Conversation

Notices

1. Embed this notice
   BeyondMachines :verified: (beyondmachines1@infosec.exchange)'s status on Thursday, 21-Nov-2024 21:28:48 JST BeyondMachines :verified:

   D-Link warns of critical flaw in end-of-life routers, tells user to replace them
   #cybersecurity #infosec #advisory #vulnerability
   https://beyondmachines.net/event_details/d-link-warns-of-critical-flaw-in-end-of-life-routers-tells-user-to-replace-them-5-y-h-8-z/gD2P6Ple2L

   • Embed this notice
     SpaceLifeForm (spacelifeform@infosec.exchange)'s status on Thursday, 21-Nov-2024 21:28:47 JST SpaceLifeForm

     in reply to

     @beyondmachines1

     Any alternate firmware out there?

     I am not finding good results.

   • Embed this notice
     翠星石 (suiseiseki@freesoftwareextremist.com)'s status on Thursday, 21-Nov-2024 21:28:47 JST 翠星石

     in reply to

     • SpaceLifeForm
     @SpaceLifeForm @beyondmachines1 You need to carry out a GPLv2 request with D-Link, demanding the source code of Linux, u-boot, etc, plus the installation information (i.e. information of the location of the UART header, the pinout and the baud).
     
     Once you have that, you submit that to the openwrt project and hopefully someone goes and does a port and upstreams the chipset support etc without adding all the proprietary software.
   • Embed this notice
     翠星石 (suiseiseki@freesoftwareextremist.com)'s status on Thursday, 21-Nov-2024 21:30:30 JST 翠星石

     in reply to

     • 翠星石
     • SpaceLifeForm
     @SpaceLifeForm @beyondmachines1 See if you can find the booklet that came with the router or check the web interface - there should be GPLv2 request notice written there.
     
     If that's missing and that router runs BusyBox/Linux, D-Link has lost their license to distribute BusyBox and Linux.