I want to buy network equipment for my home, but I don't want there to be existing backdoors or backdoors added later. I am concerned a company like Eero for example could be persuaded by some three letter agency to add a backdoor that can be used to snoop my network traffic. Are there good open source options?<p>I'm looking at https://teklager.se/ for routers. But I can't find any good options for wireless access points?<p>Thanks for your help!
You can get a router and install OpenWRT[0] if you're concerned about the firmware. For commercial stuff without a custom firmware, there's no real telling without downloading its firmware yourself and going through it, and even then in many cases you're going to be unpacking a linux filesystem which may-or-may-not contain a backdoor in the clear. There will likely be proprietary blobs therein that you'd need to RE as well. That is a lot of effort, and that's assuming that the blobs are even available, full images, or not encrypted, which for many manufacturers many of those conditions are not met.<p>Then, I saw a post floating around this morning where you can build your own router from scratch. Interesting proposal... I think if you want true knowledge of whether or not something is back-doored, you'll need a lot lot lot of information on the provenance on everything in the thing :) which is a tall order.<p>[0] <a href="https://openwrt.org/supported_devices" rel="nofollow noreferrer">https://openwrt.org/supported_devices</a>
The suggestion in the other comment about OpenWRT is the way to go, but I will also suggest you can absolutely build your own router using a PC using OpenBSD or whatever you like. That's how it is done at scale.<p>Of course then you go down the rabbit hole of the ME/PSP is a backdoor independent CPU and OS.. except you're reading this on a machine using it.. so..<p>Don't worry too much about it. OpenWRT or a PC you put together.