Hacker News new | ask | show | jobs
by happymellon 1383 days ago
Yes I remember the router situation where they accidentally left telnet listening on the WAN.

I worked at Vodafone and all the routers get a security review, so it is highly doubtful that they left it in on purpose because they would have known that it would have been found. It was test engineering firmware that got left on some routers, and makes spurious claims even though in the article it points out that Vodafone didn't believe it was a backdoor.

And your first link talks about how someone appears to have added an additional chip to the design, which is unlikely to have come from Huawei. Sounds suspiciously similar to this

https://www.bloomberg.com/news/features/2018-10-04/the-big-h...

Do you want a list of everything that Cisco (replace with your preferred networking manufacturer) messed up and claim that it's all malicious?

https://www.theguardian.com/books/2014/may/12/glenn-greenwal...

Tampering with these things is allegedly pretty simple.

https://arstechnica.com/information-technology/2019/10/plant...
1 comments
aaaaaaaaata 1383 days ago
Besides the Wireguard incident, where has Netgate been a joke like the two being discussed here?
link
happymellon 1382 days ago
Why "besides"?

I would say that the Wireguard issue is worse than the speculation that pre-production firmware on unreleased routers was backdooring as they actually shipped it.

Of the three links about Huawei, one is someone in India claiming IP theft, one where they made up a claim of backdooring which the original security researchers rejected that claim, and one where it appears that hardware may have been tampered at the manufacturing stage by Americans.

Not exactly smoking gun, Huawei are evil and want to steal your data. I don't trust them, but then I don't trust a lot of the networking providers to not be compromised by a state actor.

Otherwise, they are probably the best of the bunch, purely because of the stack being mostly BSD.

link