With the default configuration, your router uses DNS servers run by your ISP. As such, the ISP can easily collect information about the websites you’re visiting (and the apps you’re using). You can override the router’s default settings to make it use other DNS services such as OpenDNS, Quad9 or Cloudflare. But since the DNS […]Continue Reading... No Comments.
When the WyzeCam started selling a few years back, there was an alarming review on Amazon stating that it was sending data all over the world. The reviewer claimed seeing traffic heading to China, Japan and Germany, among other locations. The review on Amazon is probably no longer available. But the discussion on Reddit is […]Continue Reading... No Comments.
On a computer that doesn’t have GPS and cellular connection, how does your browser get your location? The obvious answer is it uses your IP address. But that is not true. You can do two simple tests to confirm this: Open https://browserleaks.com/geo. Click Allow Location Access when prompted. Check your location and Accuracy. More likely […]Continue Reading... No Comments.
Cloudflare recently published a blog post on how Oblivious DNS over HTTPS (ODoH) works. According to the blog post, the purpose of ODoH is to separate the DNS queries from the originating IP addresses, preventing the DoH provider from seeing who’s sending the DNS requests. Thus improved privacy for clients. Schematically, this is how it […]Continue Reading... No Comments.
Why does DOH (DNS over HTTPS) interfere with parental control? Unlike traditional DNS queries, which are sent to servers via a plain text connection, DNS-over-HTTPS (DoH) requests are sent over an encrypted HTTPS connection. It was introduced mainly because of the privacy benefits that come with the data encryption. However, since many parental control systems […]Continue Reading... No Comments.
Recently, researchers found an unpatched zero-day vulnerability in Netgear routers that potentially puts 79 device models at risk. According to the Zero Day Initiative: The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue results from the lack of proper validation of the length of user-supplied data […]Continue Reading... No Comments.
How big is the risk? Time and time again you’ve been told that public WiFi hotspots or compromised routers will get your credit card numbers and banking info stolen. However, such risks have been overly hyped. We agree that public, open WiFi networks totally cannot be trusted. And that compromised routers can be used to […]Continue Reading... 1 Comment.
One of the drawbacks of running VPN on a router is performance. It is especially profound when you run OpenVPN a budget router like the pcWRT TORONTO-N. In hopes of getting more reasonable VPN performance out of commodity router hardware, we added support for strongSwan (IPsec) and WireGuard®* to the pcWRT firmware. In this post […]Continue Reading... No Comments.
The pcWRT router offers the most comprehensive support for VPN technology on a router. Out of the box, it supports three VPN protocols: OpenVPN, IKEv2 and WireGuard®*. You can run both server and client on the router, and all three protocols simultaneously if you wish. Initially we only had support for OpenVPN. But it turned […]Continue Reading... No Comments.
If your router is behind NAT (Network Address Translation), then it is not directly accessible from the Internet. As a result, any services running on your router is not directly accessible. You need to know if your router is behind NAT if you plan to run a VPN server on your router so that you […]Continue Reading... No Comments.