Just tried logging into my modem today using secure https instead of standard http, and Firefox tells me that the certificate not only expired in 2013, but was issued in Shanghai, and uses the severely outdated SHA-1 algorithm. I've only had this modem for a few years. The Cisco website says they're based in California, though Comcast claims they have Chinese offices as well. So, anyone know why Comcast would be installing Chinese modems with expired certificates and SHA-1 encryption? If this weren't scary enough, because I'm running a fixed-IP server/router behind the modem, the installers recommended I set the modem firewall to the lowest setting, to allow everything to work properly. Thanks.
↧