This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Severe flaw in WPA2 - cracked

marko_teklic
New Contributor

‎10-15-2017 11:27 PM

when can we expect to see update for this https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-tra...
153 REPLIES 153

jakob_peterh_ns
Contributor II
In response to ruben_herold

‎10-17-2017 06:06 AM

Yes, they could have been out faster - but as the statement now say, it's only an issue if you turned on 802.11r on your SSID's or use Mesh networks (which, I hope, you don't).
How can you ask Ruckus to list what clients are affected??
Calm down, and be professional - there has been tons of security issues in IT in the past, and the world is not ending due to that.

If you have customers that rely on WPA only, then they deserve to be under attack.

steven_veron
New Contributor III
In response to ruben_herold

‎10-17-2017 06:17 AM

I"m sorry, but I don't agree with this. No one in this thread has asked Ruckus to list what clients are affected. The issue most have is Ruckus took so long to even acknowledge there was an issue. 
0 Kudos

jakob_peterh_ns
Contributor II
In response to ruben_herold

‎10-17-2017 06:22 AM

@Steven.
Yes, the post above, in which this is a reply to, asks:
* How to detect clients with this problem
* For which clients are updates available
Ruckus can never be the one to provide that info.

alexandra_frinc
New Contributor III
In response to ruben_herold

‎10-17-2017 06:32 AM

btw there is github repo maintaining a list of vendor responses: https://github.com/kristate/krackinfo . Go to Vendor Response Matrix and see client updates.

Regards, 
Alex

ruben_herold
New Contributor II
In response to ruben_herold

‎10-17-2017 06:35 AM

I think there should be a way, have you taken a look what other vendors do:

Q:  Can I detect if someone is attacking my network or devices?

A:  Aruba software checks for replay counter mismatches on a per
client basis and will produce a log message if detection is triggered. The log message begins with “Replay Counter Mismatches“, followed by additional details.

Aruba has also released new RFProtect (WIDS) features and signatures to help detect attacks.

for example.

Also it should be no problem to build a list with patches for the major systems
and publish them.

If I read this right:

"Here, the client will install an all-zero encryption key instead of reinstalling the real key."

They work with an all-zero key can this not be detected from the wirless system?
Copyright © 2024 Khoros, LLC