Drilling down on Uncle Sam's proposed TP-Link ban

Posted by todsacerdoti 13 hours ago

Drilling down on Uncle Sam's proposed TP-Link ban(krebsonsecurity.com)

158 points | 170 commentspage 3

ZeroConcerns 12 hours ago||

I don't have any particular opinion on TP-Link (never used their products), but the idea that a low-cost vendor targeting home and SMB users is somehow a state-level agent trying to compromise those users... needs evidence.

I mean, in the case of actors like Huawei, you can at least credibly make the argument that the continued access of their support staff to internal provider networks is a significant risk, but that vector is entirely absent here.

Sure, embedded firmware has been, is, and will continue to be a tire fire prone to embarrassing compromises, but containing those is mostly about notification and containment by government agencies (which the current US administration is doing their utmost best to kneecap) and/or large ISPs (which in the US have traditionally never cared).

Forcing "foreign" products off the market in favor of "domestic" replacements with the exact same, if not worse, flaws won't fix a thing, unless you put some pretty significant controls into place that nobody is willing to enforce or even outline.

hekkle 6 hours ago||

^^^THIS 100%. They are manufacturing low-cost products for home users. That is, if these claims are true, they have neglected a poignant question, why would they bother? They are targeting poor people's personal data, not businesses, not high-profile people, not government bodies.

thfuran 11 hours ago|||

But it does provide ample opportunity to profit personally, and that’s much more of a priority for the current federal administration than fixing anything.

hyruo 2 hours ago||

It's just another TikTok.

bethekidyouwant 11 hours ago||

I don’t get the end game here D-link isn’t any better. Are we heading for isp enforced hardware in our homes?

imagetic 11 hours ago|

God help us.

neuroelectron 5 hours ago||

Seems hard to overestimate their market when if you go to Walmart 75% of the routers they have in stock are TP link

vjvjvjvjghv 12 hours ago||

If only there were US manufacturers that could produce things at a decent price and didn't actively hate their customers.

medoc 12 hours ago||

The fact that TP-Link products are vastly better and cheaper than all their numerous competitors is indeed a bit strange. You have to either think that all the people at Linksys, Netgear, D-link, etc. are incompetents or that something a bit out of the ordinary is going on at TP-Link...

tacticus 3 hours ago|||

the other companies want higher profit margins.

vjvjvjvjghv 9 hours ago||||

I see that at the company I work at. US management at many companies is about doing the absolute minimum for a maximum of profit. It doesn’t allow for competence or long term investment so companies turn into empty shells.

dangus 7 hours ago|||

It’s not that unheard of. Does anyone make a better $999 laptop than Apple? Nope, the MacBook Air is faster and gets better battery life with zero fans and basically nothing on the market compares. That doesn’t make Apple “suspicious” more than any other company.

TP-Link is the best for the same reason Apple is the best. They just have the momentum of being in the lead.

I would also say that TP-Link isn’t wildly and unrealistically cheaper or anything.

Their prosumer/business Omada lineup is clunky and kinda sucks compared to Ubiquiti.

Zyxel WiFi 7 APs are more competitively priced than basically anything last I checked.

silisili 12 hours ago|||

Eero used to be pretty close. Years ago, I used to stalk the subreddit despite never owning an Eero just because the (US based) devs would often drop knowledge bombs. AFAIK they wrote the entire software stack in house.

I have no idea if that's still the case, especially post AMZ, but worth looking into if so.

havaloc 9 hours ago||

I miss the insider information. Some Redditors were not nice and they all left Reddit and their insider information stopped flowing, it's a shame, it was cool to see behind the development veil.

hdgvhicv 12 hours ago|||

I’m sure there’s some way to inject advertising - otherwise it’s just leaving money on the table.

ZeroConcerns 12 hours ago|||

I'm old enough to remember most cable modems and set-top boxes being manufactured in the US.

They were... not great...

blitzar 9 hours ago||

I am pretty sure the companies that made those, had a monopoly on them and charged $500 a piece went bankrupt too.

system2 12 hours ago||

There is, but corporate greed doesn't allow it.

burnt-resistor 10 hours ago||

Per company government acquisition "bans" are stupid for PR and security reasons. Brand-specific banlists are whackamole when the same hardware and software will be immediately duplicated with another cat-walks-on-keyboard brand name that will disappear within a year.

Instead, there should be in-depth, enforced audit, compliance, and evaluation standards for gear for particular purposes. If it doesn't meet particular standard(s), then it can't be purchased or used.

SilverElfin 11 hours ago||

I don’t like that TP Link routers regularly force you to accept new terms of service within their app. If you don’t, then you can’t access much of their configuration options. Basically you get locked out of your own device. I feel like these dark patterns should be illegal.

nickpsecurity 11 hours ago||

"TP-Link Systems told The Post it has sole ownership of some engineering, design and manufacturing capabilities in China that were once part of China-based TP-Link Technologies, and that it operates them without Chinese government supervision."

Is that even possible? Or do you always have to be on good terms with the Chinese government to own engineering, design, and manufacturing capabilities in China?

cratermoon 4 hours ago|

I don't see anything here that suggests TP-Link is especially bad at security. What I do see is anti-China fearmongering by GOP officials.

More comments...