Dailydave mailing list archives

Re: All Ur WiFi(WPA) R Belong 2 PacSec

From: "Stephen John Smoogen" <smooge () gmail com>
Date: Fri, 7 Nov 2008 09:41:52 -0700

On Fri, Nov 7, 2008 at 8:27 AM, Dave Aitel <dave () immunityinc com> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

This article has a good summary of the technique, for those not going
to Japan. While good work, it's not going to worry me if I have a WPA
network set up at home or as part of my business. At least, not yet
(and maybe not ever - we'll see :> ).

The other mitigating factors according to the article are:
 o It works like chopchop on small packets only
 o Busy networks might make it impractical
 o You can only send packets from the AP to the endpoints

http://arstechnica.com/articles/paedia/wpa-cracked.ars


Hmmm it would be interesting to see what kind of devices have a
higherlevel renegotiate .. as in I am told by the 'AP' that old WPA
key is no longer accepted but can you send in the clear or switch to
this new WPA key (or go to WEP or ROT13). Then you just set up your
directional attenae with a bigger generator and get everyone to start
talking to you outside the building versus inside.



-- 
Stephen J Smoogen. -- BSD/GNU/Linux
How far that little candle throws his beams! So shines a good deed
in a naughty world. = Shakespeare. "The Merchant of Venice"
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

All Ur WiFi(WPA) R Belong 2 PacSec Dragos Ruiu (Nov 07)
- Re: All Ur WiFi(WPA) R Belong 2 PacSec Dave Aitel (Nov 07)
  - Re: All Ur WiFi(WPA) R Belong 2 PacSec Stephen John Smoogen (Nov 07)
    - Re: All Ur WiFi(WPA) R Belong 2 PacSec Raul Siles (Nov 09)
    - Re: All Ur WiFi(WPA) R Belong 2 PacSec Cedric Blancher (Nov 09)
    - Re: All Ur WiFi(WPA) R Belong 2 PacSec wishi (Nov 11)
    - Re: All Ur WiFi(WPA) R Belong 2 PacSec neal wise (Nov 11)