WPA2 Hacked
-
If this is a client patching issue, what does patching access points do? Or are there two separate things here?
Looks like MS and some others have released a patch to fix this already, and you should be fine if you are regularly patching... but Android and others still have yet to release a patch to fix this.
https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches
-
Main Download page for the Unifi's still only showing 3.8 firmware
-
@hobbit666 said in WPA2 Hacked:
Main Download page for the Unifi's still only showing 3.8 firmware
Seems they have updated its your post...
-
@gjacobse Oh yeah lol.
-
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
-
@tim_g said in WPA2 Hacked:
If this is a client patching issue, what does patching access points do? Or are there two separate things here?
Looks like MS and some others have released a patch to fix this already, and you should be fine if you are regularly patching... but Android and others still have yet to release a patch to fix this.
https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches
I can't say as to why - likely patching changes to the client can require changes to the Access point. It's a key/lock sort of thing - change the lock, you likely need a new key..
I noticed some updates to the Ubuntu system when I updated it yesterday..
-
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Are these the same exact model AP?
-
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Might need to physically restart the AP.
-
@dustinb3403 said in WPA2 Hacked:
Are these the same exact model AP?
Yes, just finished updating the first one and now the second one is showed the upgrade available.
-
@mike-davis said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
Are these the same exact model AP?
Yes, just finished updating the first one and now the second one is showed the upgrade available.
So the upgrade appeared after the first was done?
-
@mike-davis said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
Are these the same exact model AP?
Yes, just finished updating the first one and now the second one is showed the upgrade available.
Maybe Ubiquiti set it to have a rolling upgrade so not all of your AP's are taken offline at once?
-
@gjacobse said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
Are these the same exact model AP?
Yes, just finished updating the first one and now the second one is showed the upgrade available.
So the upgrade appeared after the first was done?
Boy that would be weird... but I have seen the upgrades show up for different devices over a min + of time after an upgrade to the controller.
-
@dashrender said in WPA2 Hacked:
@gjacobse said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
Are these the same exact model AP?
Yes, just finished updating the first one and now the second one is showed the upgrade available.
So the upgrade appeared after the first was done?
Boy that would be weird... but I have seen the upgrades show up for different devices over a min + of time after an upgrade to the controller.
not as much as you think.... as it goes in line if they are linked.. I had that happen at a client. I could not upgrade one until the upstream was upgraded. Which tells me - some how they are linked.
-
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Did you download the Firmware to the controller or did it just appear by it self?
-
@hobbit666 said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Did you download the Firmware to the controller or did it just appear by it self?
The controller has to be upgraded through the normal upgrade process.
-
@hobbit666 said in WPA2 Hacked:
Did you download the Firmware to the controller or did it just appear by it self?
In the controller I did the check for firmware update and I'm still on 5.5.20 (Build: atag_5.5.20_9565), but when I went to APs, it was showing the upgrade available. At this point all the eligible APs are showing update available, except for the UniFi AP-AC v2 model.
-
@dustinb3403 said in WPA2 Hacked:
@hobbit666 said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Did you download the Firmware to the controller or did it just appear by it self?
The controller has to be upgraded through the normal upgrade process.
Someone on SW yesterday posted a how to deploy the beta firmware that was released via the controller (much more manual process).
-
@dashrender said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
@hobbit666 said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Did you download the Firmware to the controller or did it just appear by it self?
The controller has to be upgraded through the normal upgrade process.
To get the upgrade button this is true... But someone on SW yesterday posted a how to deploy the beta firmware that was released via the controller (much more manual process).
No one should be upgrading to the beta versions for production systems. I saw the same post and mentioned it there. I actually think it was @dbeato who made the how-to.
-
@dustinb3403 said in WPA2 Hacked:
@dashrender said in WPA2 Hacked:
@dustinb3403 said in WPA2 Hacked:
@hobbit666 said in WPA2 Hacked:
@mike-davis said in WPA2 Hacked:
My controller now will let me upgrade some APs, but not others. For the client below, the APs are on the same firmware, but one is showing the upgrade available and the other not. I'll keep watching it as the day goes on.
Did you download the Firmware to the controller or did it just appear by it self?
The controller has to be upgraded through the normal upgrade process.
To get the upgrade button this is true... But someone on SW yesterday posted a how to deploy the beta firmware that was released via the controller (much more manual process).
No one should be upgrading to the beta versions for production systems. I saw the same post and mentioned it there. I actually think it was @dbeato who made the how-to.
Yep that was him.
-
I told my 5.5.24 controller to look for new firmware and now I have this