WPS broken, Not good anymore - all your wifi r bel

[BW]

It's true.

Yesterday came the first news:

New WiFi Setup Flaw Allows Easy Router PIN Guessing

"There is a newly discovered vulnerability in the WiFi Protected Setup standard that reduces the number of attempts it would take an attacker to brute-force the PIN for a wireless router's setup process. The flaw results in too much information about the PIN being returned to an attacker and makes the PIN quite weak, affecting the security of millions of WiFi routers and access points. Security researcher Stefan Viehbock

discovered the vulnerability (PDF) and reported it to US-CERT. The problem affects a number of vendors' products, including D-Link, Netgear, Linksys and Buffalo. 'I noticed a few really bad design decisions which enable an efficient brute force attack, thus effectively breaking the security of pretty much all WPS-enabled Wi-Fi routers. As all of the of the more recent router models come with WPS enabled by default, this affects millions of devices worldwide,' Viehbock said."

http://mobile.slashdot.org/story/11/...r-pin-guessing



That's pretty bad.

This morning after (today), attack tools were released.

Attack Tool Released For WPS Setup Flaw

"Just a day after security researcher Stefan Viehbock released details of a vulnerability in the WiFi Protected Setup (WPS) standard that enables attackers to recover the router PIN, a security firm has published an open-source tool capable of exploiting the vulnerability. The tool, known as Reaver, has the ability to find the WPS PIN on a given router and then recover the WPA passphrase for the router, as well. Tactical Network Solutions has released the tool as an open-source project on Google Code, but also is selling a more advanced commercial version."

http://mobile.slashdot.org/story/11/...wps-setup-flaw



heads up everybody

[BW]

Eight digits should produce 100,000,000 possible combinations, and testing various routers Viehböck found it took an average of around two seconds to test each combination. So brute forcing should take several years unless the router was particularly responsive.

But the protocol used by Wi-Fi Protected Setup reports back after the first four digits have been entered, and indicates if they are right, which means they can be attacked separately. The last of the eight digits is just a checksum, so having got the first four the attacker only then has to try another 1,000 combinations (identifying the other three digits) and the entire PIN is known.

That combination means that our attacker only has to try 11,000 different combinations to find the right PIN, reducing the attack time to a couple of hours.

[Solachica]

So ummm BW talk non geek language for me to understand wht this is nah.

[BW]

So ummm BW talk non geek language for me to understand wht this is nah.

Many routers now ship with a feature called WiFi Protected Setup (WPS). This feature makes it easy to secure your wifi network- so others can't get access your internet connection or home network unless you specifically allow it.

This feature is typically a 'push button' on the router that works with software on your computer to make setting up easier.

Many new routers come with this feature on by default.

Now here's the news:

Yesterday security researchers discovered a flaw in that feature. This flaw allows attackers to gain access to your home network and internet connection within a matter of hours, if you are using a WPS-enabled WiFi router.

In my mind, that means the feature is now broken. It is not good anymore.

[Solachica]

Oh I c

[lexbarker]

My home is Hard Wired in many locations. I only use the WiFi when I have to use my Pad or have visitors. This wireless thing is slowly cooking people.
If one wants to have more security, they could use the powerline network system (AC powerline in the house as the physical carrier).

[mammadon]

All one needs is WPA2 security, that is not so easy to crack.