Home of the Squeezebox™ & Transporter® network music players.
Page 2 of 2 FirstFirst 12
Results 11 to 13 of 13
  1. #11
    Senior Member
    Join Date
    Apr 2005
    Posts
    447
    Quote Originally Posted by drmatt View Post
    Not true. The issue is all client not router.

    Anyway in a remarkable coincidence it seems most hardware squeezeboxes use such an old version of wpa_supplicant that they are not vulnerable to krack ....


    Transcoded from Matt's brain by Tapatalk
    BrainSlayer of DD-WRT updated his firmware to fix KRACK vulnerability. If paranoid, hardwire SB to bridge.
    Last edited by earthbased; 2017-10-20 at 12:08.

  2. #12
    Senior Member
    Join Date
    Apr 2013
    Location
    UK
    Posts
    1,002
    Ok but fixing the router can't prevent your clients being exploited.


    Transcoded from Matt's brain by Tapatalk
    --
    Hardware: 3x Touch, 1x Radio, 2x Receivers, 1 HP Microserver NAS with Debian+LMS 7.9.0
    Music: ~1300 CDs, as 450 GB of 16/44k FLACs. No less than 3x 24/44k albums..

  3. #13
    Senior Member Soulkeeper's Avatar
    Join Date
    Dec 2009
    Location
    Norway
    Posts
    1,221
    The faq seems to suggest otherwise, at least in part:
    It's possible to modify the access point (router) such that connected clients are not vulnerable to attacks against the 4-way handshake and group key handshake. Note that we consider these two attacks the most serious and widespread security issues we discovered. However, these modifications only prevent attacks when a vulnerable client is connected to such a modified access point. When a vulnerable client connects to a different access point, it can still be attacked.
    Update: The newest versions of the Linux based alternative OpenSource router firmware DD-WRT are not only patched against Krack, they also feature a selectable workaround to protect clients against attacks:
    Unfortunately this can cause interoperability issues and reduced robustness of key negotiation, hence the default setting of disabled.
    I have had this feature enabled for almost a day now, and I haven't noticed any ill effects yet. Naturally it's too soon to say for sure, but it looks promising.
    Last edited by Soulkeeper; 2017-10-31 at 08:56.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •