As usual those exploits require the management interface to be open to the inter... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		somehnguy on May 18, 2023 \| parent \| context \| favorite \| on: What happened with ASUS routers this morning? As usual those exploits require the management interface to be open to the internet. Which you should never do to begin with on any router, and it isn't setup that way by default. Mikrotik is fine to have on WAN if you don't purposely make it insecure. Even Cisco has had similar vulnerabilities when you configure them in such a wrong way.

nubinetwork on May 18, 2023 [–]

And yet people still do it, hence the botnets...

somehnguy on May 18, 2023 | [–]

Yes, but my point is that there is nothing unique to Mikrotik here that makes using them on WAN a bad idea. Configure an Ubiquiti, Cisco, Aruba, Palo Alto, PfSense, etc in the same way and you're inviting trouble.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact