NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

CarlE_01's avatar
CarlE_01
Aspirant
Oct 08, 2019
Solved

NightHawk R7000p - Http uses an insecure authentication procedure

I keep getting notifications from Lenovo and Bitdifender that my network "http uses an insecure authentication procedure" and tells me to update the software. I went checked for router updates and it says the router is up to date. Help, please. 

 

**I ran bitdefender Home Security Scan and it traced the risk back to the router**

  • michaelkenward's avatar
    michaelkenward
    Oct 09, 2019
    CarlE_01 wrote:

    Thanks for the feedback, hopefully I can clear it up.

     

    Not really. You have just repeated what we already knew and added a few bits of probably irrelevant detail.

     

    Try this:

     

    Search - NETGEAR Communities – Bitdefender

     

    Follow some of those items and you will see that this has been going on for years.

     

    Bitdefender makes money by scaring people. Perhaps with Halloween coming up we can expect to see more scary stuff around.

     

    In the meantime, you might like to Lenovo security, whatever that is, and Bitdefender and ask them what is going on.

     

     

     

     

     

     

13 Replies

  • michaelkenward's avatar
    michaelkenward
    Guru - Experienced User
    Oct 08, 2019
    CarlE_01 wrote:

    I keep getting notifications from Lenovo and Bitdifender that my network "http uses an insecure authentication procedure" and tells me to update the software. I went checked for router updates and it says the router is up to date. Help, please. 

     

    What firmware version do you have on the device?

    A number is more useful than "the latest". (It may not be by the time people read this.) There can also be newer versions, or "hot fixes", that do not show up if you check for new firmware in the browser interface.

     

    CarlE_01 wrote:

     

    **I ran bitdefender Home Security Scan and it traced the risk back to the router**

     

    They would say that, wouldn't they. This would not be the first false alarm from that source.

     

     

     

     

     

    • CarlE_01's avatar
      CarlE_01
      Aspirant
      Oct 08, 2019

      Hardware Version: R7000P

      Firmware Version: V1.3.1.64_10.1.36

       

      Thanks for the help, I appreciate it.

      About 2-3 months ago, when I bought the router, Lenovo & Bitdefender were not acting up like this. 

       

      • antinode's avatar
        antinode
        Guru
        Oct 08, 2019

        > I keep getting notifications [...]

         

           When you do what, exactly?  What's the whole, actual message?
        Copy+paste is your friend.

         

        > [...] from Lenovo and Bitdifender [...]

         

           "Lenovo"?  Really?

         

        > [...] it traced the risk back to the router**

         

           What's the whole, actual message?  Copy+paste is your friend.

         

           It's common to get complaints from a web browser when you use the
        router's management web site, because the browser is worried about your
        sending some user credentials over an unencrypted/insecure link
        ("http://" instead of "https://").  The easy thing to do is ignore the
        warning, and proceed.  Presumably, you're talking to your own gizmo on
        your own LAN.  If someone can overlisten to that traffic, then you're
        already in big trouble.  From your description, it's not clear what's
        emitting these messages which are bothering you, or why.