I understand all that, but even still, some vendors must be better at updating/patching their firmware than other's, right? I also read some, by design, use P2P to punch through firewalls exposing themselves, and I just want to avoid all of that... IN ADDITION to the recommendations you made.