![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
velusip
[H]ard|Gawd
- Joined
- Jan 24, 2005
- Messages
- 1,579
Key Reinstallation Attack
https://www.krackattacks.com/
Many vulnerabilities of WPA have been known for a while, but when coupled with this latest disclosure, WPA becomes effectively useless. Many vendors have been frantically pushing updates over the past two weeks (Microsoft, Apple, GNU/Linux distributions, and some Android vendors) and most were pushed as of Oct 10, but today the precise methods for attack were made public.
Just to be clear, WPA1, WPA2, and Enterprise, and all encryption variants are vulnerable (WPA-TKIP, AES-CCMP, and GCMP). You can read the paper about it here.
I can't provide details on how to patch every platform, but from mine experience:
* Archlinux is already patched. pacman -Syu
* Microsoft Windows released a flurry of security updates on Oct 10. You can run this command to compare your installed hotfixes and make sure you have it:
* dd-wrt is supposedly already patched. Grab a beta binary as of 2017-10-10 here. Of course take care not to brick. 
* LineageOS is patched. Reflashing is easy.
Of course many Android distributions are terrible, so ymmv. Apple devices are still in a bad way, too.
More resources:
* Lots of good info on this /r/linux thread
* An entire subreddit for tracking relevant info.
* Local threads: https://hardforum.com/threads/wifi-wpa2-cracked.1946031/ and https://hardforum.com/threads/dont-do-krack-breaking-wpa2-wifi-protocol.1946037/
https://www.krackattacks.com/
Many vulnerabilities of WPA have been known for a while, but when coupled with this latest disclosure, WPA becomes effectively useless. Many vendors have been frantically pushing updates over the past two weeks (Microsoft, Apple, GNU/Linux distributions, and some Android vendors) and most were pushed as of Oct 10, but today the precise methods for attack were made public.
Just to be clear, WPA1, WPA2, and Enterprise, and all encryption variants are vulnerable (WPA-TKIP, AES-CCMP, and GCMP). You can read the paper about it here.
I can't provide details on how to patch every platform, but from mine experience:
* Archlinux is already patched. pacman -Syu
* Microsoft Windows released a flurry of security updates on Oct 10. You can run this command to compare your installed hotfixes and make sure you have it:
Code:
wmic qfe get hotfixid, installedon* LineageOS is patched. Reflashing is easy.
Of course many Android distributions are terrible, so ymmv. Apple devices are still in a bad way, too.
More resources:
* Lots of good info on this /r/linux thread
* An entire subreddit for tracking relevant info.
* Local threads: https://hardforum.com/threads/wifi-wpa2-cracked.1946031/ and https://hardforum.com/threads/dont-do-krack-breaking-wpa2-wifi-protocol.1946037/
Last edited:
