Menu
What's new
By:
Filters Better Search

Recent content by gLWxSJeSsEA

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. G

    [Beta 384/NG] Asuswrt-merlin 384.4 Beta is now available

    Umm... WTF is this? I tried to update the firmware from 384.4_beta1 to Kille'72 latest Tomato build since I'm using the router as a simple AP now (with a pfSense box as the actual router) and VLAN capability is more important to me than anything else. If, as the warning suggests, I'm now...
  2. G

    [Preview] Asuswrt-Merlin 384.4 test builds

    Did 384.4 change anything related to temperature readings? My RT-AC68U is suddenly running a lot (10-15°C) cooler and I'm at a loss to explain why. I'm in an air-conditioned environment so ambient temperature doesn't fluctuate much and nothing has changed with regards to air flow.
  3. G

    [SECURITY] Unauthenticated LAN remote code execution in AsusWRT

    https://raw.githubusercontent.com/pedrib/PoC/master/advisories/asuswrt-lan-rce.txt Seems to allow remote code execution as root by an attacker on the local LAN and is reported to affect every version before v3.0.0.4.384.10007.
  4. G

    Skynet Skynet - Router Firewall & Security Enhancements

    If you're just trying to unban a specific ip/domain/etc, you need to use the "unban" command. The "deport" command unbans a list of IPs from a file or URL.
  5. G

    DNScrypt dnscrypt installer for asuswrt

    After going back to 380.69 the DNS leaking stopped for me. Not sure why using the DNSCrypt installer script with the 382.2_alpha2 build results in leaky DNS. Test system: RT-AC68U DNS Leak Test Sites: GRC or DNSLeakTest @Nairda in my working config, I don't seem to have a resolv.dnsmasq file...
  6. G

    DNScrypt dnscrypt installer for asuswrt

    I'm running into the same issue. Never happened to me prior to 382 firmware, so I might just go back to 380 until this is fixed.
  7. G

    DNS-over-TLS support?

    Is there any way to implement support for DNS-over-TLS in Merlin? The new Quad9 resolver is great for security and has a better privacy policy than most other providers. Unfortunately, they don't support DNSCrypt, but they do support DNS-over-TLS. The stubby project seems a promising place to...
  8. G

    [Release 382] Asuswrt-Merlin 382.1 is now available

    Looks like 382 firmware was released for AC68U a few days ago.
  9. G

    Skynet Skynet - Router Firewall & Security Enhancements

    Anyone else experiencing strange behavior when updating the ban list? Nov 4 19:00:57 Skynet: [INFO] Skynet Up To Date - v5.4.7 Nov 4 19:01:37 Skynet: [Complete] 84207 IPs / 3412 Ranges Banned. -81243 New IPs / 82 New Ranges Banned. 2502 Inbound / 45 Outbound Connections Blocked! [35s] Nov 4...
  10. G

    Skynet Skynet - Router Firewall & Security Enhancements

    Thanks! Good to know I'm not going insane. :) Maybe the error message could be changed to suggest the user try the ip flag (at least for a couple of versions, until people become acquainted with the change). Though, it's admittedly not a big deal, since you can do it through the new menu...
  11. G

    Skynet Skynet - Router Firewall & Security Enhancements

    Hmm... has this changed or is my mind playing tricks on me? I could have sworn I used to use the unban command like below (without the "ip" flag) to quickly unban an IP. sh /jffs/scripts/firewall unban xxx.xxx.xxx.xxx Now it won't recognize the command unless I specify it's an IP sh...
  12. G

    ASUS Krackattack patch?

    Arguably the most interesting vulnerability from an attacker's point of view is the FT handover issue that is entirely an access point issue. Probably not a concern for home users though, since your data probably isn't interesting enough to pull for decrypting later. But the ability to get tons...
  13. G

    KRACK WPA2 Vulnerability Exposed

    There is a really interesting Fast Transition (FT) handover (CVE-2017-13082) issue that is entirely an access point problem. Basically a sniffing and mostly undetectable attacker can capture a ton of traffic with reused nonce with a single key violating principles of one-time pad crypto. Could...
  14. G

    KRACK WPA2 Vulnerability Exposed

    Now that I understand this better, the lack of response from Asus is troubling. While it's true that most of the vulnerabilities can only be patched client side, there is an aspect of this that requires an access point patch (specifically CVE-2017-13082 FT handover).
  15. G

    KRACK WPA2 Vulnerability Exposed

    Great series of videos on the KRACK attack: If you're confused about how this exactly works or why this is only client side patchable (though AP mitigations can be made), then I'd strongly recommending watching this series all the way through
See more
Top