[rando3826]

> arbitrary code breaks all possible chain-of-trust models

No. The code I get on my router from the store is an arbitrary closed source buggy crap.

The code I load from debian, openwrt, etc. is far more trusted.

[headShrinker]

His point was that individuals could compile their own malicious code in to DDWRT source then flash it to routers.

Your point is corporate code sucks.

[sliverstorm]

I hate HN's tendency to be perfectly intelligent and rational most of the time, yet become infuriatingly obtuse and cultish any time we brush near ideology.

Obviously the FCC does not care about who you trust.

[makomk]

The code that ships in consumer routers is really awful security-wise compared to something like OpenWRT, though, and that's not ideology - it's the commercial reality of the consumer router market. Security costs money and it's not visible to the consumers buying the routers, so the manufacturers don't bother.

[esaym]

I trust GPL code only.