Forums

Stories

Knowledge Base

Business Community > Requests & Suggestions > Make security good practice

< Requests & Suggestions

Votes

Make security good practice

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Votes

Make security good practice

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

TPLIST

LV1

2023-02-10 07:53:38

Posts: 2

Helpful: 15

Solutions: 0

Stories: 0

Registered: 2023-02-06

Make security good practice

2023-02-10 07:53:38

Model: ER605 (TL-R605)

Hardware Version: V2

Firmware Version:

My ER605 router OpenVPN deploys a 1024 RSA key which is bad security practice. When will this be changed to at least RSA 2048? Also it also only supports AES-128-CBC where CBC refers to Cipher Block Chaining which is a rather obsolete standard. This should be changed to GCM, ie. to AES-128-GCM. Preferably AES-256-GCM should also be supported! I would not recommend using the ER605 for business purposes!

3 Reply

Hank21

2023-02-13 09:15:20

Posts: 3037

Helpful: 661

Solutions: 400

Stories: 8

Registered: 2021-12-13

Re:Make security good practice

2023-02-13 09:15:20

Dear @TPLIST ，

TPLIST wrote

My ER605 router OpenVPN deploys a 1024 RSA key which is bad security practice. When will this be changed to at least RSA 2048? Also it also only supports AES-128-CBC where CBC refers to Cipher Block Chaining which is a rather obsolete standard. This should be changed to GCM, ie. to AES-128-GCM. Preferably AES-256-GCM should also be supported! I would not recommend using the ER605 for business purposes!

Thank you for your valuable feedback.

I've reported to the developer team for evaluation.

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*

cmicall

LV1

2023-05-18 09:24:20 - last edited 2023-05-18 09:26:05

Posts: 9

Helpful: 0

Solutions: 1

Stories: 0

Registered: 2019-07-04

RE:Make security good practice

2023-05-18 09:24:20 - last edited 2023-05-18 09:26:05

TL-ER7206 is also using the less secure 1024bit RSA key, hopefully an update is in the works ASAP, not sure if these details are even documented so one can make an informed decision before purchase

aoalmeida

LV1

2023-06-16 09:08:00

Posts: 7

Helpful: 4

Solutions: 0

Stories: 0

Registered: 2023-02-06

RE:Make security good practice

2023-06-16 09:08:00

Must have.

TPLIST

LV1

2023-02-10 07:53:38

Posts: 2

Helpful: 15

Solutions: 0

Stories: 0

Registered: 2023-02-06

Information

Helpful: 5

Replies: 3

Make security good practice

Make security good practice

Information

Voters 4

Tags