this post was submitted on 16 Aug 2024
691 points (98.9% liked)

Technology

59559 readers
4137 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

archive

If you have the August 13, 2024—KB5041580 update. You're good.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 3 points 3 months ago (1 children)

Then the instructions are bad. They should be how to open the firewall port for that device, which is almost the same as setting a NAT port forward, with the same limitation of only exposing one device.

[–] [email protected] 2 points 3 months ago (1 children)

Yeah, but that's going to involve knowing what the device is called on the router, or knowing what the address is.

I'm afraid the great age of computer literacy has come and gone.

If anything it makes me want routers to not even allow a blanket whitelist for all devices...

[–] [email protected] 2 points 3 months ago

If anything it makes me want routers to not even allow a blanket whitelist for all devices...

I would be fine with this. Make it as annoying as possible so people don't blindly follow a guide to disable the firewall.

  • Remove firewall disable option, and only allow it to happen by DMZ or bridging to another router that would have it.

  • Require calling in to an ISP help desk, where they ask why you want to do that, and explain in no uncertain terms that you're probably going to open a portal to hell or summon cthulhu. If you still want to, you have to read them out the device serial number, read out a unique code in the router admin interface, and wait a week for the option to become available.