MR400: Remote admin via https not secure

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

MR400: Remote admin via https not secure

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
MR400: Remote admin via https not secure
MR400: Remote admin via https not secure
2018-02-01 18:42:53
Model :

Hardware Version :

Firmware Version :

ISP :

Hello TP

I congratulate you on offering https support for the administration of the MR400 LTE/4G router. That's not always available from other vendors. However, it appears you do not support TLS 1.2, only TLS 1.0, and the certificated used it considered and treated by unsafe by today's security standards and browsers.

While using https may be fine on a local home LAN, remote administration is not possible from a security perspective as using this cert and TLS1.0 encryption would be unsafe. I ask that you consider upgrading transport layer encryption for administration of this device in a future firmware update.

Reinhard
  0      
  0      
#1
Options