PSA: Update your Wi-Fi Routers & Client OS

Not yet. But stay tuned, the list is getting updated as they hear.

Posted via the PriusChat mobile app.

 

Yawn. Much ado about nothing. Nearly everything private that comes out of my house goes out https. Besides, there's still a few WEP networks (older Comcast and AT&T equipment I suspect given the SSID) in my neighborhood, one is even open. What people need to know is there is no such thing as absolute security. WPA2 can be better hacked in a few hours.

It's simpler to live your life and accept that WPA2 is the best consumer wireless security we have available similar to credit cards with a chip are the best. They are not full proof. There's no such thing. Even Bitcoins can be hacked and they are encryption!

The chances of you being hacked are slim to none. Don't do obvious things like running Windows XP or do online banking at public wifi. Encrypt your home router with WPA2 and lock your Prius. Worrying about KRACK is like buying wheel locks for your stock Prius rims. No one wants them. They want the corporate business accounts with much more money on the line.

 

You guys do realize that @bisco and me are just dumbstruck and poleaxed, by this acronym onslaught, lol.

 

Meh.....

I used to be protected when I lived in the county because you had to park close enough to my house for me to see you in order for you to be close enough to listen in......inviting investigation.

I live in a neighborhood now and don't even bother to mask my SSID because I have the best alarm systems known to mankind........elderly retired neighbors with ankle biters that will both quickly and aggressively investigate abnormal things.
In counter-terrorism, they call this WIN-WIN.....or "what is normal.......what is not" and I never EVER presume that any activity conducted on the internet is private.

 

Do you mean update the firmware? Last firmware release for mine was released May 01, 2013. I think I'll just put on my inverted-collander helmet and try to look fierce.

Seriously, I guess it's wait-and-see for a few days, see if the manufacturers, or Microsoft, Apple, Google and whomever, come through with something.

 

Ah, erm, 20,000 eh.

 

Are there patches already? I thought it just got announced yesterday. There are many different clients and many different routers out there. How can I find the patches for my various clients and my router?

 

Microsoft has patches for all supported versions of Windows, according to the Verge.

Posted via the PriusChat mobile app.

 

So, my clients are Windows (7 and 10), Linux (Raspberry Pi running Raspbian) and Android (5 and 6). My router is an older Netgear WNDR4300v2. That's pretty diverse. I need patches from Microsoft, Google and Netgear (for an older piece of hardware). Let's see how this plays out.

 

SSID masking only keeps the honest people out as anyone that's touched Linux knows. Those of us that were/are WarDrivers (I was once #5 World Wide for network discoveries) can tell you SSID masking is worthless. It "might" keep your neighbors off your network, but that's about it. Anyone can boot up a distro of Knoppix with built in tools (or Kali, or Blackbox) and go to town on any signal they can see. I've never done it outside our own network for PEN testing, but it's not hard.

Based on what we've discovered and mapped since 2005 about 60% worldwide use WPA2 and a few more % use the older WPA and WEP.

All, if a patch is available from your manufacturer, patch your equipment. Don't be "that guy."