Recent Topics
Ipad covers
by daves87rs
36 minutes 44 seconds ago
Did I screw myself...
by NoNameJoe
Yesterday at 10:15 PM
Careers advice for Teenagers.
by Shannow
Yesterday at 09:09 PM
Mobil 0w40 $25.99 Cdn
by tcp71
Yesterday at 08:55 PM
Mixing a quart of PP 0w40 with Rotella T6 5w30
by slacktide_bitog
Yesterday at 08:51 PM
02 Censors?
by lawnguy
Yesterday at 08:06 PM
Canadian Rebates for Rotella T-5 and T-6
by Snagglefoot
Yesterday at 07:58 PM
Car buying and lessons learned
by madRiver
Yesterday at 07:52 PM
Check out my tree
by Chris142
Yesterday at 07:52 PM
New Starter Test Report Says Solenoid Fail
by chevys10
Yesterday at 07:43 PM
Fram Tough Guard Air filters for Canadians
by Snagglefoot
Yesterday at 06:40 PM
Recommendations for a Repossed Vehicle
by Astro_Guy
Yesterday at 06:36 PM
Added Bluetooth Audio Streaming
by The Critic
Yesterday at 05:27 PM
Lowest NOACK Synthetic 5W30 for Non - Turbo GDI ?
by ChrisD46
Yesterday at 04:57 PM
Dad commited suicide yesterday
by motor_oil_madman
Yesterday at 03:56 PM
What tool is needed to remove a hub bolt?
by llmercll
Yesterday at 03:55 PM
1998 Nissan Frontier chatter/driveline issues...
by MGPD03
Yesterday at 03:45 PM
2018 Chevy Equinox 1.5T mini-review
by road_rascal
Yesterday at 03:21 PM
Aftermarket belts Infiniti G35
by mb32
Yesterday at 02:58 PM
Mixing, example: Valvoline syn pre and post d1G2
by wemay
Yesterday at 02:56 PM
Newest Members
mowermon, Slashdotfx, Dilly, Amersham, Irene
64801 Registered Users
Who's Online
46 registered (bbhero, ArrestMeRedZ, 1JZ_E46, BAJA_05, 1WildPig, 5 invisible), 828 Guests and 32 Spiders online.
Key: Admin, Global Mod, Mod
Forum Stats
64801 Members
68 Forums
282040 Topics
4708711 Posts

Max Online: 3590 @ 01/24/17 08:07 PM
Donate to BITOG
Page 1 of 2 1 2 >
Topic Options
#4545048 - 10/16/17 11:21 AM WPA2 WiFi Hack & VPN Services
2015_PSD Offline


Registered: 09/26/10
Posts: 7135
Loc: SE Texas
With the announcement of a WPA2 hack I would surmise it will be some time before patches are available (if they ever are) for the massive number of devices affected. Although I do not have any state secrets to protect and realize that it will take some time before the hack is available widespread enough to affect me or others in an individual basis, it does tip the scales a bit towards enlisting a VPN service.

Does anyone here use a VPN service and/or have a recommendation for one? I see some lifetime offerings out there and I typically move about 1TB per month so I would want one to be "unlimited" in both bandwidth and number of devices which can be used simultaneously.

Thanks in advance for sharing.
_________________________
2018 MB AMG GLC43 3.0L Coupe - M1 0W-40/OEM
2018 MB C300 2.0L - Factory Fill
2015 F-250 6.7L PS Diesel - Delo 5W-40/CQ Blue
2014 Explorer 3.5L Limited - M1 AFE 0W-20/FU

Top
#4545060 - 10/16/17 11:29 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
StevieC Offline


Registered: 08/21/08
Posts: 17116
Loc: Ontario, Canada
IPVanish.com Been using them for years. Super fast servers in multiple countries. Easy to use software if you want 0 configuration.

Lifetimes are usually slow and unreliable because the servers are overcrowded. I have been down that road.

Wired is the only 100% security. There will always be a hack for wireless because it's across the air. Change your key frequently and use cyptic hex type passwords to make it harder to sniff out what the key is over the air, don't broadcast your SSID, and turn on MAC Address filtering. Although none of this is foolproof it makes it harder to get into your network. I take it one step further and restrict my LAN from wireless clients. I turn this off to do file transfers and then turn it back on so as to keep anyone that makes it onto my wireless netowkr, out of my other clients on the network.


Edited by StevieC (10/16/17 11:36 AM)
_________________________
'15 Dodge Journey - 90,000 KM's - SSO 5w20
'06 Hyundai Santa Fe - 535,000km - SSO 0w30 (R.I.P)

Top
#4545065 - 10/16/17 11:34 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
shrooms Offline


Registered: 01/26/10
Posts: 844
Loc: NEPA
Tor?
_________________________
2002 Mazda MPV. PUP 5W20, Fram XG2, Dex VI
2001 Honda Civic HX. M1 EP 5W20, Fram XG3717

Top
#4545066 - 10/16/17 11:34 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
bdcardinal Offline


Registered: 06/03/05
Posts: 10803
Loc: Santa Barbara, CA
I use Private Internet Access. Last month I did about 1400GB in traffic. Actually to the point I have been put on a data-cap from my ISP.
_________________________
2014 Ford Mustang GT Track Pack
1995 Ford Mustang GT

Ford/Mazda Parts Counter
NRA Benefactor Member
Opinions expressed are my own.

Top
#4545079 - 10/16/17 11:42 AM Re: WPA2 WiFi Hack & VPN Services [Re: StevieC]
2015_PSD Offline


Registered: 09/26/10
Posts: 7135
Loc: SE Texas
Originally Posted By: StevieC
IPVanish.com Been using them for years. Super fast servers in multiple countries. Easy to use software if you want 0 configuration.

Lifetimes are usually slow and unreliable because the servers are overcrowded. I have been down that road.

Wired is the only 100% security. There will always be a hack for wireless because it's across the air. Change your key frequently and use cyptic hex type passwords to make it harder to sniff out what the key is over the air, don't broadcast your SSID, and turn on MAC Address filtering. Although none of this is foolproof it makes it harder to get into your network. I take it one step further and restrict my LAN from wireless clients. I turn this off to do file transfers and then turn it back on so as to keep anyone that makes it onto my wireless netowkr, out of my other clients on the network.
Yep, all of that is already enabled (or disabled) on my network. Thanks for the information on the VPN. I will check them out.
_________________________
2018 MB AMG GLC43 3.0L Coupe - M1 0W-40/OEM
2018 MB C300 2.0L - Factory Fill
2015 F-250 6.7L PS Diesel - Delo 5W-40/CQ Blue
2014 Explorer 3.5L Limited - M1 AFE 0W-20/FU

Top
#4545080 - 10/16/17 11:43 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
StevieC Offline


Registered: 08/21/08
Posts: 17116
Loc: Ontario, Canada
thumbsup
_________________________
'15 Dodge Journey - 90,000 KM's - SSO 5w20
'06 Hyundai Santa Fe - 535,000km - SSO 0w30 (R.I.P)

Top
#4545084 - 10/16/17 11:47 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
OVERKILL Offline


Registered: 04/28/08
Posts: 35971
Loc: Ontario, Canada
From the actual disclosure:

Quote:
As a proof-of-concept we executed a key reinstallation attack against an Android smartphone. In this demonstration, the attacker is able to decrypt all data that the victim transmits. For an attacker this is easy to accomplish, because our key reinstallation attack is exceptionally devastating against Linux and Android 6.0 or higher. This is because Android and Linux can be tricked into (re)installing an all-zero encryption key (see below for more info). When attacking other devices, it is harder to decrypt all packets, although a large number of packets can nevertheless be decrypted.


That is sure to burn some bonnets.
_________________________
2016 Durango Limited
2016 Grand Cherokee SRT

Top
#4545096 - 10/16/17 11:59 AM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
OVERKILL Offline


Registered: 04/28/08
Posts: 35971
Loc: Ontario, Canada
Also particularly relevant here:

Quote:
Our main attack is against the 4-way handshake, and does not exploit access points, but instead targets clients. So it might be that your router does not require security updates. We strongly advise you to contact your vendor for more details. In general though, you can try to mitigate attacks against routers and access points by disabling client functionality (which is for example used in repeater modes) and disabling 802.11r (fast roaming). For ordinary home users, your priority should be updating clients such as laptops and smartphones.
_________________________
2016 Durango Limited
2016 Grand Cherokee SRT

Top
#4545109 - 10/16/17 12:17 PM Re: WPA2 WiFi Hack & VPN Services [Re: StevieC]
OVERKILL Offline


Registered: 04/28/08
Posts: 35971
Loc: Ontario, Canada
Originally Posted By: StevieC
IPVanish.com Been using them for years. Super fast servers in multiple countries. Easy to use software if you want 0 configuration.

Lifetimes are usually slow and unreliable because the servers are overcrowded. I have been down that road.

Wired is the only 100% security. There will always be a hack for wireless because it's across the air. Change your key frequently and use cyptic hex type passwords to make it harder to sniff out what the key is over the air, don't broadcast your SSID, and turn on MAC Address filtering. Although none of this is foolproof it makes it harder to get into your network. I take it one step further and restrict my LAN from wireless clients. I turn this off to do file transfers and then turn it back on so as to keep anyone that makes it onto my wireless netowkr, out of my other clients on the network.


Sniffing an SSID and spoofing a MAC are both extremely easy and provide a false sense of security. In fact hiding an SSID makes one more likely to be targeted because it screams "Important data here".

The best protection if one is forced to use WiFi is WPA2-AES with a complex key. Other measures such as using a security appliance to sniff/filter all traffic passing through a network aren't really viable in most consumer scenarios.
_________________________
2016 Durango Limited
2016 Grand Cherokee SRT

Top
#4545110 - 10/16/17 12:18 PM Re: WPA2 WiFi Hack & VPN Services [Re: shrooms]
JeepWJ19 Offline


Registered: 09/09/15
Posts: 899
Loc: PENNSYLVANIA
Originally Posted By: shrooms
Tor?


Does not help wifi security issues, and is not as safe as what people make it out to be.
_________________________
2002 Jeep WJ 4.0 | Mobil 1 HM 5w30 |
TG8A | 2.5" lift | 148k miles

Software Engineer :]

Top
#4545237 - 10/16/17 03:23 PM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
robertcope Offline


Registered: 01/10/08
Posts: 981
Loc: TX
Using a VPN service seems like a bit of an overkill. Almost any site that you access via the web that matters, for example, is going to be accessed over https (even BITOG) which adds another layer of security. I'm not saying this exploit does not matter, but I don't think it is anything to panic about, either. Of course, I've been wrong before...

Top
#4545284 - 10/16/17 04:24 PM Re: WPA2 WiFi Hack & VPN Services [Re: 2015_PSD]
BobsArmory Offline


Registered: 03/28/10
Posts: 1307
Loc: Michigan
I have used Nord VPN for a while now on my computers and cell phones with great success. My company requires that I use a VPN if I access their portal or work email using my electronics from their list of approved VPNs and Nord is one of them.
_________________________
Keeping the forces of evil at bay
2016 Chevy Malibu LT 1.5 Liter Turbo
2017 Chevy Equinox LT 2.4 Liter

Top
#4545296 - 10/16/17 04:32 PM Re: WPA2 WiFi Hack & VPN Services [Re: robertcope]
2015_PSD Offline


Registered: 09/26/10
Posts: 7135
Loc: SE Texas
Originally Posted By: robertcope
Using a VPN service seems like a bit of an overkill. Almost any site that you access via the web that matters, for example, is going to be accessed over https (even BITOG) which adds another layer of security. I'm not saying this exploit does not matter, but I don't think it is anything to panic about, either. Of course, I've been wrong before...
I used to think that but I do not anymore. With laws being passed that allow ISPs to sell information regarding your usage and other things a VPN is starting to make more and more sense.
_________________________
2018 MB AMG GLC43 3.0L Coupe - M1 0W-40/OEM
2018 MB C300 2.0L - Factory Fill
2015 F-250 6.7L PS Diesel - Delo 5W-40/CQ Blue
2014 Explorer 3.5L Limited - M1 AFE 0W-20/FU

Top
#4545298 - 10/16/17 04:33 PM Re: WPA2 WiFi Hack & VPN Services [Re: BobsArmory]
2015_PSD Offline


Registered: 09/26/10
Posts: 7135
Loc: SE Texas
Originally Posted By: BobsArmory
I have used Nord VPN for a while now on my computers and cell phones with great success. My company requires that I use a VPN if I access their portal or work email using my electronics from their list of approved VPNs and Nord is one of them.
Any limits?
_________________________
2018 MB AMG GLC43 3.0L Coupe - M1 0W-40/OEM
2018 MB C300 2.0L - Factory Fill
2015 F-250 6.7L PS Diesel - Delo 5W-40/CQ Blue
2014 Explorer 3.5L Limited - M1 AFE 0W-20/FU

Top
#4545315 - 10/16/17 04:44 PM Re: WPA2 WiFi Hack & VPN Services [Re: OVERKILL]
StevieC Offline


Registered: 08/21/08
Posts: 17116
Loc: Ontario, Canada
Originally Posted By: OVERKILL
Originally Posted By: StevieC
IPVanish.com Been using them for years. Super fast servers in multiple countries. Easy to use software if you want 0 configuration.

Lifetimes are usually slow and unreliable because the servers are overcrowded. I have been down that road.

Wired is the only 100% security. There will always be a hack for wireless because it's across the air. Change your key frequently and use cyptic hex type passwords to make it harder to sniff out what the key is over the air, don't broadcast your SSID, and turn on MAC Address filtering. Although none of this is foolproof it makes it harder to get into your network. I take it one step further and restrict my LAN from wireless clients. I turn this off to do file transfers and then turn it back on so as to keep anyone that makes it onto my wireless netowkr, out of my other clients on the network.


Sniffing an SSID and spoofing a MAC are both extremely easy and provide a false sense of security. In fact hiding an SSID makes one more likely to be targeted because it screams "Important data here".

The best protection if one is forced to use WiFi is WPA2-AES with a complex key. Other measures such as using a security appliance to sniff/filter all traffic passing through a network aren't really viable in most consumer scenarios.



thumbsup Thanks! smile
_________________________
'15 Dodge Journey - 90,000 KM's - SSO 5w20
'06 Hyundai Santa Fe - 535,000km - SSO 0w30 (R.I.P)

Top
Page 1 of 2 1 2 >