Sigh, the amount of misinformation around KRACK is making me want to pull my hair out. "Stop using all WiFi! Never use public WiFi" *groan*
Show this thread
-
what does “openly accessible devices” mean in this case?
Like a NAS or something, especially with no authentication. An actual server you don't want others to have access to, and without TLS.
-
-
thank you very much! :) so as long as you were already locked down, continue continuing on?
-
Yes. I mean, update stuff of course, but there's no reason to OMG PANIC if updates aren't available yet.
- Show replies
New conversation -
-
-
I'm still confused, I thought the attacker can only force a client to join their fake network. How do they get access to LAN-internal stuff?
-
is it possible to execute the key reinstallation and have the client maintain their connection with the original network, then decrypt?
- Show replies
New conversation -
-
-
So what's the best practice nowadays for secure authentication to a home router, printer, or NAS?
-
HTTPS with user/pass (2FA optional). I find I've just been throwing random stuff on the internet behind nginx with Let's Encrypt.
- Show replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.