Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Networking Google Wireless Networking Hardware

OnHub Router -- Google's Smart Home Trojan Horse? 123

An anonymous reader writes: A couple weeks ago, Google surprised everybody by announcing a new piece of hardware: the OnHub Wi-Fi router. It packs a ton of processing power and a bunch of wireless radios into a glowy cylinder, and they're going to sell it for $200, which is on the high end for home networking equipment. Google sent out a number of units for testing, and the reviews are starting to come out. The device is truly Wi-Fi-centric, with only a single port for an ethernet cable. It runs on a Qualcomm IPQ8064 dual-core 1.4GHz SoC with 1GB of RAM and 4GB of storage. You can only access the router's admin settings by using the associated app on a mobile device.

OnHub's data transfer speeds couldn't compete with a similarly priced Asus router, but it had no problem blanketing the area with a strong signal. Ron Amadeo puts his conclusion simply: "To us, this looks like Google's smart home Trojan horse." The smartphone app that accompanies OnHub has branding for something called "Google On," which they speculate is Google's new hub for smart home products. "There are tons of competing smart home protocols out there, all of which are incompatible with one another—imagine HD-DVD versus Blu-Ray, but with about five different players. ... Other than Bluetooth and Wi-Fi, everything in OnHub is a Google/Nest/Alphabet protocol. And remember, the "Built for Google On" stamp on the bottom of the OnHub sure sounds like a third-party certification program."
This discussion has been archived. No new comments can be posted.

OnHub Router -- Google's Smart Home Trojan Horse?

Comments Filter:
  • No place to plug the modem in?
    • Re:wan port (Score:5, Informative)

      by dreamchaser ( 49529 ) on Monday August 31, 2015 @08:01AM (#50425757) Homepage Journal

      That is what the lone ethernet port is for. They expect everything else to be Wi-Fi.

      • Re:wan port (Score:4, Informative)

        by Anonymous Coward on Monday August 31, 2015 @08:17AM (#50425857)

        If you plug your modem into the LAN port you're an even bigger idiot than the first guy. The blurb is wrong, RTFA it has two ethernet ports, one for LAN one for WAN. The article specifies it has one LAN port. Which is all a router needs.

        • If you plug your modem into the LAN port you're an even bigger idiot than the first guy. The blurb is wrong, RTFA it has two ethernet ports, one for LAN one for WAN. The article specifies it has one LAN port. Which is all a router needs.

          So, which LAN port routes to the DMZ, if it only has one?

          • by LiENUS ( 207736 )

            So, which LAN port routes to the DMZ, if it only has one?

            Depends on what you mean by DMZ, if you mean forwards all ports to, then it doesnt use a specific lan port, you tell it which device you want to be in the DMZ and it does it same as any router.

            If however you mean which port gets put in a separate vlan group so it can be on a separate subnet entirely... then none this is a home router if you want that functionality get something else. That's not home router functionality.

    • Re: (Score:3, Insightful)

      by gstoddart ( 321705 )

      That's probably the only ethernet port.

      Sorry, but this device is idiotic. It gives Google the ability to entirely remotely control your network from outside, is entirely designed to facilitate their own services, and will become a privacy nightmare ... because if they can access it, someone else can, and law enforcement will be able to go to them and say "OK, we need access to that network, you have to give it to us".

      This is the "bend over and take it" device which puts control of your home network in the

      • This is a terrible idea, and it's not something I'd trust even a little. This is all about locking you into Google, and making it easy for them to manage your home remotely.

        I would put absolutely zero trust in this device.

        People are dumb when it comes to technology. Maybe Google sees that there will be not only a need, but a requirement for a home network design/protocol/whatever that encapsulates the hardware we now get from our ISP of choice. We're entering the "internet access is a fundamental right" era. It's only logical to conclude that means highly regulated internet and, naturally, the need for a standard the government can leverage when they take over.

        I'm not refuting that it can lead to Google being able to turn ov

        • Re:wan port (Score:5, Interesting)

          by gstoddart ( 321705 ) on Monday August 31, 2015 @08:24AM (#50425907) Homepage

          It's like native encryption without backdoors ... if you build it right, you can't access it.

          If they build it so they can remotely administer your network, they are 100% guaranteed to have to hand it over later.

          Given the current context, there simply is now way in hell Google can build this device and not 100% know they're creating a device with a massive security backdoor.

          Unless they have created magical technology which they can access but which can't be hacked, and they can access to update it but which can't be provided to law enforcement ... what they've done is create a device which will be exploitable, and which is so heavily optimized to push their own services as to be a giant security and privacy hole waiting to happen.

          We need to be entering an era where our private home networks don't have remote admin passwords which can be used against us.

          If all of our stuff is going to be networked, having us be the gatekeepers for our own security is paramount.

          Because you can't design something intended to be remotely accessible and not expect there is a likelihood of someone else being able to access it.

          • by TWX ( 665546 )

            If all of our stuff is going to be networked, having us be the gatekeepers for our own security is paramount.

            Because you can't design something intended to be remotely accessible and not expect there is a likelihood of someone else being able to access it.

            The problem is there's currently no model of security that works for nontechnical users that doesn't involve an outside party. As long as there's an outside party there's a vector of exploit, even if it's simply the field service consultant jotting-down the passwords and keeping his notes as he leaves.

            What we need is a standard that allows for local-control to the exclusion of the original vendor or manufacturer for those of us that are capable of managing our own devices, while allowing nontechnical ow

            • by kqs ( 1038910 )

              The problem is there's currently no model of security that works for nontechnical users that doesn't involve an outside party.

              That's one problem. Another is that most technical users think that they are smart enough to get up security that can outsmart the NSA and hackers. 99.9% of technical users are wrong about that. And even if they're right, http://xkcd.com/538/ [xkcd.com]

              I suspect that almost all technical users would be safer if they used gmail or outlook.com rather than whatever home-brew imap/postfix thing they set up on their home or work Linux server (or Windows server or whatever). But we're uber-geeks so we'll pound our chest

              • by TWX ( 665546 )
                While you're not going to stop the extralegal beat-the-password-out-of-you vector, if you're not one of the few-hundred people on the planet that have been pushed that direction, right now in the United States there's no requirement to surrender passwords. Currently in the 11th circuit the court has found that the Fifth Amendment prohibits the requirement to produce passwords, and the rest of the circuits are not as yet ruled. Should there be conflicting rulings this would find its way to the Supreme Cour
                • by kqs ( 1038910 )

                  You're correct about passwords of course (though the Supreme Court has sided with law enforcement a lot), but that only matters if the Bad Guys can only get at your server while it is turned off and encrypted. If it is turned on (as most servers are), then they just need a remote exploit or physical access (or a logged-in phone). Or maybe a backup drive since people often forget to encrypt those. (Or they don't have a backup drive, their raid set dies, and we have another kind of failure.) Compare that

      • by LiENUS ( 207736 )

        It gives Google the ability to entirely remotely control your network from outside

        Where does it say google has control of your network remotely?

        • by Rand310 ( 264407 )
          You can only access 'your' router using the app on your phone. It seems unlikely that they'd push the app's traffic over the local network, rather give you the "feature" of being able to administer your network from anywhere on the internet. If you can change settings from anywhere, so can Google.
        • by TWX ( 665546 )
          Google's services are very much about communicating back with Google's servers. I don't think it's unreasonable to assume that this service is any different until we hear otherwise.
          • by LiENUS ( 207736 )

            There's an option in the app to disable any communication back with google. It apparently has crash reporting that you can disable in the privacy settings... Not exactly giving google control over your network.

        • by Anonymous Coward

          They can auto-update the router remotely.

          Are you brain-dead?

          • by LiENUS ( 207736 )

            So can just about any router out there nowadays. Most implement this by daily polling a remote server for the latest version if remote-ver > installed-ver pull and install. Not exactly remote control.

    • by Guspaz ( 556486 )

      The router has two ethernet ports. One for the modem, one to connect to something else (like a switch if you'd like).

    • Re:wan port (Score:5, Interesting)

      by Somebody Is Using My ( 985418 ) on Monday August 31, 2015 @08:55AM (#50426185) Homepage

      One Ethernet WAN port, one Ethernet LAN port, one USB port, and a jack for the power.

      While I understand Google's logic behind this, but that's really a deal-killer for me. Even though many of my devices are wireless, I still rely on wired connections when I want a stable, fast and (comparatively) secure connection. Sure, I could pair this up with a second router or switch, but if I'm paying $200 for the damn thing, I'd expect it to cover those basics.

      Of course, I was already wary about this just because it is a privacy-destroying Google device (having said that, I'm using Google's DNS servers in my current router so I probably don't have a leg to stand on in that regard). No web-based interface is a stupid idea too; touch-screen based interfaces are too fiddly for my liking. And despite TFAs claim that OnHub is "something you could put anywhere in your house without much embarrassment", I think the thing is hideously ugly. Anyway, in general I don't want people to see the networking infrastructure and a discreet flat box is much easier to tuck away than this round monstrosity. Not to mention the price is outrageous.

      I'm really not sure who this device is aimed at. Sure it is easy to setup, but ordinary users are unlikely to drop $200 on a wireless router when they can get one that works fairly well (and really isn't that hard to configure either) for $50 from Walmart (or included "free" with their modem). Meanwhile, everyone else is going to look at OnHub's dearth of features and configurability and then pick up more capable hardware.

      In short: No web-interface. Less Ethernet ports than an ASUS. Lame.

      • by Agripa ( 139780 )

        The best place for the access point is not likely to be the best place for the switch so the lack of multiple LAN ports does not bother me. My Nanostation also only has 1 LAN port although it was not really intended for use as a WiFi/WAN/LAN router.

        The privacy destroying aspects and lack of local configuration make it a deal-killer for me.

    • It should also be a cable modem to so one could connect your coaxial cable to it. It should be a weather prove box so I could put it on the outside of my house. Therefore I should not have to put coaxial or ethernet cables everywhere in my house. My television set should be able to be placed anywhere there is electricity since it should be able to connect wireless to the router. I should be able to connect the tv to cable tv or to my desktop computer. I should be able to buy wireless speaker that hav

  • So it's a slow, expensive router with no available wired ports and a bunch of Google spyware built in?

    • It has one available wired port. The blurb is wrong. The OnHub has WAN and LAN ethernet ports, allowing you to plug in one wired device (which can easily be a switch).

      • by ceoyoyo ( 59147 )

        Cool. So a slow, expensive router that needs additional hardware if you want to use more than one wired device, and a bunch of Google spyware built in?

        • Sorta, yeah, but the selling point is the smart home integration side of the equation.

    • by hughbar ( 579555 )
      Thanks, exactly echoes my thoughts. I'm in UK, Google has spying issues, tax issues, market distortion issues, I'll keep on buying Draytek for the moment, thanks.
  • by jabberw0k ( 62554 ) on Monday August 31, 2015 @08:19AM (#50425871) Homepage Journal
    Can someone please write a browser plugin that replaces "smart" with "Big Brother" ?
  • So basically... (Score:5, Insightful)

    by Maury Markowitz ( 452832 ) on Monday August 31, 2015 @08:21AM (#50425881) Homepage

    This is the Apple AirPort Extreme. Same basic performance, same feature set, same way to admin it same price.

    But because it says Google, we're supposed to believe this is part of some super-duper conspiracy to take over the world.

    Right.

    Or maybe Google just wants some of the market that Apple currently has, selling the same router you can get for $50 for $200, and being the best selling home router in spite of that?

    • by Gr8Apes ( 679165 )
      It is built by Google which has not come out and said anything about securing and protecting your privacy. They have said they use select information to provide better advertisements. I wouldn't buy Google anything, personally.
      • Re: (Score:3, Interesting)

        by leonbev ( 111395 )

        Yeah, I'm not sure why I want to pay $200 for an 802.11ac router with just one wired network port (which is basically twice the going price for most competing routers on Newegg) just for another opportunity to share even more Internet usage data with Google.

        It seems like thing should be cheaper than a normal router instead of more if it's advertiser subsidized. Yeah... it might not directly inject the ads itself, but you know that it's going to aid with ad targeting.

    • At least the Airport Extreme comes with 3 extra GigE LAN ports.

    • Well, it's strange it says Google. Didn't they just re-org so that Fiber and Nest are no longer under the Google name?

      And Apple is in a super-duper conspiracy to take over (your computing) world. That's their credo. "We will control everything, and it will just work."

    • Last time I looked, The Airport could at least be configured from an OSX computer instead of just mobile devices.

  • by Anonymous Coward

    Needs more than 1 ethernet port.

            -- Larry Page

  • So it will know when I go to bed, and to send me advertising for blankets if my thermostat is over 70?
    • by Anonymous Coward

      Future wise, your comment isn't too far off.

  • by EvilSS ( 557649 ) on Monday August 31, 2015 @08:58AM (#50426225)
    Should read: "OnHub Router -- Google's Trojan Horse?"
  • They should have built something to compete with Echo. Put in some good speakers and a microphone, then hook it up with the software they already have with Google Now so that you can ask it things with "OK Google," and then they have something. Now it's just a router.

  • I just read through again, and I didn't see a mention of 'OnHub's data transfer speeds couldn't compete with a similarly priced Asus router' in fact it raves about how you don't need a repeater to cover a whole house like you do with the Asus. No mention of it being slower though.. where did that come from?
  • Am I alone here in thinking that's ... idiotic?

    Okay, I have a heavy bias here. I don't use my phone much, and when I do, it's largely as a phone. I don't read my email on it unless I absolutely have to, I don't use it for web browsing, and it's not an entertainment platform for me, either games, music, or media. It's ... just a phone. Some of my coworkers see me as some sort of luddite for not hooking my work email into it.

    Maybe in the future when we start using it as an ID and credit card replacement,

  • I like it and want it to succeed. but I'll buy the cheaper knockoff that doesn't require an app and lets me install my own software a year or two later.

  • The Greeks didn't sell Troy a Trojan Horse, they left it outside for them to have for free.
    When you leave for work in the morning and find a Google OnHub on the front porch, and you didn't order it, then maybe it's a Trojan Horse.

  • Who, besides the legions of clueless lovers of the shiny, would let Google inside their networking gear?
  • Trojan horse? Seriously? ++Clickbait;

    From their own blurb:

    In the future, OnHub can support smart devices that you bring into your home, whether they use Bluetooth® Smart Ready, Weave, or 802.15.4. We also plan to design new OnHub devices with other hardware partners in the future. Stay tuned for news from our second partner, ASUS, later this year.

    In other words, they told the world up front that it's for home automation. So... Shock! Horror! It's for home automation!

    This thread is full from top to bottom of why the Alphabet name was created. The Google guys want to be able to sell neat hardware without the tremendous "Google will spy on meh!" backlash. If the hardware is designed, manufactured, branded, and sold by a company that ISN'T an advertising company, maybe people will be able

Avoid strange women and temporary variables.

Working...