Make a Contribution to Remove NSFW Ads

Tech people. What do you guys think of the "CUJO - Smart Internet Firewall"?

Notorious P.I.M.P.

Notorious P.I.M.P.

Rising Star
Platinum Member
I about to read up on it more but for now I'm wondering if anyone here has any knowledge or opinion of this device.

============================================================================







CUJO is a smart firewall that keeps your connected home safe. From smartphones to laptops, CUJO secures all devices against hacks and web threats. Plus, CUJO lets you control what your kids access online and keep them safe.

How CUJO Secures My Home:

CUJO analyzes your local network traffic data locally and in real time. It then sends statistics on that data to the cloud for further analysis. For your privacy as well as performance reasons, we don’t send the contents of those packets to the cloud. If a threat or suspicious activity is detected, CUJO will tell the cloud what it has blocked so you can receive a notification on your mobile app to confirm it.


https://www.getcujo.com/
 
"It then sends statistics on that data to the cloud for further analysis." Why? Regular firewalls have the analytics as part of the software they run on ... "For your privacy as well as performance reasons, we don’t send the contents of those packets to the cloud." For some reason I find this hard to believe ... :nose:
 
misterX said:
"It then sends statistics on that data to the cloud for further analysis." Why? Regular firewalls have the analytics as part of the software they run on ... "For your privacy as well as performance reasons, we don’t send the contents of those packets to the cloud." For some reason I find this hard to believe ... :nose:
Click to expand...

Some commercial firewalls are now actually doing this as well. Palo Alto does and it's about the best there is.
 
Short answer: Your "local" network is no longer local if it shares your traffic/protocols/application data with an outside source.

I wouldn't use it.

A firewall on a home network is overkill. Everything you need should/can be provided by a decent router.
 
HellBoy said:
Short answer: Your "local" network is no longer local if it shares your traffic/protocols/application data with an outside source.

I wouldn't use it.

A firewall on a home network is overkill. Everything you need should/can be provided by a decent router.
Click to expand...

A firewall is always a must , you know how many routers are leaking home networks on to the internet .

Get pfsense and throw it on a intel nuc .
 
misterX said:
"It then sends statistics on that data to the cloud for further analysis." Why? Regular firewalls have the analytics as part of the software they run on ... "For your privacy as well as performance reasons, we don’t send the contents of those packets to the cloud." For some reason I find this hard to believe ... :nose:
Click to expand...


Any router which doing cloud based DPI , walk away .
 
MrSid said:
A firewall is always a must , you know how many routers are leaking home networks on to the internet .

Get pfsense and throw it on a intel nuc .
Click to expand...
Leaking as in?

Are you saying they are sharing the MAC addresses (and more) from behind the NAT?

When I say firewall, Im talking hardware. Shouldn't anything calling home from a PC be the responsibility of endpoint security?

Also, yes please point me to the article on PA's being owned. I get their feed daily and I watch patch logs... haven't heard of anything in recent history.

Thanks
 
Last edited:
Routers will not route private IPs
Your connection is NATed to your WAN IP.
I turn off all ports in my router and allow only those needed to have my server and LAN to access the internet.
 
HellBoy said:
Leaking as in?

Are you saying they are sharing the MAC addresses (and more) from behind the NAT?

When I say firewall, Im talking hardware. Shouldn't anything calling home from a PC be the responsibility of endpoint security?

Also, yes please point me to the article on PA's being owned. I get their feed daily and I watch patch logs... haven't heard of anything in recent history.

Thanks
Click to expand...
Use Shodan to query the customer public ip range of your isp . Spend a few minutes using the default passwords of some of the routers you will find and also notice how many default features are always turned on . I have respect for most domestic appliances if we put effort into hardening them .

The pawning for the Palo Alto has been covered by SEO , and also the cvs was patched , same timeline as wen the juniper and cisco asa got pawned .
 
kain said:
Routers will not route private IPs
Your connection is NATed to your WAN IP.
I turn off all ports in my router and allow only those needed to have my server and LAN to access the internet.
Click to expand...
spot on about securing ports , hence why I said so many default features and also using default passwords .
 
MrSid said:
spot on about securing ports , hence why I said so many default features and also using default passwords .
Click to expand...
I change all the passwords and SSIDs and keys.
I was trying to find the password of the day numeric seed to get into the administrative part of my modem.
 
kain said:
Routers will not route private IPs
Your connection is NATed to your WAN IP.
I turn off all ports in my router and allow only those needed to have my server and LAN to access the internet.
Click to expand...
Exactly, thats why I didnt understand what he meant by leaking... leaking what. :)

MrSid said:
Use Shodan to query the customer public ip range of your isp . Spend a few minutes using the default passwords of some of the routers you will find and also notice how many default features are always turned on . I have respect for most domestic appliances if we put effort into hardening them .

The pawning for the Palo Alto has been covered by SEO , and also the cvs was patched , same timeline as wen the juniper and cisco asa got pawned .
Click to expand...
Yes, Im familiar with Shodan... I've looked up a few IP cameras.

The default user/pass is customer error driven and more susceptible to wardriving vs internet hacking. Not sure how a firewall would help that. Also wouldnt the public IP from the ISP be to the modem?
 
MrSid said:
The pawning for the Palo Alto has been covered by SEO , and also the cvs was patched , same timeline as wen the juniper and cisco asa got pawned .
Click to expand...

You talking crazy. Every firewall on the market gets patch damn near daily.
 
Last edited:
So is this the new normal for the world we live in? In order to be secure as possible shit like this may be necessary?

Also is it a big deal if I buy or not?
 
pissy drunk! said:
So is this the new normal for the world we live in? In order to be secure as possible shit like this may be necessary?

Also is it a big deal if I buy or not?
Click to expand...
IMO it is an unnecessary piece of hardware. This firewall opens up your home network to a company, who will no doubt monetize your information. "Secure" is relative. Those who want in, will get in. Your goal is to keep the majority out.
 
HellBoy said:
IMO it is an unnecessary piece of hardware. This firewall opens up your home network to a company, who will no doubt monetize your information. "Secure" is relative. Those who want in, will get in. Your goal is to keep the majority out.
Click to expand...


So what would you suggest to keep the majority out?
 
pissy drunk! said:
So what would you suggest to keep the majority out?
Click to expand...
Your home network is private IP space. The only IP the internet can see is your router. Make sure your router's user/pass are changed from the default. Keep the firmware updated as suggested by the vendor.

As for your PCs, make sure you use your (software) firewall.

You should be fine with these precautions.
 
Hide your wireless (turn off SSID broadcast), change the UID/PWD and secure ports you're not using and you won't need a firewall. Worst case if you do not want WAN traffic monitored use a VPN. A "home firewall" is a money sink for the uninitiated. Today most people have their ISP setup their home network and this is the most backwards practice I have ever seen. Comcast tech tried to tell me he couldn't give me the router password to the router I was paying for. I told him if he doesn't he can pack ALL that "ish" up and cancel my service.
 
200.webp
 

Make a Contribution to Remove NSFW Ads
You must log in or register to reply here.

Similar threads

BrownTurd
You probably want to keep your location turned off on mobile devices. Very creepy!
Replies
5
Views
177
BrownTurd
BrownTurd
lightbright
After 10-years of owning a smart TV I finally installed a VPN and it changed everything
Replies
22
Views
673
godofwine
godofwine
MASTERBAKER
South Carolina couple’s Halloween display sparks constant 911 calls, divides internet: ‘Should be illegal’
Replies
1
Views
121
MASTERBAKER
MASTERBAKER
lightbright
The N.S.A. warns you to stop using your iphone or android device if this happens
Replies
8
Views
260
lightbright
lightbright
DC_Dude
Data: The New Infrastructure of Control What a Palantir + DOGE unified data platform reveals about the future of power
Replies
1
Views
124
World B Free
World B Free
Back
Top