[Solved] How can you be sure that an open source custom router firmware is valid?

How can you be sure that an open source custom router firmware is valid?

How can you be sure that an open source custom router firmware is valid, like no unwanted embedded code in it?

Its the same issue with all open source software. You rely on others from the community checking or you check yourself. I cover this in a lecture called trust and backdoors. Its a very valid question with no good answer.

That’s the whole point of “distributing trust” It’s best to trust no one but you still need to use software etc. So it’s as Nathan has been saying over and over in his lectures, basically put a small egg in a lot of baskets, that way you’re only putting a tiny bit of trust in a bunch of people, if you’re using a VPN for example, you have to trust that they won’t perform a MITM attack on you, among other things, if you’re using Tor, you have to trust the people behind the project that they are keeping things up-to-date in a timely manner etc. Anyway I think you get the idea.

What said! :slight_smile: