Some guy in this community ( may be a very experienced ) is not giving a nice suggestion to the users. He i think dude to lack if exposure to crypto and how PKI work , i saw is giving wrong information to users and also given in past
According to me some of his misconceptions are :
this whole thread is not justifying the way we are not suggesting the user about the things can do in today's world
instead some guys want just to stick with wiki pages
I offered the demonstartion too . which i am still offering , but before that make up a mind what is good for the community ? tell about the latest things not yet on wiki or just follow wiki ?
Again, please refrain from paging me to a topic I have not participated in.
Please provide the name of a CA that issues wildcard certificates for the ROOT DOMAIN ZONE or a TOP-LEVEL DOMAIN. I will then refer them to the FBI. Otherwise stop taking my words out of context.
Your Wordpress page was created AFTER my posts. Hardly credible as a scholarly reference.
Your suggestions contradict all Wikis, so you're responsible for editing them!
Please stop attempting to confuse users in this community.
Just make your point, please. As your blog is about wireless, and now you have once again went back to LuCI. This is getting ridiculous, sir.
No I am not fine with sharing, nor my neighbor knowing without my knowledge...so how do you suppose that would occur to OpenWrt users - and what do you suggest to fix it?
Lastly, after you make the suggestion, do you plan to edit the Wikis yourself!?!?
thats the point . this is the only thing dude i wanted you and all members to know
suppose you opened 192.168.1.1 and luci username and password page come . This is where you need to be aware , how will you confirm that its your luci and not other router ( a honeypot ) or not MITM
and yes its not openwrt specific , but we can save our community users from this
Physically plug into the router while all its other interfaces are disconnected/disabled (this is how you setup a router in most cases, especially commercial ones)
If another device was spoofing 192.168.1.1, you would fail to get Internet
Verify ARP MAC matches serial of router you purchased
This is a chicken-and-the-egg theory
the devices needs Internet to install the LuCI SSL package
you have not even mentioned that yet
most importantly the router has to be configured first
(Also, what does this have to do with a certificate? Certs are issued to domain names...)
LOL...
Save them from configuring their own routers!?!?
Save them from breaking-and-entering their neighbor's house to plug into their router "accidentally"!?!?