ajack

Fraser, Thank you. The router experienced some wifi connection drops this morning and I have decided that with the unresolved haserl cgi errors, the unstable firmware(s) and the bizarre config losses on reboot that I sadly have to move onto a different product. Thank you for your help. You have directly responded to some of my other issues in the past with this same router. You can now lock this thread.

That would be under "Settings>Administration>Reboot", correct?

im not understanding. There were no recovery questions to complete . i (attempted) to reset the password from within the interface. i did not have security questions enabled. this does not address nor explain why the divice would change the password to literally "password".

Hello Fraser, my pwd is 10 characters, alphanumeric only.

Hello, yesterday i encountered the dreaded "haserl cgi error" that so many other people are running into. As some netduma tech have suggested in other posts, i was able to access the router at 192.168.1.1/adv_index.htm. The interesting thing is that when i used the "reboot" command (from top right 3 dots>reboot) the router lost all settings, reverted to unusual "Netgear" and "netgear-5g" open networks, and the password was reset to "password" and not the unique netgear default password printed on the router sticker. 1, im not sure where it would be pulling that password from. and, 2. that is a MASSIVE security breach. Can someone explain why a netgear firmware, or DUMAos software would have "password" and open networks as a default config? Also concerning, the router would not allow me to change the default admin password after it reset itself. I could specify a password and attempt to set it. But i was met with a "400 Bad Request This server does not support the operation requested by your client." message when i clicked "Apply". The only way I was able to recover the router was to force a fatory reset from the Admin>Backup>Revert to Factory Settings>Erase" option. And I had to do it twice. Because the first time it didt trigger a reboot or reset. Ive had to factory reset this router maybe 20 times now. With my configs being lost, and the security risks this expensive flagship router on its own, Im afraid i might have to either downgrade to a less feature packed, more reliable router, or move away from netgear/DUMAOS based routers altogether. And yes, before anyone asks or suggests, im on firmware XR1000 1.0.0.74_1.0.63. Im pretty disgusted that this "haserl cgi" error has been persisting for approximately 3 or 4 years. And im very disgusted with how the router is configuring itself with open networks and default passwords like "password". IM not even sure where it would be getting those credentials. I would assume Netgear and Netduma employees would know better. But here we are. Id ask what a long term solution is. But, it seems like factory resetting and/or TFTFing the most current firmware is the most common suggestion for this. So is there an ETA on a solution that actually fixes the error? Or should i start shopping for a device that doesnt lose its config or expose my network to cyber security threats with no warning and without my knowledge?? If the engineering team needs help. By all means, just ask. i can do a few packet captures. But im not advaced enough to JTAG the device.

You gave an incorrect answer. An outdated answer. And you have the audacity to call me salty? That's crazy. I hope your day gets better than this.

Thank you, Fraser. That's unfortunate.

WPA2 is already broken. It has been broken. That's not what I'm asking. I'm asking why there is no https login page. If you would like to delve deeper into how secure you *think* WPA2 is please review the following: https://www.fortinet.com/blog/business-and-technology/wpa2-has-been-broken-what-now . And yes, viruses often do target routers and networks as a whole. Ibalso live in an urban environment where thousands of people travel past my home on any given day. I guess my biggest question is why you think I wouldn't WANT to give my network tjr best chance possible. Like.. you somehow think that just because you feel like WPA2 is secure (it's not, see above) that someone would need to have physical access to my lan? Again. Why do you care What i do? Do you lock your doors on your home or car? Pretty silly when all someone has to do is break a window, right? Yet nobody's going to advocate leaving your car or home unlocked. Im not even sure why you felt like you had to chime in?

As the title says. How do I enable HTTPS login on the XR1000? I am using the most current firmware at the time of this post (hotfix 1.0.0.72_1.0.62). I cannot seem to figure out how to enable it. Please dont say that it cant be done on one of netgears top of the line, flagship products. Its 2024 and I shouldnt have to explain how plaintext logins are bad. But using a program like wireshark, discovering basic auth, unencrypted logins is literally only 2 clicks. One might argue that in a home environment https logins arent "necessary". But, as long as you have wifi capability, you are at risk. So, there needs to be a way to enable it, im just not sure how. Can someone direct me on how to do it?