NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
New R7000 Firmware Version 1.0.11.100
It's been a while but finally NG has released a new firmware for R7000! :smileyhappy: R7000 Firmware V1.0.11.100_10.2.100 Download: https://kb.netgear.com/000061805/R7000-Firmware-Version-1-0...
Here is NG's statement about 'How do NETGEAR Home routers defend WPS PIN against brute force vulnerability':
"NETGEAR home routers will protect themselves after several failed attempts to authenticate as an external registrar by entering a lock-down state. During the lock-down state, all WPS attempts using the Router PIN will not work. The router will return from the lock-down state after a predetermined time period. While the NETGEAR device is in a lock-down state, users can still use the WPS Push Button method to connect to the wireless network".
From that article:
Since only the Router PIN method is vulnerable to brute force attack, NETGEAR recommends disabling this function to best protect your network from invasion.
To disable the Router PIN method:
- Login to the router GUI by typing www.routerlogin.net on an Internet browser's address bar. Note: Default logins are: Username = admin, Password = password.
- Go to Advanced Setup menu and select Wireless Settings.
- Under WPS settings, put a check mark on Disable Router's PIN box.
Note: If your model does not have a "Disable Router's PIN" option, uncheck the "Enable Router’s PIN" box instead. - Hit Apply button to save settings.
This is what I'm trying to do, but the "Enable Router's PIN" checkbox refuses so stay unchecked. This was working on my router before upgrading from firmware v1.0.9.34.
So I can choose to protect myself from WPS vulnerability or all of the vulnerabilities addressed in the more recent firmware revisions. Is it too much to ask to be protected from all known vulnerabilities?
Out of pure curiosity, I decided to try the uncheck 'Enable Routers Pin'
There is clearly a bug here. I too can confirm that it does not stay unchecked on this new firmware. Unless of course Netgear have deliberately decided that this feature cannot be unchecked, but if that was the case, why have the option there in the first instance?
I never tried to uncheck the box on my previous firmware, v.64, so I cannot know if this is a carry over even from that firmware which preceded V1.0.9.88.
Yes, I share your frustration about wireless-functions like WPS is not working as expected on every update. But so far the latest firmware 1.0.11.100 has been rock solid and I haven't noticed any major issues. Stable, secure and speed is the most important to me, and I feel the WPS issue is more annoyance than a security risk.
I can only agree with Thornado's comments. This current firmware works absolutely fine for me in every other respect.
You never know, someone from Netgear might be reading this thread and investigate, or should I be holding my breath on this for weeks or months?......
- I agree it's an annoyance, I'm just happy that everything else is working great!
Thornado wrote:"... feel the WPS issue is more annoyance than a security risk."
That depends on the number and sophistication of the hackers in your neighborhood. :smileyhappy:
