aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--GET.md55
-rw-r--r--TODO.md4
2 files changed, 59 insertions, 0 deletions
diff --git a/GET.md b/GET.md
new file mode 100644
index 0000000..7207ad9
--- /dev/null
+++ b/GET.md
@@ -0,0 +1,55 @@
+# Shopping advices
+
+Security for the sake of others
+: NSA and processor-based randomness
+
+Lack of security
+: phones where modem can read system memory
+
+Weak design
+: bluetooth keyboard
+: Speculation in recent CPUs
+
+## Easy
+
+Concrete options with the least hassle.
+
+Router
+: Weak: GL.iNet [GL-AR150][] w/ vendor-provided OpenWRT-based system
+: Strong: Turris [Omnia] w/ vendor-provided OpenWRT-based system
+
+
+## Better
+
+Concrete options with better qualities,
+which requires technical help or patience.
+
+Router
+: Weak [tricky start]: GL.iNet [GL-AR150][] w/ OpenWRT
+: Medium [tricky start]: TP-link TL-WR1043ND w/ LibreCMC
+: Medium [tricky]: [Olimex LIME2][lime2] w/ Debian (f.eks. FreedomBox)
+: Strong [tricky]: Turris [Omnia] w/ Debian (f.eks. FreedomBox)
+
+
+# Trust paths
+
+ * Debian secured by PGP Web-of-Trust
+ * Debian operates transparently - "Security through mockery"
+ * Free software - "Given enough eyeballs, all bugs are shallow"
+ * [Open Source Hardware][oshw] helps ensure [longevity][ifixit]
+
+
+[GL-AR150]: https://www.gl-inet.com/ar150/
+ "GL-AR150 Mini Smart Router, by GL.iNet"
+
+[lime2]: https://en.wikipedia.org/wiki/OLinuXino#A20-OLinuXino-LIME2
+ "OLinuXino LIME2, by Olimex"
+
+[Omnia]: https://www.turris.cz/en/omnia/
+ "Omnia router, by Turris"
+
+[oshw]: https://www.oshwa.org/definition/
+ "Open Source Hardware definition by OSHWA (Open Source Hardware Alliance)"
+
+[ifixit]: https://www.ifixit.com/
+ "IFIXIT - The free repair guide for everything, written by everyone"
diff --git a/TODO.md b/TODO.md
new file mode 100644
index 0000000..4b3279e
--- /dev/null
+++ b/TODO.md
@@ -0,0 +1,4 @@
+ * document recommendation for BQL-supported network devices
+ * document how to check if BQL is supported:
+ grep -vx 0 /sys/class/net/*/queues/tx-*/byte_queue_limits/limit
+ * maybe enable CoDel only for BQL-supported network devices