Hey All,
I recently purchased one of those generic Chinese fanless PCs/appliances from AliExpress after watching all of those awesome reviews by Patrick on YouTube. I’m making mine into a Pfsense router (for home use) and I’m currently in the process of getting it all setup. Being somewhat security conscious, I’ve recently developed a little paranoia about the fact it’s a no-name device from China. Knowing this, I bought my unit barebones and loaded my own copy of Pfsense. However, I do realize that it’s possible that there could be compromised hardware such as the BIOS (reference: Bloomberg - Are you a robot? ). I’d like to Flash the BIOS, but from what I've read that’s usually not possible and/or is not a surefire way to remove malicious code (if any). So, the only thing that I can think of that might put my fears at ease is to just packet capture (via WireShark) the WAN port for a few days while it’s connected to the internet to see if there are any suspicious “calls to home” or anything like that.
Am I just being ridiculous, haha? Do any of you have any suggestions on how to do a security audit of a device like this? Has anyone even heard of these devices having hardware hacks/viruses?
Here is the one I purchased (I got the i5 version):
https://www.aliexpress.us/item/3256804345487559.html
I recently purchased one of those generic Chinese fanless PCs/appliances from AliExpress after watching all of those awesome reviews by Patrick on YouTube. I’m making mine into a Pfsense router (for home use) and I’m currently in the process of getting it all setup. Being somewhat security conscious, I’ve recently developed a little paranoia about the fact it’s a no-name device from China. Knowing this, I bought my unit barebones and loaded my own copy of Pfsense. However, I do realize that it’s possible that there could be compromised hardware such as the BIOS (reference: Bloomberg - Are you a robot? ). I’d like to Flash the BIOS, but from what I've read that’s usually not possible and/or is not a surefire way to remove malicious code (if any). So, the only thing that I can think of that might put my fears at ease is to just packet capture (via WireShark) the WAN port for a few days while it’s connected to the internet to see if there are any suspicious “calls to home” or anything like that.
Am I just being ridiculous, haha? Do any of you have any suggestions on how to do a security audit of a device like this? Has anyone even heard of these devices having hardware hacks/viruses?
Here is the one I purchased (I got the i5 version):
https://www.aliexpress.us/item/3256804345487559.html