Don't look now, WPA2 has a gaping hole

Discuss various technical topics not related to Mozilla.
Post Reply
User avatar
Omega X
Posts: 8225
Joined: October 18th, 2007, 2:38 pm
Location: A Parallel Dimension...

Don't look now, WPA2 has a gaping hole

Post by Omega X »

User avatar
Grumpus
Posts: 13239
Joined: October 19th, 2007, 4:23 am
Location: ... Da' Swamp

Re: Don't look now, WPA2 has a gaping hole

Post by Grumpus »

From the following article but still scary ". . . The only main limitation is that an attacker needs to be within range of a victim to exploit these weaknesses."
Krack Attack
I believe I've seen this in action with a couple of local IPs which show up on the traffic monitor at initiation of the wireless connection or it could be similar.
Instead of using the normal ips for connection an unknown IP triggers sending the connection to the administration page of the wireless provider.
At this point connections can't be made to the rest of the Internet (Google, anywhere) unless the password or some administrative action is performed. Do not perform any actions or key input.
If you watch your connections it may help when an unknown IP forces a sign-up page or admin page and the best way to beat it is break the connection totally and record the IP.
I found a range of about 20 IPs and since blocking them haven't seen the issue. This is not the same as a captive portal - go to access page kind of thing.
Additionally I found a drop in speed indication when examining the connection information. It may be as little as 10 MB per second but you will not have your normal speed indicated. This is not down load or upload speed but the modem/router speed which should be a constant.
Doesn't matter what you say, it's wrong for a toaster to walk around the house and talk to you
Post Reply