Welcome to TP-LINK Tech Support Forum
+ Reply to Thread
Results 1 to 2 of 2
  1. #1
    Junior Member captain! is on a distinguished road
    Join Date
    Dec 2017
    Posts
    8

    Thumbs up No Security at all? Really?

    Model :

    Hardware Version :

    Firmware Version :

    ISP : [/COLOR]

    I've been banging my head against the wall for a few hours now, and can find no way to enable HTTPS (secure http) to my TL-SG108E, which has access to ALL of my LAN traffic. It seems like a *really bad* idea to connect to a device in such a high position without enabling secure connections. I hope that I've just overlooked a switch to change the access method to HTTPS from HTTP. Please point me to it if that's the case.

    On a related note, connecting to THIS SITE exhibits the same lack of consideration for security. In this case, I'm pretty sure that I cannot enable HTTPS. I've tried changing my URLs by adding the S, but in every case I receive an error. When connecting with the basic HTTP all of my connections are, of course, unencrypted, and my user credentials, including passwords, are sent over the public Internet in plain-text!! :-/

    Does tp-link just not care at all about network security?

  2. #2
    Members R1D2 is on a distinguished road
    Join Date
    Dec 2015
    Posts
    1,643
    Quote Originally Posted by captain! View Post
    I've been banging my head against the wall for a few hours now, and can find no way to enable HTTPS (secure http) to my TL-SG108E, which has access to ALL of my LAN traffic.
    The TL-SG108E does not support HTTPS access to its web UI. If you need this, use a Smart Switch (e.g. TL-SG2008). But if some intruder can break into your LAN and place a MIT attack between your PC and the TL-SG108E (i.e. capturing your traffic on the Ethernet cable connecting both devices) you have a big problem anyway. Nobody can capture the traffic between your PC and the switch in an isolated LAN, even not if connected to the switch physically, except he has direct physical access to your single Ethernet cable connecting your device with the switch. Im sure you would notice it, if some guy sits beside you.

    It's not a hub, it's a switch, meaning no other device can see the unencrypted traffic between another device and the switch. What an intruder in your LAN could do is a brute-force attack to the switch's web UI, but he could do this also if the web UI would use HTTPS.
    Last edited by R1D2; 12-08-2017 at 14:42.


 

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Copyright 1996-2018 TP-LINK Technologies Co., Ltd. All rights reserved.