Gargoyle Forum

The router's root password is not dictionary-based, so that is less of a vulnerability. Also, there is actually is portal service running, since this is a semi-public shared wifi. Besides that, my concern is not so much that the user in question is capable of breaking WPA encryption outright, but th...

Hello, I'm having difficulties using a Fon 2201 running Gargoyle to manage shared wifi in the presence of one (or more) anonymous users who are evidently quite determined to run bittorrent. Blocking access based on MAC is not effective since the user(s) can change his/her MAC, and I'm trying to avoi...

Thanks for the prompt reply. I did read that the auth system is being refactored. The problem I'm having is that that I can not login with either either the existing root/admin password or a generic password like 'password.' When I connect to https://192.168.1.1/, I first get an htpasswd-style dialo...

I reflashed my Fonera+ to the bleeding edge firmware (upgraded from bleeding edge firmware circa May 09). Configuration settings were preserved by making a backup of the settings, reflashing, and then reapplying the backed up settings. I can not seem to login into the web admin console now. I get th...

That's good news. Is there perhaps an upgrade path from Gargoyle beta4 to the bleeding edge firmware that doesn't require re-flashing, e.g. just using opkg? I've made a number of manual tweaks to the config beyond what the web interface can control (as outlined in the original post), that I would ot...

I recently installed Gargoyle beta4 on a Fon+ 2201 as I am looking for a a decent QoS solution in a Fon-sized package. Since the Fon/Fon+ routers only have 13MB of RAM, the effectiveness of QoS depends very heavily on the available memory (I've noticed). So, here are steps I've taken to squeeze down...

I simply use a non-standard port for SSH on the WAN. However, this is little beyond security-thru-obscurity. Since OpenWRT (and thus Gargoyle) do not run a full sshd, but rather dropbear, and since the machine itself typically has very finite CPU, RAM, and disk resources, mechanisms against dictiona...

Here is a cached copy (via Yahoo) of the DroneBL announcement at http://www.dronebl.org/blog/8 This provides details of how the botnet infects more machines. They estimate *100,000* infected machines! http://74.6.239.67/search/cache?ei=UTF-8&p=http%3A%2F%2Fdronebl.org%2Fblog%2F8&fr=ubuntu&am...

From Slashdot: "The people who bring you the DroneBL DNS Blacklist services, while investigating an ongoing DDoS incident, have discovered a botnet composed of exploited DSL modems and routers. OpenWRT/DD-WRT devices all appear to be vulnerable. What makes this worm impressive is the sophistica...

Hello, thanks for the suggestion on brctl. I had actually just found out about that tool yesterday, and indeed it does indicate bridging between ath0 (wifi) and eth0.0 (wired LAN). root@frida:~# brctl show bridge name bridge id STP enabled interfaces br-lan 8000.001884a0b01c no ath0 eth0.0 So, going...