You are Here:
Linux Lite 4.4 Final has been released. See the Release Announcements section for more information.



[ SECURITY ] WPA2 Wi-Fi Vulnerability KRACK

Author (Read 3085 times)

0 Members and 1 Guest are viewing this topic.

WPA2 Wi-Fi Vulnerability KRACK
« on: October 16, 2017, 05:27:47 PM »
 

Vera

  • PayPal Supporter
  • Forum Regular
  • *****
  • 140
    Posts
  • Country: 00
  • Reputation: 16
  • Enjoying Linux Lite.

  • Linux Lite: 3.4 64bit

  • CPU: Intel Quad Core 1.6GHz

  • MEMORY: 8Gb

  • VIDEO CARD: AMD Radeon
Hi, today a post came out on the Wordfence blog describing a couple of vulnerabilities (see https://www.wordfence.com/blog/2017/10/krack-and-roca/ ).  One of these is in the Wi-Fi WPA-2 protocol. The other is to do with public key authentication. These are not specific solely to Linux, but they affect a huge range of devices.

My question is, are we vulnerable and if so, is there any software that we should be installing on our Linux Lite machines to help protect/mitigate against these vulnerabilities? Any guidance would be much appreciated. Thank you.

EDIT (Jerry): Further reading:

https://usn.ubuntu.com/usn/usn-3455-1/
https://www.kb.cert.org/vuls/id/228519

White paper for the geeks - https://papers.mathyvanhoef.com/ccs2017.pdf

Last Edit: October 17, 2017, 12:48:26 AM by Jerry
Using Linux Lite for everything now. I put it on my desktop and my laptop. Woohoo!
 


Re: WPA2 Wi-Fi Vulnerability KRACK
« Reply #1 on: October 16, 2017, 05:40:39 PM »
 

trinidad

  • Gold Level Poster
  • *******
  • 931
    Posts
  • Country: us
  • Reputation: 165
  • Linux Lite Member
    • dbts-analytics.com

  • Linux Lite: 4.2 64bit

  • CPU: AMD A8 5500 4 cores

  • MEMORY: 8Gb

  • VIDEO CARD: AMD/ATI Radeon HD 7560D
There is a lot one can do to prevent this with TLS layering but normal users will have to wait a while. It's certainly going to foul up some big ISPs for a while. Look for your little green lock.

https://www.kaspersky.com/blog/krackattack/19798/

And this is pathetically predictable. Look at active managemnet subset.

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00101&languageid=en-fr

TC
Last Edit: October 16, 2017, 06:27:02 PM by trinidad
"You can't depend on your eyes when your imagination is out of focus."
 

Re: WPA2 Wi-Fi Vulnerability KRACK
« Reply #2 on: October 16, 2017, 06:58:47 PM »
 

bonnevie

  • Occasional Poster
  • **
  • 63
    Posts
  • Country: ca
  • Reputation: 9
  • Linux Lite Member

  • Linux Lite: 4.4 64bit

  • CPU: AMD Sempron

  • MEMORY: 3Gb

  • VIDEO CARD: NVidia GEForce 8200G
Correct me if I'm wrong, but it looks like there is something related to wpa in the updates today
Code: [Select]
archive.ubuntu.com/ubuntu xenial-security/main i386 wpasupplicant i386 2.4-0ubuntu6.2 [987 kB]
1) Compaq-Presario-CQ60-Notebook (2008) AMD-Sempron
2) ThinkPad E540 LL2.8 64 bit Host, VM LL4.4 64-bit guest
Intel i3 QuadCore 12GB RAM
 

Re: WPA2 Wi-Fi Vulnerability KRACK
« Reply #3 on: October 16, 2017, 09:02:26 PM »
 

rokytnji

  • Friganeer
  • Platinum Level Poster
  • **********
  • 1257
    Posts
  • Country: us
  • Reputation: 134

  • Linux Lite: 3.6 64bit

  • CPU: Intel Core2 Duo U9600

  • MEMORY: 4Gb

  • VIDEO CARD: Intel Mobile 4
Quote
But because Vanhoef hasn't released any proof-of-concept exploit code, there's little risk of immediate or widespread attacks.

There is no confirmation of this existing in the wild. This crack was done by a white hat under controlled conditions. Got any black war driving vans parked in front of your place?

Living on the Mexican border. I don't even sweat this. But then. My wireless router password was changed from the default "admin" ages ago.

You are not Target store, TJ maxx, or a Experian. The ones this hack will probably be aimed at.  I try and understand a vulnerability from a attacker.
Physical or cloud based. Before I react in fear. 

https://github.com/kristate/krackinfo

Usually. When the Linux world becomes a aware of a threat. You hear next real soon about what should be done.

If you read my gethub link above. Debian and Ubuntu already have patches for this.
Last Edit: October 16, 2017, 09:09:54 PM by rokytnji
LL 3.6,2.8
Dell XT2 > Touchscreen Laptop
Dell 755 > Desktop
Acer 150 > Desktop
I am who I am. Your approval is not needed.
 

Re: WPA2 Wi-Fi Vulnerability KRACK
« Reply #4 on: October 17, 2017, 12:32:52 AM »
 

Jerry

  • Linux Lite Creator
  • Administrator
  • Platinum Level Poster
  • *****
  • 6811
    Posts
  • Country: nz
  • Reputation: 626
  • Linux Lite Member
    • Linux Lite OS

  • Linux Lite: 3.8 64bit

  • CPU: Intel Xeon Dual CPU's E5645 2.4GHz 12 Cores

  • MEMORY: 16Gb

  • VIDEO CARD: nVidia GeForce GTX 960
As has been mentioned, this has been patched already. Run Install Updates now.

After Install Updates, open a terminal:

Code: [Select]
apt policy wpasupplicant
should return:

Code: [Select]
  Installed: 2.4-0ubuntu6.2
  Candidate: 2.4-0ubuntu6.2

If you have 'hostapd' installed too, do:

Code: [Select]
apt policy hostapd

should return:

Code: [Select]
  Installed: 1:2.4-0ubuntu6.2
  Candidate: 1:2.4-0ubuntu6.2

we do not supply hostapd in Linux Lite. You would of had to have installed this yourself at some point.

Now we just have to wait for our:

    Mobile phones
    Tablets and e-readers that use Wi-Fi
    Home and office routers
    Home devices like NEST, Amazon Echo and Google Home
    Printers, both home and office, that use Wi-Fi
    Any other device that uses Wi-Fi

manufacturers to release patches too. :)

If you are 'super tinfoil' about this, use a 3G/4G connection until your device manufacturer has patched your other device/s and watch your browser address bar, make sure there is https where it should be!
 

Re: WPA2 Wi-Fi Vulnerability KRACK
« Reply #5 on: October 18, 2017, 12:10:17 PM »
 

Mohd Sohail

  • PayPal Supporter
  • New to Forums
  • *****
  • 2
    Posts
  • Country: 00
  • Reputation: 0
  • A foss lover and a blogger :)
    • LinuxAndUbuntu

  • Linux Lite: 3.6 64bit

  • CPU: i7-4720HQ CPU @ 2.60GHz * 4

  • MEMORY: 12Gb
There is a lot one can do to prevent this with TLS layering but normal users will have to wait a while. It's certainly going to foul up some big ISPs for a while. Look for your little green lock.

https://www.kaspersky.com/blog/krackattack/19798/

And this is pathetically predictable. Look at active managemnet subset.

https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00101&languageid=en-fr

TC


It's always good to note the green lock in the URL bar to confirm the data is transmitted securely. Though not every website has the green lock + the browser can be forced to use an HTTP version of a website. So then this tip won't work. But again we've to follow these tips and also use a good VPN to add an extra layer of security.

I hope the manufacturers will soon provide fixes against KRACK. Till then be a little careful.
 


Tags:
 


Linux Lite 4.4 Final has been released. See the Release Announcements section for more information.