Supernetworks October Update
Oct 07, 2024 7:18 pm
hello!
We've spent the last weeks polishing up SPR to be better than ever. We've made the install experience smoother than ever before and cleaned up edge cases users can run into with SPR. We'll go over some of the key areas and discuss where we're headed from here in our roadmap
Table Of Contents
Version 1.0
Roadmap
Router (In)Security News
Version 1.0
This release represents many months of battle testing from our users. We thank you for your support and filing issues.
Here are the key things for 1.0:
- The setup experience is so much better now
- We've built out and reorganized our documentation, check out the new pages here: https://www.supernetworks.org/pages/docs/intro. Let us know what you'd like to see next!
- Mesh setup is TLS based now
- Numerous bug fixes for stability
Roadmap
Here's what you can expect in the next few months:
Software
PLUS Users:
- Parental Controls Plugin
- PFW will switch to a ReactFlow Based UX for routing&fw rules.
- Mesh over only wireless downhaul
Plugins
- More integrations for VPNs and networking tools. Here's our wanted list: https://github.com/spr-networks/super/issues/341
- Better Nzyme Tap Support (delayed by nexmon below)
- A new Nexmon release for the latest Linux kernels
Security
- As of v1.0 our production builds enter Sigstore's Rekor Log. The ISO digests and container digests produce signatures with both cosign and github's attestation tools. What's next:
- A feature flag for mandating authenticity verification for SPR's update process.
- We'll be evaluating bit-reproducible container builds for SPR as well
Hardware
- We're making community builds editions of our SPR ISOs for Banana PI r64, r3, r3-mini, and r4 hardware.
Router (In)Security News
Endless Router Bugs (@router_bugs)
- The biggest stories are the Volt Typhoon and Salt Typhoon takedowns. Volt Typhoon was a botnet used to attack ISPs and MSPs that started with insecure routers being breached and then pivoted into major ISPs & Managed Service Providers to target critical infrastructure. The Salt Typhoon operations focused on gaining entry to law enforcement's wiretap capabilities at ISPs and Telecom companies with Verizon and T-Mobile being breached.
- Critical RCE flaws in some D-Link Routers: https://x.com/router_bugs/status/1835823839483437350
- Critical RCE in some Aruba Routers: https://x.com/router_bugs/status/1839288318175199504
- GrayNoise Labs found & reported root command injection flaws over Bluetooth in Firewalla: https://www.labs.greynoise.io/grimoire/2024-08-20-bluuid-firewalla/
Need Help? Have A Feature Idea?
- We love your bug reports and feature requests, keep sending them in
- We've had several requests to run SPR on some RISCV gear and other hardware. If you'd like to help out get in touch