Re: [PLUG] Wpa2 oops

brent timothy saner on 16 Oct 2017 11:34:44 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Wpa2 oops

From: brent timothy saner <brent.saner@gmail.com>
To: plug@lists.phillylinux.org
Subject: Re: [PLUG] Wpa2 oops
Date: Mon, 16 Oct 2017 14:34:29 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:openpgp:message-id:date:user-agent :mime-version:in-reply-to; bh=0Er2znlL+4d2p4kdmv1iEMShbKC6wX/5xP9qZOx/mKk=; b=LTYDpeM6CEib5tKotLeG59P9N97dnYs50iePJA6+s8I0ORuQEG+X9O+irP8OzHziYE 89PbHE+MjX9ReAiinqR8OJOGGQEA5o/Ex1s2xwNW0Cy3Cz8X3nPgaNUHavD9kNNsN6f2 HMeG699APZW8Ltj2EaiZw0C9Oo2ygvPQaNUya4z3zmPm0yLh4fGEbAbKiDmHYzehH/4C DZB8YiwAv0kVyZWHXLJ/7ySbtoTbYgrNBxw4hJWFj76lyiFkUpfH3ZrM9dVERfxorjPI PUDsIV4SuftmQWqrvNLC9UelGyTQusjDRBKZi74FembCZIZBG/iq6LAQKbwLN6TnqZiP 46GA==
Openpgp: id=748231EBCBD808A14F5E85D28C004C2F93481F6B
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.4.0

On 10/16/2017 02:29 PM, Keith C. Perry wrote:
> Brent,
> 
> Its looking slightly less bad- clients appear to be more of the problem but the AP's still need to be patched.  Everything, everywhere needs to be patched to be on the best footing so this going to be slow going.
> 
> https://community.ubnt.com/t5/UniFi-Routing-Switching/Krack-exploit-and-wpa2/m-p/2099840#M61285
> 
> The longer term risk would be older devices that do not get patched.
> 

yep! spoke to one of my infosec contacts and expected risk/severity
factor is only about 6.5/10 in his projection.

but just like with heartbleed, it could start out slow/not as serious in
scope and then snowball into something even bigger.

but yes, it mostly affects clients, but that's sort of worse in a way-
you can control the patching of your routers/WAPs much more easily than
that of the clients that will be connecting to you.

but you're absolutely right- think of how many people don't update their
phone firmware? and android 6.0 is especially vulnerable.

Attachment: signature.asc
Description: OpenPGP digital signature

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Wpa2 oops
  - From: "Keith C. Perry" <kperry@daotechnologies.com>

References:
- [PLUG] Wpa2 oops
  - From: jeffv <jeffv@op.net>
- Re: [PLUG] Wpa2 oops
  - From: brent timothy saner <brent.saner@gmail.com>
- Re: [PLUG] Wpa2 oops
  - From: Paul Walker <pjwalker76@gmail.com>
- Re: [PLUG] Wpa2 oops
  - From: Rich Freeman <r-plug@thefreemanclan.net>
- Re: [PLUG] Wpa2 oops
  - From: brent timothy saner <brent.saner@gmail.com>
- Re: [PLUG] Wpa2 oops
  - From: "Keith C. Perry" <kperry@daotechnologies.com>

Prev by Date: Re: [PLUG] Wpa2 oops
Next by Date: Re: [PLUG] Wpa2 oops
Previous by thread: Re: [PLUG] Wpa2 oops
Next by thread: Re: [PLUG] Wpa2 oops
Index(es):
- Date
- Thread