I had a few quick questions regarding the security of the Telus modem GUI (http://192.168...).
The IP uses "http", not "https", so I'm wondering how secure/safe it is to be updating my modem via the GUI. Or, is connecting to the GUI different than logging into a normal website account and thus harder for someone outside of my network to intercept the data if they wanted? I'm also curious if it's more secure to log into the GUI using an Ethernet connection as opposed to using WiFi.
Related to the above, I'm wondering how secure it is to have the Telus My-Wifi app. I like being able to see the devices on my network but am wondering how secure the connection between the app and my home network is if the GUI uses http. Or does the app use a more secure/encrypted connection with the network?
Thanks for your feedback, it's appreciated. Also, Happy New Year to you!
I believe that HTTP is fine for accessing your router as access is only permitted if you are on the local network. Your home network/computer would have to be compromised for this to be a concern. I don't think wired vs WiFi would make any difference security wise.
I can't comment on the My WiFi app as I'm unsure how it is connecting to your router.
Thanks for your feedback @FuzzyLogic, it's appreciated. Are there any signs to look for to see if a home network is compromised? Would the modem settings be different/changed, or things like the SSID passwords be different? Does it make sense in your opinion to be updating the admin and SSID passwords periodically just to be safe?
It's always advisable to change the default password. For me I consider that adequate as access is limited to your local network.
As for your local network security a good place to start would be the Telus My Wi-Fi app. It shows you all the devices that connected to your network over the last week. From there you can track down what these are and hopefully they are all valid devices.
My thoughts would be that the wireless network is the most vulnerable as someone outside your home can access it without making a physical ethernet connection. There are some ways to make your wireless network(s) more secure. Essentially change the SSID name, set it to NOT broadcast, and make the password very strong. Change them all from the default. Here are some tips: