Critical WPS vulnerability discovered in Bell Canada Home Hub routers and works even if WPS is disab
13 replies, posted
[url]http://www.neowin.net/news/critical-wps-vulnerability-discovered-in-bell-canada-home-hub-routers[/url]
[quote=Neowin]In recent years, Wi-Fi has gained attention mainly due to the increased speeds afforded by the 802.11n and 802.11ac specifications. This has seen a flurry of new hardware hit the market enticing owners of older 802.11a/b/g hardware to upgrade to the latest and greatest kit.
However, Wi-Fi has seen numerous security setbacks throughout its lifetime.
...
As such, the standing recommendation for any new Wi-Fi network has been to use WPA2+AES to ensure maximum security against attacks of any nature.
Unfortunately, it seems as though owners of the Bell Canada Home Hub 1000 and 2000 series routers may be in for a rude surprise. According to an anonymous user on DSL Reports and SergeantAlPowell on Reddit, a vulnerability in WPS (Wi-Fi Protected Setup) has been discovered that can compromise networks that have been secured with WPA2+AES.
Despite WPS being disabled, it seems that these Home Hub routers continued to respond to WPS requests. Furthermore, a default PIN of "12345670" coaxed these routers into supplying the passphrase that could be used to connect to the corresponding Wi-Fi network.[/quote]
WPS has always been a mess in implementation.
[QUOTE=Levelog;49364600]WPS has always been a mess in implementation.[/QUOTE]
Its because it's not an official IEEE standard
I don't actually understand what WPS is. Aren't you meant to get up, physically press some buttons, and pair it that way? How is that easier than just typing the password in?
[QUOTE=SGTNAPALM;49365335]I don't actually understand what WPS is. Aren't you meant to get up, physically press some buttons, and pair it that way? How is that easier than just typing the password in?[/QUOTE]
i think the idea is that its easier to use for less technology literate people, as they dont have to remember any passwords
too bad its a huge failure and sucks
[QUOTE=SGTNAPALM;49365335]I don't actually understand what WPS is. Aren't you meant to get up, physically press some buttons, and pair it that way? How is that easier than just typing the password in?[/QUOTE]
[I]That[/I] method with the button is fine.
The issue is that there are alternative modes that just want 8 decimal digits and answer whether they're correct after four digits each. I don't think I have to point out just how bad that idea is.
They basically want two 4-digit passwords instead of one 8-digit password. This doesn't just halve the security, it at minimum makes it 16x weaker.
I like WPS because it is a pain to pull our router all the way out and read the code on the very back. Our home router is also a modem supplied by our ISP with an unchangeable key.
[QUOTE=Karmah;49366735]I like WPS because it is a pain to pull our router all the way out and read the code on the very back. Our home router is also a modem supplied by our ISP with an unchangeable key.[/QUOTE]
I've only heard bad things about ISP provided WAPs, best case is buying your own modem (instead of renting one they provide) and buying your own wap/router, this gives you hardware independence from them, and allows you to get more secure devices.
If its a cable modem the ISP can overwrite the firmware regardless of whether or not you initially own it.
[QUOTE=Map in a box;49367184]If its a cable modem the ISP can overwrite the firmware regardless of whether or not you initially own it.[/QUOTE]
That's why you buy a modem, and a separate WAP/Wireless router. Most ISPs only give you WAP/Modem combo boxes, so you'll probably need to buy a wired modem, then hook your wireless router to that. From there they cannot overwrite the firmware on [I]your[/I] wireless router, only on the (wired) modem that connects to their end.
[QUOTE=glitchvid;49367260]That's why you buy a modem, and a separate WAP/Wireless router. Most ISPs only give you WAP/Modem combo boxes, so you'll probably need to buy a wired modem, then hook your wireless router to that. From there they cannot overwrite the firmware on [I]your[/I] wireless router, only on the (wired) modem that connects to their end.[/QUOTE]
No, most ISPs do not give you a combo unit. Its just a common practice. And yes,if they wanted they still have access to your entire LAN. Having a separate unit isn't exactly safe if someone wanted to sniff into your traffic anyway.
[QUOTE=Map in a box;49367313]No, most ISPs do not give you a combo unit. Its just a common practice. And yes,if they wanted they still have access to your entire LAN. Having a separate unit isn't exactly safe if someone wanted to sniff into your traffic anyway.[/QUOTE]
For broadband connections a combo box is becoming standard, Comcast and CTL I know for sure, but Cox probably is too. And no, if you're behind a router, then you're behind NAT and the whole LAN presents itself as a single IP to the modem. As for security, I'm talking about having secure hardware, such as a wireless router that doesn't have security exploits, or rolling your own router with a distro. No matter what any unencrypted traffic can be sniffed by an ISP. And by hardware independence I was meaning that all of the hardware is [I]yours[/I], not that you're renting it from your ISP.
[QUOTE=glitchvid;49367366]For broadband connections a combo box is becoming standard, Comcast and CTL I know for sure, but Cox probably is too. And no, if you're behind a router, then you're behind NAT and the whole LAN presents itself as a single IP to the modem. As for security, I'm talking about having secure hardware, such as a wireless router that doesn't have security exploits, or rolling your own router with a distro. No matter what any unencrypted traffic can be sniffed by an ISP. And by hardware independence I was meaning that all of the hardware is [I]yours[/I], not that you're renting it from your ISP.[/QUOTE]
I tried asking Comcast for a specific router, or literally anything but their shittiest unit and without a gateway.
Instead this happened.
[t]https://dl.dropboxusercontent.com/u/5601782/2014-11-18%2017.34.37.jpg[/t]
Oh well, each box there had a separate prepaid shipping label. They lost at least 10x of what the hardware was worth attempting to get the warehouse to ship me a modem. More than that occurred too, there was a 4th shipment and a tech which had to come out which showed me how terrible Comcast is and has hired endless amounts of independent contractors to cut costs on a properly trained technicians who would actually have access to Comcast's infrastructure and supplies. Had to wait 3 1/2 hours at the local office with all my collected useless hardware, ended up with a $150 credit and the correct modem in my hands though.
Sorry, you need to Log In to post a reply to this thread.