NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
R7000 firmware updates from netgear
Can anyone tell me why netgear shows firmware 1.9.18 but shows a hotfix 1.9.20 available to download but router does not update automatically or manually detects from inside netgear software? I mean ...
- Trust me when I say "there is no security" only layers. But I understand where you are coming from. I've seen most of netgears updates containing bug fixes or errors other than real vulnerabilities and not telling slight details I suppose keeps them from being held responsible till it leaks out.
Opensource code is just that, open. Netgear uses opensource in many products. If the U.S. in my opinion wants better then custom inside house products need to be made. Parts and all, it's a good reason Bitdefender made their box2 in Romania. Their is reasoning behind knowing some details in changes from Netgear due to verifying procedures they keep and getting use to trusting them. Even ddwrt users get to inspect nightly changes. But I consider this resolved. No complaints or disgruntled just curious at Netgears practices of updates.
IIRC, they post the updates for manual download before they update their systems for automatic updates.
As to security fixes, it's common for companies to limit the details of the security fixes. This is to protect people who don't update immediately.
As to security fixes, it's common for companies to limit the details of the security fixes. This is to protect people who don't update immediately.
- I would think netgear would push out updates as they become available, as if it is ready to manually download makes sense to provide a HOTFiX asap?
As for not detailing security fixes, they sure post something if it's related in the media. I think they should give link to more detail about their changes. I'm concerned with the openx sharing of router analytics and auto updates if the company doesn't open up more about what they are doing. Too many useless services by default being used now like german telekom 20005 or ports 5000, afp etc or cisco stun...
Just wondering compared to other manufacturers why netgear is lagging in basics of security and making updates more visable without tearing apart chk or bin files etc.
TKoftheCarolina wrote:
I think they should give link to more detail about their changes.That would be a great way of telling criminals how they can attack unprotected routers.
You will find that the IT industry is careful about what it reveals on security issues. It has ways of sharing information about issues inside the industry before they get out into the media and other places where the bad guys hang out.
Just wondering compared to other manufacturers why netgear is lagging in basics of security and making updates more visable without tearing apart chk or bin files etc.You'll have to provide evidence for that one if you don't want it dismissed as unsubstantiated wild assertion from one disgruntled customer, or even a crook seeking back doors into Netgear's kit.
- Trust me when I say "there is no security" only layers. But I understand where you are coming from. I've seen most of netgears updates containing bug fixes or errors other than real vulnerabilities and not telling slight details I suppose keeps them from being held responsible till it leaks out.
Opensource code is just that, open. Netgear uses opensource in many products. If the U.S. in my opinion wants better then custom inside house products need to be made. Parts and all, it's a good reason Bitdefender made their box2 in Romania. Their is reasoning behind knowing some details in changes from Netgear due to verifying procedures they keep and getting use to trusting them. Even ddwrt users get to inspect nightly changes. But I consider this resolved. No complaints or disgruntled just curious at Netgears practices of updates.
