Siosphere Ars Centurion et Subscriptor
REPLY
2 HOURS AGO
Just another reminder to never trust in-secure sites, always make sure you are browsing the https version of a site, and never accept an invalid certificate.
DNS Hijacking/HTTP Hijacking rely on the end-user either visiting normal http sites, or accepting invalid certificates (unless the attacker has access to the private key information for the valid ssl cert, in which case there isn't anything you can really do to prevent that)
mikeh3 Smack-Fu Master, in training
REPLY
AN HOUR AGO
If you use a browser configured for encrypted/secure DNS, the router should not be able to obstruct DNS calls from the browser. If you use a VPN, the router sees nothing, its a great defense against a hacked router.
If you enter
www.something.com and the browser defaults to an HTTP request, then a hacked router can get its infected hands into the request and change it. However, if you either type an HTTPS request or use a bookmark that is HTTPS, the router should not be able to change the request in-flite.
see also RouterSecurity.org
in chrome, u can set to auto use https. so u no longer needs an addon like httpseverywhere, because chrome can do this now, but u have to check ur settings that it is enabled.
and best stay ontop of router updates. some people don't even check, but i do :X also some brands are terrible at patch releases, this is why i suggest sticking to a brand with a good security release practise. personally i stick to pfsense, cauz i rarely hear bad things about them on the security front. if ur on asus router, maybe check out rtmerlin becauz he usually releases frequent patches for his third party firmwares, and he tends to keep his firmware as close to stock as possible so it doesn't break features like nat acceleration among other things.
