Jump to content

Killhippie

DumaOS Insiders
  • Content Count

    858
  • Joined

  • Days Won

    21

Reputation Activity

  1. Like
    Killhippie reacted to hell12309 in XR500 Firmware version 2.3.2.56 released.   
    I have never seen a place that takes forever to get updates coming out nobody likes it when updates take forever to come out all because they want it to come out in all one big update nobody likes that it's unfair and untrustworthy because the more updates that come out the more things are going to get broken I'd rather them updated every few weeks instead of every other year
  2. Like
    Killhippie reacted to Chris J in XR500 Firmware version 2.3.2.56 released.   
    I'm sorry, but I've never seen such a lack of competence with firmware updates. Other companies release firmware updates on frequent bases, but the response that we hear over and over and over at Netduma is "Were have a lot of features in the pipeline, but we don't know when Netgear will release them". Literally half a year will go by with the same nonsense. You guys really need to revise your business model. Releasing firmware updates every 2 years? Seriously?
  3. Like
    Killhippie got a reaction from Zippy in Another issue with device manager and network monitor not showing device or usage   
    As long as I've helped one person at some point that's all that matters Zippy. Glad to hear Ive pointed you in the right direction when needed, that makes all the research and bug testing worth it. 😊
  4. Thanks
    Killhippie got a reaction from PharmDawgg in XR700 Certificate disclosure vulnerability   
    Well Netgear have patched the R8900 and R9000 nothing about the XR700 or the RAX120 yet, but they will be patched at some point. It turns out they left TLS certificates in plain text in the firmware so anyone could read them...

    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105 
  5. Like
    Killhippie got a reaction from Netduma Fraser in XR300 - High Priority Traffic detection issues   
    I look forward to seeing what its all about, I'll stick 3.0 on it then keep it as a back up router or sell it as I already have a few other spare routers laying about, I really hope the patching of new issues that inevitably pop up will happen too, and that IPv6 and PPPoE issues have been addressed in 3.0. Good luck and hope it all works as its meant to.
  6. Like
    Killhippie got a reaction from Newfie in XR700 Certificate disclosure vulnerability   
    Well Netgear have patched the R8900 and R9000 nothing about the XR700 or the RAX120 yet, but they will be patched at some point. It turns out they left TLS certificates in plain text in the firmware so anyone could read them...

    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105 
  7. Like
    Killhippie got a reaction from George in XR300 - High Priority Traffic detection issues   
    I look forward to seeing what its all about, I'll stick 3.0 on it then keep it as a back up router or sell it as I already have a few other spare routers laying about, I really hope the patching of new issues that inevitably pop up will happen too, and that IPv6 and PPPoE issues have been addressed in 3.0. Good luck and hope it all works as its meant to.
  8. Like
    Killhippie reacted to Netduma Fraser in XR300 - High Priority Traffic detection issues   
    I totally understand the frustration, if I was having an issue that was unfixable except for an update I would get frustrated as well. All I can say are two things:
    3.0 itself encompasses reworks of existing features which should eliminate existing bugs without specifically going to fix them if that makes sense.
    Once released it will be A LOT easier to have fixes out there faster without having to wait as long.
  9. Like
    Killhippie reacted to George in XR300 - High Priority Traffic detection issues   
    Same here, the XR300 is the very first router I had to move on from due to unpatched firmware issues... Tried to return it but the lemon law in my country doesn’t actually cover products with bad or  defective firmware/software. I also raised a ticket with Netgear, they acknowledged all the issues, saying that can’t do anything about it and that I m supposed to figure everything out with the seller of the router... Great stuff!
    So I guess my only hope now is that somehow DumaOS 3.0 will be in a better shape than the latest XR300 firmware. However from my experience in the software industry, new features usually come together with new issues and since the Netduma team is so unwilling to slow down and do some housekeeping, I am not sure we will ever get a usable DumaOS release... Right now I am stuck with a £175 paperweight as the XR300 firmware is far from being considered stable enough to be used as my daily driver at my home setup...
  10. Like
    Killhippie got a reaction from George in XR300 - High Priority Traffic detection issues   
    Will the Devs be focused on bug testing after 3.0 is released?  You cant write firmware without bugs if you could we would never need patches. Right now it appears nothing much has changed still, always onto the next thing but never cleaning up the bugs that were left without a fix. Personally I cannot get my head around leaving the XR500 in the state its been in for over a year with no proper patch releases. Yes I know I've said it all before, but patching bugs that arise is vitally important and it seems to be something that's gets forgotten about far to easily. The XR500 is the first router I have moved on from because nothing was patched, especially when so many people needing patches for the same issues that were posted over and over again. Watching the same issues pop up on forum for a year with the same answers became tiresome to watch. I know you guys work hard and yes lots of new features are incoming and hopefully many of the issues will be fixed, but can you guarantee the devs will implement a regular patch update program after 3.0's release before leaping onto the next big thing?
  11. Like
    Killhippie got a reaction from BIG__DOG in Another issue with device manager and network monitor not showing device or usage   
    As long as I've helped one person at some point that's all that matters Zippy. Glad to hear Ive pointed you in the right direction when needed, that makes all the research and bug testing worth it. 😊
  12. Like
    Killhippie reacted to Zippy in Another issue with device manager and network monitor not showing device or usage   
    Ha Ha I give you the badge of honor when it comes to the staying on top of Netgears stuff! And if you don't know it you seem to have always pointed me in the correct direction! So I have promoted you to that title.
    Zippy. 
  13. Like
    Killhippie got a reaction from BIG__DOG in Another issue with device manager and network monitor not showing device or usage   
    The DoS issue was patched in 2.3.2.56, BIG_DOG.  It's the certificate disclosure issue that's effecting the XR700, R9000, R8900and RAX120. Hotfixes are meant to be incoming soon for that one. I just updated my RAX120 on Monday to a new firmware that was just released and now I 'll have to apply a hotfix as well <sigh> I wish Netgear would be more proactive as the hardware is great. After a while its hard to remember which vulnerability effects what router these days
     
  14. Like
    Killhippie got a reaction from Zippy in Another issue with device manager and network monitor not showing device or usage   
    I would hardly call myself a Netgear Guru, Zippy, maybe I just have to much time on my hands  but yes if you use any firmware lower than 2.3.2.56 on say the XR500 you open yourself up to a nasty Denial of Service attack on your router and LAN. The risk is all yours if you do downgrade, but if it goes wrong and you get caught out buy any of the patched security vulnerabilities they have warned you. Netgear wont really help you that much because they have posted that advisory as a way of saying "update now, if not its not our fault anything bad happened"  It's basically their disclaimer for responsibility if you didn't follow their advice, which is fair enough really.

    https://kb.netgear.com/000061492/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0197
  15. Like
    Killhippie got a reaction from BIG__DOG in Another issue with device manager and network monitor not showing device or usage   
    I would hardly call myself a Netgear Guru, Zippy, maybe I just have to much time on my hands  but yes if you use any firmware lower than 2.3.2.56 on say the XR500 you open yourself up to a nasty Denial of Service attack on your router and LAN. The risk is all yours if you do downgrade, but if it goes wrong and you get caught out buy any of the patched security vulnerabilities they have warned you. Netgear wont really help you that much because they have posted that advisory as a way of saying "update now, if not its not our fault anything bad happened"  It's basically their disclaimer for responsibility if you didn't follow their advice, which is fair enough really.

    https://kb.netgear.com/000061492/Security-Advisory-for-Denial-of-Service-on-Some-Routers-PSV-2019-0197
  16. Like
    Killhippie got a reaction from PharmDawgg in XR700 Certificate disclosure vulnerability   
    Associated CVE IDs: None
    NETGEAR is aware of a Transport Layer Security (TLS) certificate private key disclosure vulnerability on the following product models:
    R8900 R9000 RAX120 XR700* These products use Certificate Authority-signed certificates to provide secure HTTPS access to the router web interface. You might see a security certificate error or warning when you try to access your router’s web interface using HTTPS.
    NETGEAR plans to release firmware hotfixes for all affected products as soon as possible.
    Until a firmware fix is available for your product, NETGEAR recommends that you:

    Use the NETGEAR Nighthawk app.

    Instead of using HTTPS, log in to your router’s web browser interface using HTTP to login in
     
    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105
  17. Like
    Killhippie got a reaction from Netduma Alex in XR700 Certificate disclosure vulnerability   
    Associated CVE IDs: None
    NETGEAR is aware of a Transport Layer Security (TLS) certificate private key disclosure vulnerability on the following product models:
    R8900 R9000 RAX120 XR700* These products use Certificate Authority-signed certificates to provide secure HTTPS access to the router web interface. You might see a security certificate error or warning when you try to access your router’s web interface using HTTPS.
    NETGEAR plans to release firmware hotfixes for all affected products as soon as possible.
    Until a firmware fix is available for your product, NETGEAR recommends that you:

    Use the NETGEAR Nighthawk app.

    Instead of using HTTPS, log in to your router’s web browser interface using HTTP to login in
     
    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105
  18. Like
    Killhippie got a reaction from Netduma Fraser in XR700 Certificate disclosure vulnerability   
    Associated CVE IDs: None
    NETGEAR is aware of a Transport Layer Security (TLS) certificate private key disclosure vulnerability on the following product models:
    R8900 R9000 RAX120 XR700* These products use Certificate Authority-signed certificates to provide secure HTTPS access to the router web interface. You might see a security certificate error or warning when you try to access your router’s web interface using HTTPS.
    NETGEAR plans to release firmware hotfixes for all affected products as soon as possible.
    Until a firmware fix is available for your product, NETGEAR recommends that you:

    Use the NETGEAR Nighthawk app.

    Instead of using HTTPS, log in to your router’s web browser interface using HTTP to login in
     
    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105
  19. Like
    Killhippie got a reaction from BIG__DOG in XR700 Certificate disclosure vulnerability   
    Associated CVE IDs: None
    NETGEAR is aware of a Transport Layer Security (TLS) certificate private key disclosure vulnerability on the following product models:
    R8900 R9000 RAX120 XR700* These products use Certificate Authority-signed certificates to provide secure HTTPS access to the router web interface. You might see a security certificate error or warning when you try to access your router’s web interface using HTTPS.
    NETGEAR plans to release firmware hotfixes for all affected products as soon as possible.
    Until a firmware fix is available for your product, NETGEAR recommends that you:

    Use the NETGEAR Nighthawk app.

    Instead of using HTTPS, log in to your router’s web browser interface using HTTP to login in
     
    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105
  20. Like
    Killhippie got a reaction from Newfie in XR700 Certificate disclosure vulnerability   
    Associated CVE IDs: None
    NETGEAR is aware of a Transport Layer Security (TLS) certificate private key disclosure vulnerability on the following product models:
    R8900 R9000 RAX120 XR700* These products use Certificate Authority-signed certificates to provide secure HTTPS access to the router web interface. You might see a security certificate error or warning when you try to access your router’s web interface using HTTPS.
    NETGEAR plans to release firmware hotfixes for all affected products as soon as possible.
    Until a firmware fix is available for your product, NETGEAR recommends that you:

    Use the NETGEAR Nighthawk app.

    Instead of using HTTPS, log in to your router’s web browser interface using HTTP to login in
     
    https://kb.netgear.com/000061582/Security-Advisory-for-Signed-TLS-Certificate-Private-Key-Disclosure-on-Some-Routers-PSV-2020-0105
  21. Like
    Killhippie got a reaction from Zippy in XR300 worth upgrading to XR500   
    It was the R7800 Newfie, which was a great little router, still going strong as a router and on SmallNetBuilder with Voxels updated Netgear firmware fork its a great router to use, I would have gone for that if on a tight budget, it has streamboost for QoS, works well gaming as it was and is a gaming router and has excellent Wi-Fi and Wan to LAN throughput for gigabit lines, Esata as well as USB 3, I would say its better than the XR500 tbh, which never had such good Wi-Fi as the R7800, they changed the antenna on the XR500 new shape and not so tall but whatever else was changed it never worked so well over 5Ghz and 2.4Ghz as the R7800 for some reason. Sometimes less is more I guess.
  22. Like
    Killhippie got a reaction from Newfie in XR300 worth upgrading to XR500   
    It was the R7800 Newfie, which was a great little router, still going strong as a router and on SmallNetBuilder with Voxels updated Netgear firmware fork its a great router to use, I would have gone for that if on a tight budget, it has streamboost for QoS, works well gaming as it was and is a gaming router and has excellent Wi-Fi and Wan to LAN throughput for gigabit lines, Esata as well as USB 3, I would say its better than the XR500 tbh, which never had such good Wi-Fi as the R7800, they changed the antenna on the XR500 new shape and not so tall but whatever else was changed it never worked so well over 5Ghz and 2.4Ghz as the R7800 for some reason. Sometimes less is more I guess.
  23. Like
    Killhippie got a reaction from PieCaptain in ANNOUNCEMENT: The Future of DumaOS: Version 3.0   
    Sadly that's something I may not be able to do any more. With no guarantees as to updates for releases in the future, let alone no DumaOS updates for months to come and no promise of XR compatibility (because of company NDA's)  let alone no guarantees this wont happen again, its time to find another router as my daily driver instead of the XR500 I think. Just imagine if Microsoft/Apple/Google etc released a new operating system then left it for over a year with no updates for bugs until the next version and then no guarantees your hardware would get it. Its almost back to front in my view. Companies patch so that if there is no new OS for your hardware you have the best version you can have on the hardware you own and to just fix bugs too as a matter of course. The whole create a new version of DumaOS instead of patching the old one will always be my sticking point.  
  24. Like
    Killhippie got a reaction from Newfie in XR500 - Automated Scheduled Reboot Feature   
    Considering Netgear suggest power cycling should be done with all connected and Wi-Fi devices off* I wonder how much confusing this could possibly cause to a routers memory with a lot of devices attached when rebooting as well as its own Firmware. Personally I don't want the router going though a boot sequence with all the Wi-Fi and Ethernet devices still on on and calling out for a IP,. I think once in a while If you need to reboot your router just power it down for a 5 minutes remove the power block so the router has no residual electricity still in it and then you get a good clean start with the memory properly cleared, power it up and wait two minutes after powering it back up for the router to go though its start up routine, then switch all  your LAN  gear back on. Thats a much better way to reset devices if they are playing up, and you have refreshed your whole LAN. After all some devices need a reboot now and then, not many, like Newfie I've never had to reboot to help Arlo cameras out or my Tado heating system or my soundbar etc, but some set top boxes (Sky Q) need a reboot now and then, as well as some smart TV's especially those running Android. (Yes I'm looking at you Sony AF8) I mean if a £2500 OLED TV needs a reboot once in a while it shows clients need to be powered down once in a while to clear out memory too. (not to often though) So just do the whole lot in one go because you may find that just rebooting the router not the client can leaves some devices not connected or end up behaving in a quirky manner, which has happened on my XR500, a few times as well as other routers. I think doing the whole thing manually which would take less than ten minutes on a quite day when people are not using the network is a better approach, that's just me though we all have different views and ideas.

    * https://kb.netgear.com/19755/How-to-Power-Cycle-Your-Home-Network
  25. Like
    Killhippie reacted to Newfie in XR500 - Automated Scheduled Reboot Feature   
    I’ve got to be honest I’ve never had an issue where my Wi-fi cameras need a fresh boot as they enjoy it or any other equipment that requires it. I would rather see a system that is stable and not needing a reboot to solve issues and personally a scheduled reboot due to problems that are solved via this is a tad lazy. 
     
×
×
  • Create New...