Another successful OpenBSD setup

I’ve been buying these little boxes from AliExpress for years to use as firewalls and routers. My oldest one is almost 9 years old now! OpenBSD installs just fine. Just a BIOS tweak to always boot up after power is restored.

@selfhosted #selfhosting #selfhosted #openbsd #runbsd

  • scrion@lemmy.worldEnglish
    71·
    7 months ago

    I was wondering… that tp-link probably negates anything remotely resembling security on its own. But yeah, you can update some of these noname boxes easily, others, not so much.

    I have dealt with (in a professional capacity) Chinese manufacturers that are under the impression they do not have to provide a working build tree for the kernel, let alone firmware, so its a gamble if you’re not talking to a major Chinese name brand. Mind you, I was ordering hundreds of those boxes, so there was some leverage.

    • MigratingtoLemmy@lemmy.worldEnglish
      111·
      7 months ago

      That TP-link is a dumb switch. Unless you’re telling me that someone is going to find an opening in the firmware and hack their way into the ARP table or something (in which case the threat model here just became state actors and I don’t think the OP is safe with this equipment), I don’t think it affects much, if anything.

      Now, if I’m mistaken and that is actually a managed switch; god help them with network security.

      • Link@rentadrunk.orgEnglish
        81·
        7 months ago

        It is a managed switch. What’s wrong with TP-Link managed switches?

        I have a basic Netgear managed switch for VLANs.

      • scrion@lemmy.worldEnglish
        6·
        7 months ago

        They do make managed switches, but just to be completely clear, my comment was mostly hyperbole. I just found the general combination of security - mindedness and cheap Chinese hardware curious / amusing.