this post was submitted on 30 Apr 2026
20 points (100.0% liked)

OpenWrt

627 readers
1 users here now

OpenWrt news, tools, tips and discussion. Related projects, such as DD-WRT, Tomato and OpenSAN, are also on-topic.

Rules

  1. Stay on topic: All posts should be related to OpenWrt and related projects, including DD-WRT, Tomato, OpenSAN, and more!

  2. No offensive or low-effort content: Don't post offensive or unhelpful content. Be nice - keep it civil and friendly!

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos.

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English, behind a paywall or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy: Do not share links or direct people to pirated content.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No affiliate links: Posting affiliate links is not allowed.

founded 2 years ago
MODERATORS
ijeff
inspector@gadgetro.id
20
Router firmware is the most underrated form of tech liberation most people ignore (self.openwrt)
submitted 2 days ago by AbsolutelyNotCats to c/openwrt
6 comments fedilink hide all child comments
 

Most people never think about what runs on their router, treating it like an appliance that just works. OpenWrt shows your network hardware can be something entirely different from the ISP surveillance node they shipped you. Running open firmware on a router puts you in control of your local network in a way proprietary OS updates on phones or laptops never will. That autonomy matters because the router sits at the choke point of your entire digital life. If we actually cared about privacy we'd be having very different conversations about the firmware running on billions of devices. When did you last think about what your router actually runs? #privacy #FOSS #techliberation #router #opennet

you are viewing a single comment's thread
view the rest of the comments
[–] Lodespawn@aussie.zone 2 points 2 days ago (1 children)

They also have the opportunity to inspect all of your VPN negotiation packets ..

[–] OwOarchist@pawb.social 2 points 1 day ago (1 children)

Okay, and that tells them what, exactly? They could figure out which VPN I'm using, but they already knew that -- all they'd need to do is look up the owner of the VPN server's IP address.

I'd surely like to hope that my VPN isn't so ass at security that username/password information would be passed unencrypted during connection negotiation. So the ISP isn't getting that.

Maybe they could use that to determine what OS my computer is running and a few other technical details, if those details are part of the negotiation? That's the closest I think they could come to any private information to harvest.

And, of course, they can tell how often I connect, how long I'm connected, and how much raw data gets uploaded or downloaded. But that's absolutely unavoidable.

... But the biggest thing here is -- having a compromised router doesn't make any of this worse. They can try to spy on my data all they want once it's sent to their servers. I don't see how trying to spy on me through my router improves anything. The router already only sees things that are headed to their servers anyway. So what do I care if the ISP's spyware is on the router or on their servers (or, more likely, both)?

I suppose the only slight difference is that running their spyware locally might very slightly increase the power draw of my router. So it would be slightly preferable to make them run the spyware on their own server in their own server farm, where they're paying the power bill.

[–] Lodespawn@aussie.zone 2 points 1 day ago

Yeah, they would never bother sniffing packets client side. But given most people tend to use their home router as their main network device rather than having it manage a DMZ and provide a gateway for a firewall protected network, compromising your router would be a good way to gain access to your devices. An ISP is probably unlikely to have any interest in doing that, 3rd parties on the other hand might be more interested (law enforcement, criminal groups, law enforcement connected hate groups ..). Given law enforcement might want compromised routers then they might be interested in forcing ISPs to comply.