Zyxel's policy release for firmwares: can be improved?
Some says that bad luck does not exist. I'm asking myself if that's true for ZLD4.33
Announced ad the end of January, 7 months after 4.32, it has been... a quite rough way.
At the beginning of March was announced a patched version for addresing Wireless connection issues.
Middle april, XSS reference vulnerability
Beggining of June, "Patch 1 version" for SecuReporter
Ending of August, CGI vulnerability
But still, late october or end of the year is the release outlook for an updated version.
Starting from 4.x i was not very fond of the automatic update of the firmware (instead very fond of dual image capability) and the lack of availability on FTP server for firmware. But i get along with that.
But during this funny 2019 it's the fifth time that i have to update devices... which are supposed to update automatically. And they are not because no "official" version is released, only "patched" or "lab" or "WK"ish, and i have to contact someone, or look for some NextCloud or OneDrive for business to find them.
I understand that vulnerabilities can be found and need to be fixed. But if there's no automation in updating (even delaying that for a month, which can be chieved with configuration)... A vulnerable firmware is better then a patched one? Firmware release by Zyxel seems that't their song.
I hope that this "rant" won't hurt, it's a suggestion to improve. I don't like "Release Now, Fix it Later" approach, but this is keeping "keep not releasing even if released it's broken" ?
Comments
-
Hi @mMontana ,
Thanks for the suggestion. ?
Since the WK/Patch firmware is only for specific purpose. It would not in cloud update firmware list.
0 -
Ok. Now i'm ranting.
https://support.zyxel.eu/hc/en-us/articles/360002880180-I-can-t-use-Cloud-Firmware-Upgrade-due-to-an-error-message-ITS-installed-
Is this message due to WK firmware files installed on appliances?
0 -
Hi @mMontana,
Yes. Follow the steps in this guide to download the official firmware at myZyxel.com manually and upload it to USG.
0
Categories
- All Categories
- 426 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 345 USG FLEX H Series
- 290 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 404 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight