由买买提看人间百态

boards

本页内容为未名空间相应帖子的节选和存档,一周内的贴子最多显示50字,超过一周显示500字 访问原贴
Living版 - 知道为什么wifi 摄像头不靠谱了吧
相关主题
求助: 一个好几天解决不了的问题. (转载)counter offer来了,比较纠结
wireless router 加密就上不了网,不加密码马就能连网。 咋回事?着急呀家里modem好像要坏了,给推荐个好使的吧。
大家看看我是不是要换modem和routerA few addition to xt Re: My deck ;)
推荐一款家用监视无线摄像头?Re: 请推荐工具
appraisal 一问 + plumbing inspection?Drive way cracks怎么修,大概多少钱?
请教,看的condo有以下问题能买么?Engineering Hardwood Floor的两种安装法
is anyone interested in buying coop in flushing, Queens, NY?给了offer后发现地基有裂纹,怎么办?
最近有没有买appliance的deal地基有裂纹再问-附图
相关话题的讨论汇总
话题: wi话题: fi话题: https话题: us话题: wpa2
进入Living版参与讨论
1 (共1页)
p*******m
发帖数: 20761
1
你的wifi 分分钟被黑 我的路由电脑都补丁了你的呢?
US government announces that your Wi-Fi is vulnerable to hacks
By Paul Hill · 7 hours ago 30
Everybody’s internet is public today. WPA2, the go-to Wi-Fi security option
, has been cracked by Belgian researchers. The US Computer Emergency
Readiness Team (CERT) has issued a warning in response and is due to release
more details about the vulnerability later today. The warning issued is
stark, saying that almost all implementations are affected. Now there are
calls for a superseding WPA3 standard.
On the researchers' website, the attacking is decribed in the following way:
Concretely, attackers can use this novel attack technique to read
information that was previously assumed to be safely encrypted. This can be
abused to steal sensitive information such as credit card numbers, passwords
, chat messages, emails, photos, and so on. The attack works against all
modern protected Wi-Fi networks. Depending on the network configuration, it
is also possible to inject and manipulate data. For example, an attacker
might be able to inject ransomware or other malware into websites.
The researchers tested multiple devices to see whether the vulnerability
impacted them. Initial research shows that Android, Linux, Apple, Windows,
OpenBSD, MediaTek, Linksys, are among those that are affected by some
variant of the attack. The researchers urge users to update devices as soon
as possible, but in reality, many devices will never see such a patch.
Here's a demonstration of the exploit being used against an affected device:
The statement from US CERT reads:
“The impact of exploiting these vulnerabilities includes decryption, packet
replay, TCP connection hijacking, HTTP content injection and others … most
or all correct implementations of the standard will be affected.”
In response to the news, one person proposed two solutions to the problem;
the first option is for the Wi-Fi Alliance to be given a list of everything
that’s broken in WPA2 and let them fix it, issuing new specs for the
standard for software manufacturers to implement. The second option was the
creation of an un-official WPA3 without the help of the Wi-Fi Alliance.
The proposal for option two reads:
“Free Software community has a wide range of networking software that
enables manipulation of Wi-Fi traffic. While some of it can be used for
nefarious purposes, we could as well use it to sketch up a prototype of WPA3
and push for it to get adopted. If you’re interested, I encourage you to
contact the discussion boards for projects related to Wi-FI manipulation and
see if they’re interested in this. Some of the projects that are related
include: ScaPy, WPA supplicant, OpenWRT. There’s definitely more of them so
if you know them, let me know!”
Going forward, you will likely only be able to use WPA2 on your home devices
for quite a while. In the meantime you can mitigate attacks by connecting
to internet resources over secure protocols such as HTTPS and SSL. In order
to use SSL for things such as email, ensure that you’re using port 465 with
SMTP, as for HTTPS, it’s recommended that you install EFF’s HTTPS
Everywhere, this will force many more connections to use HTTPS than your
browser normally would and allows you to disable insecure traffic in your
browser entirely.
1 (共1页)
进入Living版参与讨论
相关主题
地基有裂纹再问-附图appraisal 一问 + plumbing inspection?
有没有人自己做过acid stained concrete请教,看的condo有以下问题能买么?
请问brick/block foundation 有什么不好的吗?is anyone interested in buying coop in flushing, Queens, NY?
为什么我主卫的地面瓷砖总是湿乎乎的?最近有没有买appliance的deal
求助: 一个好几天解决不了的问题. (转载)counter offer来了,比较纠结
wireless router 加密就上不了网,不加密码马就能连网。 咋回事?着急呀家里modem好像要坏了,给推荐个好使的吧。
大家看看我是不是要换modem和routerA few addition to xt Re: My deck ;)
推荐一款家用监视无线摄像头?Re: 请推荐工具
相关话题的讨论汇总
话题: wi话题: fi话题: https话题: us话题: wpa2