Menu
What's new
By:
Filters Better Search

ASUS RT-AC66U/R HTTPS Issue FW: 380.68_4 = *RESOLVED AS OF 11/16/17*

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

ShaXdow5

ShaXdow5

New Around Here
Hello, I'm new to this forum :D

So I have the Asus RT-AC66R and when I attempt to use HTTPS as the authentication method the UI becomes completely and utterly unusable. Also the admin page will only load in google chrome (even in chrome it will kick you out sometimes and the only way I've been able to get back in is if I hit the back button on my browser and refresh constantly), tried several different ways/links/etc but if you try in any other browser it just wont load when its set to HTTPS other than chrome. I've seen in previous firmware versions in this thread this issue has come up in the past and was fixed with an updated firmware revision. Not sure if this is a bug that re-occurred or if I may be missing something but I until it is resolved I'm forced to use unsecured HTTP method. Also when the modem has authentication method set to just HTTP everything works perfectly fine, and fast but not secured :p
 
I had this issue with my 88U. I fixed it by uploading a properly signed certificate.
I’d lived with it being slow/unusable for months figuring it was just how it was :facepalm:


Sent from my iPhone using Tapatalk
 
I used https://www.sslforfree.com

But note I had to use a ‘real’ domain name that I own in order to authenticate it etc.


Sent from my iPhone using Tapatalk
 
JDB said:
I used https://www.sslforfree.com
Click to expand...

I wouldn't trust that site. They don't even identify themselves, and their whois information is marked as private, so you have no idea who's the "We" they are referring to in their minimalist FAQ. They're even taking steps to hide their identity. For all you know, they might be harvesting domain information for potential spam, or keeping a copy of your private key for potential attack against your domain...
 
RMerlin said:
I wouldn't trust that site. They don't even identify themselves, and their whois information is marked as private, so you have no idea who's the "We" they are referring to in their minimalist FAQ. They're even taking steps to hide their identity. For all you know, they might be harvesting domain information for potential spam, or keeping a copy of your private key for potential attack against your domain...
Click to expand...

I didn’t provide any key. They generated one for me. Not that that is any better. But the key exists only on the router. And the router opens only OVPN to the outside world (with my ‘real’ private key associated with it).
All I did was confirm I own the domain via a DNS TXT record. I tried MANY other sites that provide a certificate but this was the only one the router accepted and my browser also didn’t moan about (for the ones that I did manage to get to load).
The authority behind them is “Let’s Encrypt” who are somewhat more well known. I agree it is odd that they are trying to hide that fact though.


Sent from my iPhone using Tapatalk
 
Oh, and the domain exists only on the router too, I don’t use it for anything else.


Sent from my iPhone using Tapatalk
 
Problem is not limited to AC66U.
The only browser that works as expected is Internet Explorer.
Sad but true!
 
JDB said:
I didn’t provide any key. They generated one for me. Not that that is any better. But the key exists only on the router. And the router opens only OVPN to the outside world (with my ‘real’ private key associated with it).
All I did was confirm I own the domain via a DNS TXT record. I tried MANY other sites that provide a certificate but this was the only one the router accepted and my browser also didn’t moan about (for the ones that I did manage to get to load).
The authority behind them is “Let’s Encrypt” who are somewhat more well known. I agree it is odd that they are trying to hide that fact though.


Sent from my iPhone using Tapatalk
Click to expand...

They act as the middle man between you and Let's Encrypt. Their motivation behind doing that without so much as having ads on their website to finance themselves raises an alarm bell here.

Generating a certificate requires you to generate a key, which is used to sign the CSR, and also to enable the certificate once installed on your router. That key was generated in your browser, so you have no way of knowing if they didn't retrieve a copy of that key.
 
You must log in or register to reply here.

Similar threads

K
The dreaded "HTTPS is a relatively more secured web access protocol. We strongly suggest to enter the ASUS router setting page via HTTPS protocol."
Replies
16
Views
1K
Diablo99
Diablo99
A
AC5300 with Merlin can I use RT AC66u_B1 as a mesh node with either stock Asus FW or the AC66U merlin FW?
Replies
11
Views
858
aross1976
A
M
Issue Updating Merlin Firmware to 386.12_2 on my ASUS RT-AC66U B1
Replies
2
Views
854
meton66
M
N
Cannot connect to AiCloud on RT-AX56U on 388.2_2
Replies
4
Views
492
L&LD
L&LD
C
Plex.tv: Connect on Wired, Can't connect on Wifi?
Replies
4
Views
456
chigden
C
Similar threads
Thread starter Title Forum Replies Date
M Issue Updating Merlin Firmware to 386.12_2 on my ASUS RT-AC66U B1 Asuswrt-Merlin 2
A AC5300 with Merlin can I use RT AC66u_B1 as a mesh node with either stock Asus FW or the AC66U merlin FW? Asuswrt-Merlin 11
N Asus AC66U and full cone NAT Asuswrt-Merlin 11
Z Accidentally flashed XT12 latest merlin on a ET12 Asus Zenwifi Pro. Can't flash back stock FW. Asuswrt-Merlin 3
B Asus RT-AC5300 and ExpressVPN Asuswrt-Merlin 8
T Asus RT-AX86U vs RT-AX68U (with Merlin cake SQM) Asuswrt-Merlin 9
Coldblackice Does ASUS Merlin's QoS consider DSCP? Asuswrt-Merlin 3
JA93 iVentoy on Asus Merlin Asuswrt-Merlin 1
M [🙏 Feature request For Asus Merlin] Add Public WiFi Mode for GT-AX11000 Asuswrt-Merlin 7
A Asus Merlin 388.6_2 VPN-Director Asuswrt-Merlin 5

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 956 (members: 16, guests: 940)
Top