Wifi is totally insecure

[chan] general
Oct 16 23:44

http://money.cnn.com/2017/10/16/technology/wi-fi-flaw-krack-security/index.html but of course

[chan] general
Oct 16 23:45

"Android 6.0 and Linux are the most at risk, the report said."

[chan] general
Oct 16 23:50

... awaiting flurry of linux cultists to claim otherwise while calling the researcher, "Satan incarnate" or "Microsoft shill" or something like that.

[chan] general
Oct 16 23:57

WPA2 encryption for wifi is completely broken, basically it becomes as bad as using public wifi. This problem can be solved only with software patches for your phone and gadgets, so any gadget which will not be updated in the future - will have wifi traffic open to hackers. This includes old Iphones and Androids too, some old models will never receive required software update. Any information sent without additional encryption over such wifi can be listened by hackers. Basic example: login to webpage which does not have enabled https will reveal your password to hackers.

[chan] general
Oct 16 23:58

Tor users not affected.

[chan] general
Oct 17 00:03

> ... awaiting flurry of linux cultists to claim otherwise while calling the researcher, "Satan incarnate" or "Microsoft shill" or something like that. WPA2 specification for Linux and Windows is the same, devices running both these OS are affected the same way. If some article says otherwise - it is Microsoft shill indeed.

[chan] general
Oct 17 00:08

le differance: microsoft and apple patch it. linux patch might take ten years + you couldn't resist, could you, FSF/GNU/Hurd/Shitnix/open sores shill?

[chan] general
Oct 17 00:32

Quote from http://money.cnn.com/2017/10/16/technology/wi-fi-flaw-krack-security/index.html : Android 6.0 and Linux are the most at risk, the report said. "We're aware of the issue, and we will be patching any affected devices in the coming weeks," a Google spokesperson told CNN Tech. Meanwhile, Microsoft said customers who have the latest Windows Update, launched last week, and applied the security updates, are automatically protected. Apple confirmed the flaw has been patched on all its products and a fix will be available for everyone in the next few weeks. In other words - Android, Linux, Microsoft, Apple initially were affected the same way. Microsoft patched this only for devices with latest Windows Update (is it Windows 10 only? Are win7 and win8 affected? this information is very important, but not mentioned at all). "Apple confirmed the flaw has been patched on all its products and a fix will be available for everyone in the next few weeks" How can flaw been patched on all its products if it will be available for everyone only after few weeks? Does not logic. This means that there will be no patch for next few weeks. As I know Apple does not update outdated devices, so the word "all its products" is misleading too. Is should be "all its still supported products". Most popular Linux distributuves are already pathed, however there are no words about this in the article. Some discussion about Debian and Ubuntu distros: https://www.reddit.com/r/Ubuntu/comments/76r8q4/is_ubuntu_krack_wpa2_vulnerable/ In conclusion - this article is written by Apple shills. Popular Linux distributives are already pathed, Microsoft have pathed _something_ with latest windows update, but Apple will patch something in few weeks. Comments from Apple are provided in confused manner to make impression that EVERYTHING is patched ALREADY, when actually only the latest devices will be patched in few weeks.

[chan] general
Oct 17 08:21

The patch for linux already ran through. That about "ten years".

[chan3] general
Oct 17 14:27

Notice the specific version on Android, at least. Folks can upgrade.

[chan] general
Oct 17 14:28

Except when your phone is from some company that doesn't care about their shit and makes the phone basically obsolete the second you bought it, never receiving updates.

[chan3] general
Oct 17 14:29

Time to retire WPA2. New wifi crypto is needed ASAP.

[chan3] general
Oct 17 14:29

Sure they are. Data in the pipe isn't the only concern, necessarily. Consuming your wifi session could present additional risk to you, tor or not.

[chan3] general
Oct 17 14:30

While spec may be the same, implementations of that spec needn't be. While Android/Linux may be the same, go figure... and it'd make sense that MS wouldn't be using the Linux wpa supplicant.

[chan3] general
Oct 17 14:35

So you made a poor consumer choice and you want to blame everybody else? Fucking libtard.

[chan3] general
Oct 17 14:36

Can't retire it until we have a better solution.

[chan3] general
Oct 17 15:08

use djb's stream encryption algo like Salsa and profit

[chan] general
Oct 17 15:23

The problem here is not the ENCRYPTION, it's the HANDSHAKE. Swapping the encryption won't do jack shit.

[chan3] general
Oct 17 15:25

I stand corrected.

[chan3] general
Oct 17 15:32

NaCl lib could be a good start.

[chan] general
Oct 17 19:29

OpenWifi.

[chan] general
Oct 17 19:29

Does any of those contain something that addresses the problem at hand?

[chan] general
Oct 17 19:42

No. Because nothing we can do with wifi itself. The only thing we left with is lulzing. > If you use only secure websites -- that is, those that use HTTPS, instead of HTTP with a lock icon in the address bar -- you're protected from this vulnerability, according to the report. ... And yes, use VPN.

[chan] general
Oct 19 00:12

Well, good security practice says you should always consider your next hop as owned by Hitler. From this perspective, the KRACK attack only gets you more pregnant.

[chan] general
Oct 19 04:23

Silly rabit, the internet is insecure. Use VPN etc. The moment your packet goes to the internet router at your house etc, its available for sniffing/spoofing etc. SecDNS anyone? This just means you are not safer at your house than at a coffee shop.

[chan] general
Oct 19 04:26

use Qubes, it assumes the WIFI driver its self is hacked, zero day. So by the time your on the air interface, is no worse off.

[chan] general
Oct 19 10:54

Hitler did nothing wrong.

[chan] general
BM-2cW67GEKkHGonXKZLCzouLLxnLym3azS8r

Subject Last Count
Stop Fake News! Nov 20 15:04 1
The Russian Barbarity. Smolensk: The body of the Polish admiral was desecrated. Nov 20 15:01 1
Emily Nov 20 13:14 1
Tor replacement Nov 20 05:39 3
Landmark Worldwide Cult | rely maks ya think... Nov 20 04:47 1
Landmark Worldwide Cult Nov 20 04:38 1
Hollywood is turning black women into trannies Nov 19 21:57 5
Peter Šurda Nov 19 21:37 12
US Government resources for Zombie Preparedness Nov 19 19:46 1
bitconnect.co Nov 19 19:12 7
#elsagate cracked Nov 19 17:02 1
Remember Nov 19 16:31 5
SOON Nov 19 15:45 1
The NSA Nov 19 14:16 1
Decoding Twitter Account: https://twitter.com/GyKE69 Nov 19 13:58 5
https://www.youtube.com/watch?v=ufJjf9fYKxc Nov 19 12:57 1
vbcvbnbm,nv Nov 19 12:37 1
I AM HERE Nov 18 22:44 1
This is how they done it Nov 18 21:52 1
Leonard Nimoy Nov 18 11:08 5
North Korean defector had 'enormous amount' of parasitic worms in body Nov 18 09:29 1
Programming/hacking services provider Nov 18 08:23 2
Tranny Genocide Nov 18 03:17 1
teting codeword Nov 17 18:36 2
GENDER 101 COURSE SYLLABUS Nov 17 18:15 4
GENERAL FAILURE READING DRIVE A Nov 17 18:01 2
Flat Earth Society – Introductory Post Nov 17 17:59 4
Dear Guest: Nov 17 16:44 1
Rush Discography (1974 - 2012) mp3 320 kbps Nov 17 08:01 1
WTF is LBGTQ? Nov 17 04:01 12
Poland Pushes Back Against Putin's Special War Nov 16 20:07 2
HackThisSite.org Nov 16 13:14 3
teen girl white cotton panties Nov 16 12:56 1
Poland Must Be Alert Once Again to Protect Its Independence Nov 16 12:31 4
flat earth Nov 16 09:24 1
The Blue whale Game Nov 16 09:12 2
Tor Browser 7.0.10 is released Nov 16 08:21 1
BitMessage onionscan report Nov 15 23:36 18
Test Nov 15 23:14 7
eff63805060d0e8bada3fd9140bfd6c6 Nov 15 21:06 6
hello Nov 15 18:00 2
What should we do? Nov 15 17:30 1
Naked girl Nov 15 14:52 4
FourDigitPassword Nov 15 11:57 3
Leaks Nov 15 11:07 2
i2pd error Nov 15 05:53 3
«indisputable evidence» of U.S. Aid to ISIS Nov 15 05:53 1
All is A Will For Power Nothing More Nov 15 05:53 2
VPN, privacy & Firefox (+ other Gecko browsers)* rev. 0.3.13 Nov 13 10:38 1
VPN, privacy & Firefox (+ other Gecko browsers)* rev. 0.3.12 Nov 13 09:13 1
Your privacy - VPN & Firefox (+ other Gecko browsers)* rev. 0.3.11 Nov 12 19:29 1
weekend Nov 12 15:32 1
OTP PRACTICE ON WINDOWS Nov 12 14:52 7
Small Survival Ebooks Collection Nov 12 07:55 1
February 1997 Nov 12 07:02 3
03e3b4c5b30bbb7644f3f722900aca3a Nov 12 01:23 1
OPERATION RIGHT TO KNOW IS BACK! Nov 11 17:52 1
TOM DELONGE’S SERIOUS ATTEMPT AT UFO/ET DISCLOSURE Nov 11 17:47 1
Ddos/hack Nov 11 15:55 1
donate? Nov 11 04:53 4
Need help hacking a mobile game Nov 11 03:02 3
WARNING! OVER 300 TOR NODES COMPROMISED AFTER JOINT NSA-DGSE ACTION! Nov 10 21:27 8
Hello! :) Nov 10 21:27 2
Tor sucks. I2P sucks. Nov 10 19:21 1
WIKILEAKS - disinformation outlet Nov 10 19:12 1
https://www.itproportal.com/2014/05/14/microsoft-openly-offered-cloud-data-fbi-and-nsa/ Nov 10 15:42 11
I need help hacking this website Nov 10 06:14 1
Unit CryptUnit Nov 9 18:45 1
FATAL SECURITY ERROR Nov 9 18:36 1
Apple's Operating Systems Are Malware Nov 9 18:33 1
So you want to have "secure" software without having secure hardware first? Nov 9 18:29 3
https://www.whonix.org/wiki/Computer_Security_Education#Windows_Hosts Nov 9 17:35 1
[DELETED] Nov 9 11:57 2
Hacking programming services needed Nov 9 08:15 2
bitconnect coin (bcc) Nov 8 21:19 6
Dutch secret service tries to recruit Tor-admin Nov 8 21:18 2
facebook-upload-your-nudes-to-stop-revenge-porn Nov 8 18:50 2
Something is wrong on the internet Nov 8 13:52 4
RECOMMENDATION #0002 Nov 8 12:27 2
RECOMMENDATION #0001 Nov 8 12:05 1
ARCHWAY QUEUE BARGAIN Nov 8 07:58 2
Russian disinformation bullshit analysed in real time Nov 7 20:15 1
Friends of Dorothy Nov 7 14:20 3
Private chan or Public? Nov 7 14:14 5
[DELETED] Nov 7 12:06 1
lucky boy Nov 7 10:47 2
List of .onion websites Nov 7 09:05 5
The UFO 'subject' is total bullshit Nov 6 22:12 37
Stop anti-white racial slurs. Nov 6 15:55 3
I stopped eating canned tuna because of Fukushima Nov 6 13:27 2
hi Nov 6 10:16 5
MUH NUTZ Nov 6 06:28 11
BATHOS BACKSAW ODE STUBBORN CRAZE FRISKET Nov 6 04:10 2
SLMSL Nov 6 04:08 1
AXVEI Nov 6 04:07 1
OPALINE MU PIT ADAMANT DEMENTIA RAVING Nov 6 04:01 2
what is the encoding of the attached message? Nov 6 04:00 7
Many man smoke... Nov 5 23:23 1
How to examine bitmessage objects Nov 5 21:32 3
threaded view Nov 5 19:59 1