5
Votes

Make security good practice

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
 
5
Votes

Make security good practice

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Make security good practice
Make security good practice
2023-02-10 07:53:38
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version:

My ER605 router OpenVPN deploys a 1024 RSA key which is bad security practice. When will this be changed to at least RSA 2048? Also it also only supports AES-128-CBC where CBC refers to Cipher Block Chaining which is a rather obsolete standard. This should be changed to GCM, ie. to AES-128-GCM. Preferably AES-256-GCM should also be supported! I would not recommend using the ER605 for business purposes!

#1
Options
3 Reply
Re:Make security good practice
2023-02-13 09:15:20

Dear  @TPLIST

 

TPLIST wrote

My ER605 router OpenVPN deploys a 1024 RSA key which is bad security practice. When will this be changed to at least RSA 2048? Also it also only supports AES-128-CBC where CBC refers to Cipher Block Chaining which is a rather obsolete standard. This should be changed to GCM, ie. to AES-128-GCM. Preferably AES-256-GCM should also be supported! I would not recommend using the ER605 for business purposes!

 

Thank you for your valuable feedback.

I've reported to the developer team for evaluation.

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*
#2
Options
RE:Make security good practice
2023-05-18 09:24:20 - last edited 2023-05-18 09:26:05

TL-ER7206 is also using the less secure 1024bit RSA key, hopefully an update is in the works ASAP, not sure if these details are even documented so one can make an informed decision before purchase

#3
Options
RE:Make security good practice
2023-06-16 09:08:00
Must have.
#4
Options