Re: How many home users *need* the admin password anyway ?
So how do you setup your WAN connection and at the very least DHCP scope on the LAN
with a second, higher quality Router that costs a bit more than the telco CPE (with its hardcoded telco backdoors, usually). The second NAT'd router is as protected/updated as possible, and the amazing pi-hole does the DNS-hole for the 25% of un-needed packets, and can optionally do the DHCP on the LAN
fritzboxes, Apple Extremes are reasonable choices for the second layer, and you can put a pfsense appliance inbetween the routers .... I tried
maybe others will recommend other devices, I was pleased to see that although the fruity company has stopped making their shiny routers, they did update the firmware last week (OK, two weeks ago "AirPort Base Station Firmware Update 7.9.1" of 30th May 2019)