Re: [FD] Netgear Router Administrative Web Interface Lacks Transport Encryption By Default

Hi, This isn't really a problem a vendor can solve in firmware (apart from offering configuration via cloud, which has its own issues). Even if they would enable TLS/SSL by default, it would just give one a false sense of security, since: - the certificates would be invalid (public CAs don't give

[FD] Netgear Router Administrative Web Interface Lacks Transport Encryption By Default

___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/