EFF wants hackers to help build an open, secure router2014-07-22 15:27 by Philip
Tags: EFF, router, hacker
The Electronic Frontier Foundation (EFF) is working on an open wireless router firmware that's designed to be a secure and flexible alternative to the existing software that runs on home and small business routers, much of which is notoriously insecure. The first experimental version of the firmware, called the Open Wireless Router was released Sunday and is mainly aimed at developers and hackers who can assist with finding bugs and improving the software overall.
One of the goals of the project is to provide better security than is available in most wireless router software. Cross-site scripting and cross-site request forgery vulnerabilities are quite common in wireless router firmware and attackers can exploit them to get access to the administrative functions of vulnerable routers. The Open Wireless Project includes some features to protect against XSS and CSRF attacks.
"Most or all existing router software is full of XSS [cross-site scripting] and CSRF [cross-site request forgery] vulnerabilities, and we want to change that," the EFF said Sunday in a blog post.
"EFF is releasing an experimental hacker alpha release of wireless router software specifically designed to support secure, shareable Open Wireless networks. This release is a work in progress and is intended only for developers and people willing to deal with the bleeding edge," it said.
"The software aims to do several things that existing routers don't do well - or don't do at all... We are offering this hacker alpha release to engage enthusiastic technical users who would like to help us test, develop, improve, and harden the Open Wireless Router."
Read more -here-