LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > General
User Name
Password
General This forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!

Notices


Reply
  Search this Thread
Old 10-18-2017, 10:19 AM   #1
brettjohnson
LQ Newbie
 
Registered: Jul 2017
Location: USA
Posts: 2

Rep: Reputation: 0
Exclamation What is KRACK Vulnerability and How WPA-2 was compromised


Anyone here is heard about the KRACK Vulnerability?
WPA2 encryption protocol was compromised by KRACK vulnerability because hackers can now decrypt the data but you can protect your IoT devices by avoiding connecting to Wi-FI routers and start using VPN of your devices. Here is the full brief on.
[removed]It may help you.
Thanks.
 
Old 10-18-2017, 11:08 AM   #2
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,873
Blog Entries: 12

Rep: Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032
it's been fixed already (at least for all 3 distros i use).
various threads on all linux forums exist.
 
Old 10-18-2017, 02:22 PM   #3
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,928
Blog Entries: 4

Rep: Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587
Remember that WPA2 was never really intended to be all that secure. It was devised to be an improvement to WEP, but to be compatible with hardware designed for WEP. The data-scrambling capabilities of wireless hardware are actually comparatively weak.

Anytime you are connected to a "secure" web site, the underlying content of your packets are encrypted using TLS, which is strong. If you use VPN, the content is also securely encrypted.

Most web sites these days including LQ are using encryption for everything, primarily so that users can be certain that they are, in fact, communicating with the real site and not a man-in-the-middle proxy. If you see a "lock" icon by the URL, then you know that all of the data you're sending to that web site has been securely encrypted before being handed to the network. "No one else in the coffee shop" can understand any of it, even if they filched it using this or any other WPA2 crack.
 
Old 10-18-2017, 03:03 PM   #4
PELinux64
LQ Newbie
 
Registered: Aug 2017
Distribution: Ubuntu
Posts: 9

Rep: Reputation: Disabled
It's not really a threat to my privacy. This is a real threat to my privacy:

KRACK is not the only security flaw you should be concerned about.

God bless the Russians for helping out our democracy.
 
Old 10-18-2017, 03:15 PM   #5
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,928
Blog Entries: 4

Rep: Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587
But also a great many of these exploits depend on the user in question being "an Administrator." (Which, in Linux parlance, is "a member of the ("I'm a big ...") wheel group.) And that restrictive policies are not in place.

In other words "your typical Windows user."
 
Old 10-19-2017, 10:34 AM   #6
dave@burn-it.co.uk
Member
 
Registered: Sep 2011
Distribution: Puppy
Posts: 601

Rep: Reputation: 172Reputation: 172
Quote:
In other words – "your typical Windows user."
I'm sorry but the "typical Windows user" does NOT have full administrator rights without either Logging on as Administrator with Adinistrator rights or by using so called "safe mode" which is restricted anyay.
 
Old 10-19-2017, 01:30 PM   #7
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth, unfortunately...
Distribution: Currently: OpenMandriva. Previously: openSUSE, PCLinuxOS, CentOS, among others over the years.
Posts: 3,881

Rep: Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063
Quote:
Originally Posted by dave@burn-it.co.uk View Post
I'm sorry but the "typical Windows user" does NOT have full administrator rights without either Logging on as Administrator with Adinistrator rights or by using so called "safe mode" which is restricted anyay.
The only problem with that is that, most Windows users I see, DO login under a "Administrator" account, as unlike most Linux/UNIX users, don't think about the rights, such a user account has. That's a fact.
 
Old 10-19-2017, 01:39 PM   #8
!!!
Member
 
Registered: Jan 2017
Location: Fremont, CA, USA
Distribution: Trying any&ALL on old/minimal
Posts: 935

Rep: Reputation: 355Reputation: 355Reputation: 355Reputation: 355
+1 #7 I think my XP only has a single Admin user; Idk: I never 'login'!!!
I personally hate that most Linux makes me waste effort typing in:
root\Nroot (or sometimes user\nuser)
My preferred distro mll has no /etc/passwd !!!

Edit: sorry, OT since #6. My apology for this reply.

Edit#2, to add something OnTopic:
"wpa2 dead" Thread: https://www.linuxquestions.org/quest...ad-4175615754/

Last edited by !!!; 10-19-2017 at 01:46 PM.
 
Old 10-19-2017, 01:42 PM   #9
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth, unfortunately...
Distribution: Currently: OpenMandriva. Previously: openSUSE, PCLinuxOS, CentOS, among others over the years.
Posts: 3,881

Rep: Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063
Quote:
Originally Posted by !!! View Post
+1 #7 I think my XP only has a single Admin user; Idk: I never 'login'!!!
I personally hate that most Linux makes me waste effort typing in:
root\Nroot (or sometimes user\nuser)
My preferred distro mll has no /etc/passwd !!!
Good point! (about WinXP that is)

Quote:
Edit: sorry, OT since #6. My apology for this reply.
Why?

Last edited by jsbjsb001; 10-19-2017 at 01:43 PM.
 
Old 10-19-2017, 01:47 PM   #10
dave@burn-it.co.uk
Member
 
Registered: Sep 2011
Distribution: Puppy
Posts: 601

Rep: Reputation: 172Reputation: 172
In order to ge FULL Administrator rights under Windows you must log in with the user name Administrator as well as have administrator rights. Anything else is only a subset.
 
Old 10-19-2017, 01:57 PM   #11
jsbjsb001
Senior Member
 
Registered: Mar 2009
Location: Earth, unfortunately...
Distribution: Currently: OpenMandriva. Previously: openSUSE, PCLinuxOS, CentOS, among others over the years.
Posts: 3,881

Rep: Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063Reputation: 2063
Quote:
Originally Posted by dave@burn-it.co.uk View Post
In order to ge FULL Administrator rights under Windows you must log in with the user name Administrator as well as have administrator rights. Anything else is only a subset.
Ah, David, It's the NT_AUTHORITY\System account that is the most powerful "Administrator" account under Windows and is a FULL member of the "Administrators" user group. Which "Administrator" accounts are also FULL members of. Also, you cannot use the NT_AUTHORITY\System as a normal 'login' account, as it is only used for system services/purposes.

https://social.msdn.microsoft.com/Fo...um=sqlsecurity

Last edited by jsbjsb001; 10-19-2017 at 02:14 PM. Reason: I forgot the "s" for "Administrators" group, LOL
 
Old 10-19-2017, 03:05 PM   #12
dave@burn-it.co.uk
Member
 
Registered: Sep 2011
Distribution: Puppy
Posts: 601

Rep: Reputation: 172Reputation: 172
I suppose you would argue that God is not the most powerful theoretical being, but God's creator???
 
Old 10-20-2017, 10:38 AM   #13
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,928
Blog Entries: 4

Rep: Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587Reputation: 3587
Skipping the theology of it all ... ... "Home Edition" versions of Windows have traditionally been most-compromised with regard to securability.

But ... "can you do sudo su?"
 
Old 10-20-2017, 08:39 PM   #14
frankbell
LQ Guru
 
Registered: Jan 2006
Location: Virginia, USA
Distribution: Slackware, Ubuntu MATE, Mageia, and whatever VMs I happen to be playing with
Posts: 18,403
Blog Entries: 28

Rep: Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808Reputation: 5808
The EFF published an article about this yesterday. They are concerned, but think much of the coverage borders on hysterical, if it doesn't actually cross the border.

https://www.eff.org/deeplinks/2017/1...-you-need-know

From the introduction:

Quote:
This week security researchers announced a newly discovered vulnerability dubbed KRACK, which affects several common security protocols for Wi-Fi, including WPA (Wireless Protected Access) and WPA2. This is a bad vulnerability in that it likely affects billions of devices, many of which are hard to patch and will remain vulnerable for a long time. Yet in light of the sometimes overblown media coverage, it’s important to keep the impact of KRACK in perspective: KRACK does not affect HTTPS traffic, and KRACK’s discovery does not mean all Wi-Fi networks are under attack. For most people, the sanest thing to do is simply continue using wireless Internet access.

Last edited by frankbell; 10-20-2017 at 08:41 PM.
 
Old 10-21-2017, 03:47 AM   #15
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,873
Blog Entries: 12

Rep: Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032Reputation: 6032
quick newbish question:
if my router is set up to allow only defined mac addresses to use wifi, is it still vulnerable?
 
  


Reply

Tags
iot, wifi problem, wpa2


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
WPA2 KRACK Bug (security update) zk1234 4MLinux 1 10-17-2017 04:27 PM
LXer: Researchers Reveal Critical KRACK Flaws in WPA WiFi Security LXer Syndicated Linux News 0 10-16-2017 08:12 AM
[SOLVED] APT Vulnerability CVE-2016-1252 - how to check if system is compromised joe_2000 Linux - Security 2 12-17-2016 03:44 PM

LinuxQuestions.org > Forums > Non-*NIX Forums > General

All times are GMT -5. The time now is 09:45 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration