Re: [Discuss] Dan Geer's Blackhat talk, iGuardian "enterprise-grade" home router
Will definitely read this. Thanks. Eric Chadbourne On 09/12/2014 10:29 PM, d...@geer.org wrote: > Dan Geer, an occasional poster here, apparently gave a talk at Blackhat see Cybersecurity as Realpolitik, 6 August 2014 http://geer.tinho.net/geer.blackhat.6viii14.txt --dan ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss
Re: [Discuss] Dan Geer's Blackhat talk, iGuardian "enterprise-grade" home router
> Dan Geer, an occasional poster here, apparently gave a talk at Blackhat see Cybersecurity as Realpolitik, 6 August 2014 http://geer.tinho.net/geer.blackhat.6viii14.txt --dan ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss
Re: [Discuss] Dan Geer's Blackhat talk, iGuardian "enterprise-grade" home router
There are some points made that I don't agree with. Comparing his $150 box to a Juniper IPS that costs ten times as much (or more) is disingenuous. At the very least, his iGuardian isn't an HA solution like the SRX series. His box doesn't include a role-based firewall or central management. I could go on but I'd be wholesale quoting Juniper's sales literature. "Business grade"? Add a check mark next to the "buzzword compliant" line item. He lists frequent, easy updates as a feature yet it's an /embedded/ system, an OpenWRT fork which, as we've recently discussed, isn't easily updated. I'd forgive a lot if his iGuardian were running a live OS the way that pfSense does but going embedded? That's a big strike against it. "Cybercriminals want your data". No, they don't. They want your money. The rise of ransomware has demonstrated that it's easy to extort money from stupid people who click on every link they see. Ransomware is a PEBCAK situation. Good luck doing anything about it at the packet level. Overall: not impressed. -- Rich P. ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss
Re: [Discuss] Dan Geer's Blackhat talk, iGuardian "enterprise-grade" home router
Did the talk mention whether the iGuardian supports IPv6? On Fri, Sep 12, 2014 at 2:01 AM, Tom Metro wrote: > Dan Geer, an occasional poster here, apparently gave a talk at Blackhat > recently, which was covered on This Week in Enterprise Tech episode #105: > http://www.youtube.com/watch?feature=player_detailpage&v=YkIFOzAcJI4#t=1530 > > (His segment begins at offset 25:30.) > > A point of his talk is that small office/home routers are critical > infrastructure. He hits some of the same themes as I've heard in Jim > Gettys' talks on home routers. > > > The same episode also covers the iGuardian Kickstarter project that aims > to produce a $150 enterprise-grade home router that includes deep packet > inspection and regular updates: > http://www.itusnetworks.com/home > > Probably a good approach for non-technical people looking for a turn-key > solution. > > -Tom > > -- > Tom Metro > The Perl Shop, Newton, MA, USA > "Predictable On-demand Perl Consulting." > http://www.theperlshop.com/ > ___ > Discuss mailing list > Discuss@blu.org > http://lists.blu.org/mailman/listinfo/discuss > -- John Abreau / Executive Director, Boston Linux & Unix Email: abre...@gmail.com / WWW http://www.abreau.net / PGP-Key-ID 0x920063C6 PGP-Key-Fingerprint A5AD 6BE1 FEFE 8E4F 5C23 C2D0 E885 E17C 9200 63C6 ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss
[Discuss] Dan Geer's Blackhat talk, iGuardian "enterprise-grade" home router
Dan Geer, an occasional poster here, apparently gave a talk at Blackhat recently, which was covered on This Week in Enterprise Tech episode #105: http://www.youtube.com/watch?feature=player_detailpage&v=YkIFOzAcJI4#t=1530 (His segment begins at offset 25:30.) A point of his talk is that small office/home routers are critical infrastructure. He hits some of the same themes as I've heard in Jim Gettys' talks on home routers. The same episode also covers the iGuardian Kickstarter project that aims to produce a $150 enterprise-grade home router that includes deep packet inspection and regular updates: http://www.itusnetworks.com/home Probably a good approach for non-technical people looking for a turn-key solution. -Tom -- Tom Metro The Perl Shop, Newton, MA, USA "Predictable On-demand Perl Consulting." http://www.theperlshop.com/ ___ Discuss mailing list Discuss@blu.org http://lists.blu.org/mailman/listinfo/discuss