] Big flaw in WPA2
SMALL Update about Cisco Client workaround:
* Troubleshooting
TechNotes<https://www.cisco.com/c/en/us/tech/wireless-2f-mobility/wireless-lan-wlan/tsd-technology-support-troubleshooting-technotes-list.html>
Wireless KRACK attack client side workaround and detection
|
From: wireless-lan on behalf of Gertjan
Scharloo
Reply-To: wireless-lan
Date: Friday, 27 October 2017 at 09:49
To: wireless-lan
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Hi folks,
In a Cisco environment there is a workaround for the client vulnerability :
Workaround for CVE
ile/g.scharloo
twitter : wireless_kid
Beschikbaar : Ma | - | Wo | Do | Vr |
From: wireless-lan on behalf of Jake
Snyder
Reply-To: wireless-lan
Date: Thursday, 19 October 2017 at 15:24
To: wireless-lan
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
You have more faith in the WFA tha
971
>
>
> From: Marcelo Maraboli [mailto:marcelo.marab...@uc.cl]
> Sent: Wednesday, October 18, 2017 11:56 AM
> Subject: Re: Big flaw in WPA2
>
> if it were a Design Flaw, no patch can fix it we would need to upgrade to
> WPA3 or something.
>
> the fact tha
Maraboli [mailto:marcelo.marab...@uc.cl]
Sent: Wednesday, October 18, 2017 11:56 AM
Subject: Re: Big flaw in WPA2
if it were a Design Flaw, no patch can fix it we would need to upgrade to
WPA3 or something.
the fact that there is patch going on, is that either every implementation is
wrong
celo Maraboli
Sent: Wednesday, October 18, 2017 11:56 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
if it were a Design Flaw, no patch can fix it we would need to upgrade to
WPA3 or something.
the fact that there is patch going on, is that either eve
*Sent:* Monday, October 16, 2017 1:58 PM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* Re: [WIRELESS-LAN] Big flaw in WPA2
If this is a flaw in the design of the WPA2 protocol isn’t the fix
going to need to be made on both sides of the communication link?
Access points will all need to
FYI,
As it seems relevant here, below is excerpted from 'Cloudpath FAQ Security
Advisory 10-16-17_v2', which posted yesterday.
Best,
Rich
-=-=-=-=-=
How can Cloudpath help?
While this issue is severe and must be remediated, please note that there are
much easier ways to compromise the network.
ng Champions for Christ since 1971
>
>
> From: Tim Tyler [mailto:ty...@beloit.edu]
> Sent: Monday, October 16, 2017 9:57 AM
> Subject: Re: Big flaw in WPA2
>
> This brings up an issue where I have philosophically wondered if mac address
> authentication isn’t better
:* Tim Tyler [mailto:ty...@beloit.edu]
> *Sent:* Monday, October 16, 2017 9:57 AM
> *Subject:* Re: Big flaw in WPA2
>
>
>
> This brings up an issue where I have philosophically wondered if mac
> address authentication isn’t better than 802.11x (wpa2). The reason isn’t
> becau
Subject: Re: Big flaw in WPA2
This brings up an issue where I have philosophically wondered if mac address
authentication isn’t better than 802.11x (wpa2). The reason isn’t because it
guards the network better. But if one does get hacked at the point of
accessing the network, the consequences are
gt; be - as a University. They are:
> Community – Access – Diversity – Respect – Entrepreneurship
>
>
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Richard Nedwich
> Sent:
CAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Richard Nedwich
Sent: Monday, October 16, 2017 5:05 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Ruckus has posted an official response in a Blog Post
Ruckus has posted an official response in a Blog Post here:
https://theruckusroom.ruckuswireless.com/wi-fi/2017/10/16/commonsense-approach-uncommon-problem/
Further, please find a Cloudpath KB article on the Ruckus support site here:
https://support.ruckuswireless.com/documents/2039-faq-security
--Original Message-
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Chuck Anderson
Sent: Monday, October 16, 2017 3:08 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
It isn't a d
: [WIRELESS-LAN] Big flaw in WPA2
If this is a flaw in the design of the WPA2 protocol isn't the fix going to
need to be made on both sides of the communication link? Access points will
all need to be updated but also all client wifi drivers are going to need to be
updated on all wifi enabled de
behalf of Mike Cunningham
Sent: Monday, October 16, 2017 2:57 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
If this is a flaw in the design of the WPA2 protocol isn’t the fix going to
need to be made on both sides of the communication link? Access points wi
edu<mailto:steve.belc...@mail.wvu.edu>
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
on behalf of Chuck Anderson
Sent: Monday, October 16, 2017 3:07:55 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
I
ay, October 16, 2017 10:40 AM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
>
>
> >From Cisco:
>
>
>
> https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
>
>
>
>
>
&
right?
Mike Cunningham
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Stephen Belcher
Sent: Monday, October 16, 2017 10:40 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
>Fr
bject: Re: [WIRELESS-LAN] Big flaw in WPA2
Ruckus is providing a response today.
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/discuss.
**
Participation and subscription information for this
Ruckus is providing a response today.
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/discuss.
Listserv
> [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Turner, Ryan H
> Sent: Monday, October 16, 2017 6:51 AM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: [WIRELESS-LAN] Big flaw in WPA2
>
>
> https://arstechnica.com/information-technology/2017
SE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Cisco said they will release an official statement today.
Yahya Jaber.
CCIE Wireless.
055-869-7555
ITNC Engineering.
KAUST.
Sent from an Android
On Oct 16, 2017 17:10, "Norton, Thomas (Network Operations)"
mailto:tnort...@liberty.edu>
for Christ since
From: Norton, Thomas (Network Operations)
Sent: Monday, October 16, 2017 8:41 AM
To: The EDUCAUSE Wireless Issues Constituent Group Listserv
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
So basically those are work around as in the interim, so
EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Monday, October 16, 2017 7:10 AM
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Let the panic begin.
From: The EDUCAUSE Wireless Issues Constituent Grou
:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Turner, Ryan H
*Sent:* Monday, October 16, 2017 6:51 AM
*To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
*Subject:* [WIRELESS-LAN] Big flaw in WPA2
https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to
ituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Norton, Thomas
(Network Operations)
Sent: Monday, October 16, 2017 8:41 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
So basically those are work around as in the interim, so
SE.EDU] On Behalf Of Lee H Badman
Sent: Monday, October 16, 2017 7:10 AM
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Let the panic begin.
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WI
ld not be used.
TJ McClintic
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Monday, October 16, 2017 7:10 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Big flaw in WPA2
Let the pani
Let the panic begin.
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Turner, Ryan H
Sent: Monday, October 16, 2017 7:51 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Big flaw in WPA2
https
Yeah man, not good!
Looks like has a fix out already.
https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.arubanetworks.com%2Fsupport-services%2Fsecurity-bulletins%2F&data=02%7C01%7Ctnorton7%40liberty.edu%7C4d81ad0b15a14283e3ca08d5148c52a8%7Cbaf8218eb3024465a9934a39c97251b2%7C0%7C
https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/
Ryan Turner
Manager of Network Operations, ITS
The University of North Carolina at Chapel Hill
+1 919 274 7926 Mobile
+1 919 445 0113 Office
**
Participation an
33 matches
Mail list logo
