on my router just to find out my ISP now wants me to pay full price for it because I might be 1 in a million of a remote hack by some ruskie and I bricked my box? The most they will get is my Company of Hero 2 saves anyway. Maybe this is a big deal but, cant see how I or any normal user should care.

Not trying to be a dick. I just cannot fathom how this will cause much of an issue.
 
Didn't mean it in a mean way (if it came out that way). Just reassures me how small the subset that would be concerned is...


Well, my concern is not over ad-hoc security patches. What I like about open source is what I listed above. My 2 x mains are Robust VPN and a hefty QOS service.

Open firmware always has many bells and whistles that network nerds drool for. You just can get that with a stock experience. (AsusWRT is close, but VPN is lacking, where RMerlin fixes it)

Sure the car will still get you from point A to point B (meaning they will work either way), but custom firmware minimizes my footprint of devices I need to be able to do what I want (on a consumer router) vs multiple devices, or custom built devices.

(Plus I find it super fun)
 
Last edited:
I'll stick with my Ubiquity ERL and AP setup then. Real router/firewall OS FTW! :rockout:

I'm sure anyone running Vyatta, VyOS, PFSense, Sophos or Untangle with an AP could really care less about this. And a majority of folks sitting on WRT routers are sitting at a stop-gap/stepping stone to a real firewalling/routing solution anyways. Maybe it's time to step up. :D

I agree with MailMan that this is really a small issue overall. I'm not at all surprised they want to stop allowing mods to occur on certified routing/wifi equipment...that is nothing new. But the more I used Tomato, MerlinWRT and DDWRT, the more it felt like a band-aid. Not only that, as he said, and is proven day after day, most users have no idea what firmware is, how to update it or are scared of their routers in the first place.

Hopefully this action will spur up more users to become familiar with running their own routers with an OS and hardware dedicated to really do the job right...granted some of it isn't simple. I have a couple of spare routers running DDWRT, and while it does add some nice functionality (where it can and when supported), it has never really been anything truly amazing. If you want better routing capabilities and to get away from this shit, get an EdgeRouter ERL or X or build your own mini-PC and slap a firewall OS on it. I couldn't be happier with my ERL, sure the GUI isn't as friendly as your local neighborhood home-grade router, between what it can do in GUI and in CLI is nothing short of amazing for a $99 router. Sure it has no wifi...use your old wifi router as an AP or buy a damn AP and be done with it. Move on, and worry not about this low-grade consumer crap in the first place.

:toast:
 
Cybrnook2002 said:
Didn't mean it in a mean way (if it came out that way). Just reassures me how small the subset that would be concerned is...
Click to expand...
The people who this effects are people who are network specialists who enjoy dicking around with web traffic in and out of a corporation or household. Uber security buffs and Linux neck beards. I'm not judging either. That means someone, somewhere has been abusing the system and the FCC now need/wants to step in and add some bureaucracy.....because that's about all that will happen. I am willing to bet NOTHING will really change in the end.
 
All enterprise grade hardware/software master race
 
yes yes
 

Attachments

Cybrnook2002 said:
What's happening now, and I have had a discussion with RMerlin about this in the XVortex thread (as that's what I am running on my R7000),is companies like broadcom will start (and are already starting) to encrypt the bootloader. So, no access to bootloader, no access to nvram, no access to opensource firmware. This is getting very similar to rooting android devices (and why you just can't on some hardware vendors ,wink wink Samsung)

Here's the thread where I started talking about it if you care to read:

3/4 of the way down the page is where it starts

Asuswrt-Merlin on Netgear R7000 - Start of Encryption
Click to expand...

Lets hope a workaround is found if this comes to pass.

Merlin's firmware's are outstanding as aslong as you take asus proprietary stuff out of it like AI cloud etc we should be allowed to load them on routers that support open source firmware.

On a side note Cybrnook what kind of cpu temps are you seeing on your R7000?
 
Makaveli said:
Lets hope a workaround is found if this comes to pass.

Merlin's firmware's are outstanding as aslong as you take asus proprietary stuff out of it like AI cloud etc we should be allowed to load them on routers that support open source firmware.

On a side note Cybrnook what kind of cpu temps are you seeing on your R7000?
Click to expand...
Typical temps, never been an issue. Nice and sturdy :-)

R7000.png

 
Cybrnook2002 said:
Typical temps, never been an issue. Nice and sturdy :)
Click to expand...

Nice

These are my current temps.

Its the end of the summer beginning of fall in Canada so ambient temps will be going down as winter comes.

Based on what I've read these are normal temps for the broadcom chips.

2w2kep3.png


I've seen some people replace the thermal paste while others have added laptop coolers to reduce temps.

The Enthusiast in me wants to try something similar

http://www.newegg.ca/Product/Produc...3&cm_re=laptop_coolers-_-34-992-853-_-Product


hmm...
 
Is it why DD-WRT website is not working anymore? Tried for a week to open it but seems to not find it anymore on the net.
 
You must log in or register to reply here.
Back
Top