Comment by zzyzxd
1 day ago
The biggest concern about Ubiquiti to me is still its software/infrastructure quality.
Off top of my head, besides all the UI/UX glitches:
- They once allowed a human employee to access static AWS root access key.
- Their employee once claimed "remote access" was end to end encrypted, but later people figured out they probably just meant TLS in transit.
- They had a configuration error that allowed some users to access other users' camera feeds. They corrected the error, but never explained how the hell was it even possible or if they made any architecture design change to prevent that from happening again.
Now, ZFS is nice. But even after years of iterations, I still need to do 50% of my operations via SSH on my Truenas system. I can't imagine Ubiquiti to do any better
Also a lot of vulnerabilities: https://app.opencve.io/cve/?vendor=ubiquiti
Yeah this is why I disable remote access and setup tailscale.
Its annoying but with Claude and a little knowledge you can make it persistent. By default it got wiped every update which was annoying.
I sold my Unifi APs, they broke DHCP over wifi multiple times. If you can't QA/Test basic 101 features like that, I have zero trust in your security.
What did you replace them with? I am starting to look into alternatives my self as I can see the noose they have around their user's neck's slowly starting to close.
If you are at home and want to do DIY you can put OpenWRT on quite a few of them in case you don't want to sell them or dump them as e-waste.
HPE Instant On is pretty nice. Zero problems over the last seven years. It literally just works, including seamless handoffs between multiple APs.
They’ve had router firmware updates that have borked networks a few years ago. Software QA processes weren’t up to snuff.