Turris Security report 2022/12

Another major update of operating system of router Turris - Turris OS 3.4 - was released today.

List of changes:

• Update of kernel to the latest version, added support for NEON instructions.
• Update and fixes of WiFi drivers.
• Added missing translations to Foris and generation of QR codes for the mobile app, added new plugin for generation of diagnostic reports.
• New minipots for uCollect - HTTP proxy, Squid proxy and Polipo proxy; minor fixes.
• Support for Turris Omnia in python-turris-gpio (modified version of RPi.GPIO library).
• Basic support for printing via CUPS.
• Fixed DNS records resolving and database handling in the Majordomo tool.
• Updater configuration added to backups, support for configurable backups.

Another major update of operating system of router Turris - Turris OS 3.3 - was released today.

List of changes:

• Update of kernel to the latest version.
• Fixes and improvements of updater-ng - collision solving, priorities support and other.
• Update of WiFi drivers to the latest LEDE version, Candela Technologies driver for ath10k.
• New minipots for uCollect - HTTP and alternative Telnet port.
• Added new DVB tuner drivers.
• QoS software Wondershaper replaced by SQM (Smart Queue Management).
• Basic support for local domain in Knot resolver.

We have seen a significant rise of the number of smart devices seen in our Telnet honeypot lately. Because of the large number of devices involved, we prepared a simple tool for verification if an IP address was seen in our honeypot, which would point to it being part of a botnet. You can check your IP address at AmIHacked.turris.cz.

Another major update of operating system of router Turris - Turris OS 3.1 - was released today.

List of changes:

• Fixed loading of the DVB modules on boot.
• Fixed linkage of miniDLNA with libraries.
• Added a missing cron script for logrotate.
• Fix of ddns-scripts's LuCI compatibility.
• Paths to the ip tool have been fixed in the mwan3 package.
• Package multiwan has been removed completely.
• Configuration file for Motion is not overwritten anymore by a new version of the package.
• Hostapd was updated to the latest version.
• Unbound's tool for DNSSEC anchor recovery has been fixed.
• Fixed random crashes in uCollect's plugin ucollect-fwup.
• Added missing modules for nginx.

Another major update of operating system of router Turris - Turris OS 3.0 - was released today.

List of changes:

• Update OpenWrt to the latest stable version 15.05 Chaos Calmer.
• Update of the upstream packages, deprecated and unmaintained packages have been removed.
• Package multiwan is deprecated so it was replaced by mwan3 (it is necessary to configure it again).
• Unbound - added support for fixing broken root anchor.
• GPIO ports were renumbered (their numbers in sysfs are higher by 256).
• Driver for IT913x DVB tuners replaced by kmod-usb-af9035.
• Enabled several hardening options for better security.
• Full version of the ip command is installed by default.
• Added support for IPv6 in nuci-tls - interface for remote monitoring and control.
• Updater now downloads lists of packages for opkg.
• Installed package metadata now contain hash of all installed files.
• Sleep command can take fractions of seconds as an argument.

Another major update of operating system of router Turris - Turris OS 2.8 - was released today.

List of changes:

• The configuration interface is made available to client applications.
• Complete localisation of texts in email notifications.
• Faster firewall updates.

Another major update of operating system of router Turris - Turris OS 2.7 - was released today.

List of changes:

• Lighttpd updated and configuration files reworked to make running custom services easier. Please read details on the forum.
• The multi-language support of user_notify fixed.
• MiniDLNA updated to version 1.1.4 - fixes problems with starts of the service.
• The firewall collects data from multiple WAN interfaces.
• Removed hash-checker utility.
• Generation of firewall DROP rules fixed.
• Added python-turris-gpio - a Python module to control GPIO ports.
• Minor fixes in uCollect and updater.

Project Turris withstood competition of 55 projects from the whole Europe and got an international award for innovation in cyber security and privacy. The jury praised not only the uniqueness of the solution but also our effort to expand the project to general public with the Turris Omnia.

You can read more information in the official press release.

Another major update of operating system of router Turris - Turris OS 2.6 - was released today.

List of changes:

• Changes in WiFi: more channels in 5GHz band, possibility to use WPA Enterprise authentication (wpad is now used by default).
• Packages list "Home automation" extended with Home Assistant application.
• Added Python package manager pip, added Python 3.
• Support for bilingual notifications.
• Fix of MAC address validation in Foris.
• Fix of uCollect online status detection.