49
Sayaka
7y

Please, for fucks sake people, STOP CALLING ALL FORMS OF INTERNET ACCESS WI-FI. CELLULAR ACCESS IS NOT WI-FI. FUCKING ETHERNET + FIBER OPTIC/SOME MORE COPPER CABLING/WHATEVER IS **NOT** WI-FI.

Comments
  • 5
    Hey, i like cable wifi!
  • 3
    How do my devices charge if WiFi doesn't come out of the wires huh? #gotem
  • 3
    But my wifi is needed to get to the wifi that's what the nerds at best buy told me. How else would i get to the googles
  • 9
    @Marv My WiFi PW right now is "gDj7g4Sjj9Hhb4gB". :)
    Here you go!

    I made a little software that changes my WiFi PW to a (random looking) 16 char long string depending on the current date and some stuff from our local news website. All my devices automatically generate the password every morning and automatically connect.

    Be fast and find my WiFi :)
  • 5
    @Condor won't give you my code obviously :) but just a function (for example) that downloads the first daily news article of your local news site, then picks 16 chars, uses http post to login to your router and sets the new password. The functions that generate that password should obviously be the same on all your devices. On PCs I don't use WiFi, but on android you can make an app that generates your passwd and automatically configures the settings accordingly. Just try something on your own, its not that difficult. Also its an awesome weekend project :)
  • 1
    The Wi-Fi Alliance is not an organisation you want to mess with.
  • 1
    @b3b3 I see some problems there. Relying on resources from the internet to generate your access to the internet might get a Problem :P
    Beside that your algorithm shouldn't depend on being closed source but on a secret key (in your case the news site).
    While I find the idea itself pretty cool, 16 chars alpha numeric is easily strong enough for a WPA key. By the time you have cracked this with today's hardware the sun probably exploded ;)
  • 0
    Noooo, why would you go and ruin WiFi for me.
    Every thing is WiFi no?

    What is this Cellular thing?
    Some kind of battery based WiFi?
  • 0
    @JustKidding what's up with that wpa2? I thought it got cracked last week anyways. And also I'm not using my WiFi anymore anyways. I used it for my mobile but since I give a fuck on it I don't really care. Plus the router had annoying coil whine. My desktops are connected via lan. But yes, you're right. Relying on unreliable sources like news pages wasn't a good idea 🤔 maybe I should rewrite it for pornhub
  • 1
    @b3b3 the issue with WPA(2) (all possible configurations of WPA were compromised to this attack) was a reinstallation of the session key which gave the attacker the ability to decrypt the traffic. The PSK cannot be compromised by this attack nor can the attacker actively enter the network.
    Your key changing doesn't affect the attack in any way. Beside that you should patch your clients. If you cannot patch your clients, treat the network like a free WiFi and use Https and VPN to encrypt your traffic.
  • 0
    @JustKidding that sounds damn bad :(
    I'm using a vps for hosting my own VPN (openVPN). What are your opinions? I don't know much about networking
  • 1
    @b3b3 well it isn't as bad as it sounds, the attack is not that easy and the attacker needs to be in range of both ap and client.
    Just patch all your devices when and if patches are available. Beside that really important things such as logins should be secured by https anyway. Anything that goes out to the internet should be encryped as it can be read at many other points beside your WiFi, too.
    This attack is only a real issue if you have highly confidential unencrypted data transfer within your network. But that mostly only accounts on companies. And even then it needs to be a targeted attack.
    About VPN, I also have a VPS and run my own OpenVPN.
Add Comment