Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6
3135 posts

Uber Geek
+1 received by user: 1166


  Reply # 1885641 18-Oct-2017 12:40
Send private message quote this post

The open VPN android app just seems to be a client.   I need something that works from my phone when I'm out and about. 

 

Nord seems to be consistently rated highly by experts and play store users so I think I'll try it. 





Mike

1849 posts

Uber Geek
+1 received by user: 513


  Reply # 1885670 18-Oct-2017 12:50
Send private message quote this post

MikeAqua:

 

The open VPN android app just seems to be a client.   I need something that works from my phone when I'm out and about. 

 

Nord seems to be consistently rated highly by experts and play store users so I think I'll try it. 

 

 

Yes, the app is just the client. You would need to install an open VPN server at your home/premises. This can be installed on many different kinds of devices, including some routers.


 
 
 
 


1849 posts

Uber Geek
+1 received by user: 513


  Reply # 1885674 18-Oct-2017 12:52
Send private message quote this post

I've gone and updated my iPhone and iPad to iOS 11.1 public beta 3, which is apparently patched (I can't find any specific comment from Apple saying that this specific release is patched, but they have said that their latest betas are - so I assume this includes the public beta 3).


2374 posts

Uber Geek
+1 received by user: 104


  Reply # 1885680 18-Oct-2017 13:00
Send private message quote this post

This includes devices sold by Spark

 

Spark are going to have to pull finger, how many of their Android phones are even on the October Security patch level? (Google are apparently including the patch in the November Patches)

 


2237 posts

Uber Geek
+1 received by user: 652

Trusted

  Reply # 1885695 18-Oct-2017 13:31
2 people support this post
Send private message quote this post

Watched this explanation which tried it's hardest to be explainable for non-technical people.

 






1849 posts

Uber Geek
+1 received by user: 513


  Reply # 1885783 18-Oct-2017 16:12
One person supports this post
Send private message quote this post

BarTender:

 

Watched this explanation which tried it's hardest to be explainable for non-technical people.

 

 

Still over my head!


1439 posts

Uber Geek
+1 received by user: 339


  Reply # 1885890 18-Oct-2017 19:13
Send private message quote this post

My brief understanding of it is that a malicious person could trigger a reset of the sequenced encryption process on a vulnerable device and because the encryption data gets repeated, some simple math could applied between the two lots of data to get the key.

 

 




6802 posts

Uber Geek
+1 received by user: 3135

Moderator
Trusted
Subscriber

  Reply # 1885917 18-Oct-2017 19:24
One person supports this post
Send private message quote this post

Paul1977:

 

BarTender:

 

Watched this explanation which tried it's hardest to be explainable for non-technical people.

 

 

Still over my head!

 

I think this one may be better:

 





Michael Murphy | https://murfy.nz
Want to be with an epic ISP? Want $20 to join them too? Well, use this link to sign up to BigPipe!
The Router GuideCommunity UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial


1849 posts

Uber Geek
+1 received by user: 513


  Reply # 1885966 18-Oct-2017 21:14
Send private message quote this post

I’m most interested in how vulnerable unpatched iOS and Windows are (particularly iOS which is not yet patched in the latest general release 11.03).

The paper shows they are the least vulnerable, but I’m finding it difficult interpreting what the specific risks are for these devices.

1211 posts

Uber Geek
+1 received by user: 244


  Reply # 1886095 19-Oct-2017 09:44
One person supports this post
Send private message quote this post

My understanding was that WPA2 was 'crackable'  2+ years ago , so not secure regardless. (?)

 

Give all the non patchable androids out there, and there are millions, as mid/low price Androids will NEVER get any patches & updates (I have 2 samsungs that will never get any updates)
- should companies close down internal wifi competely , or change the pass & only let patched devices connect
- Many companies have a guest wifi , should that be shut down as well, just to mitigate any liability (as vistors often are give access to guest wifi)
- is closing down company wifi a necessary reaction, necessary to mitigate any possible liability of either IT or the company itself ?

 

most company ph's & laptops could hardly be considered secure regardless , unless completely locked down & install of any apps blocked

 

 

 

 


438 posts

Ultimate Geek
+1 received by user: 123

Subscriber

  Reply # 1886125 19-Oct-2017 10:42
Send private message quote this post

Paul1977: I’m most interested in how vulnerable unpatched iOS and Windows are (particularly iOS which is not yet patched in the latest general release 11.03).

The paper shows they are the least vulnerable, but I’m finding it difficult interpreting what the specific risks are for these devices.

 

As I read it they are only vulnerable to the group key attacks - CVE-2017-13080 and CVE-2017-13081. As these are used for transmitting broadcast and multicast frames, the amount of sensitive information you could decrypt would be negligible.


3135 posts

Uber Geek
+1 received by user: 1166


  Reply # 1886162 19-Oct-2017 11:14
One person supports this post
Send private message quote this post

1101:

 

- Many companies have a guest wifi , should that be shut down as well, just to mitigate any liability (as vistors often are give access to guest wifi)

 

 

If someone tried to assert liability on the company's part in relation to our guest WiFi,  I would simply argue there is no scope for liability because: -

 

- Guest Wifi is free;
- Therefore, the company has received no consideration;
- Therefore, the company has no duty of care.

 

The solution is an Accept page which includes a waiver the user must agree to.





Mike

1052 posts

Uber Geek
+1 received by user: 715

Subscriber

  Reply # 1886168 19-Oct-2017 11:22
Send private message quote this post

MikeAqua:

 

If someone tried to assert liability on the company's part in relation to our guest WiFi,  I would simply argue there is no scope for liability because: -

 

- Guest Wifi is free;
- Therefore, the company has received no consideration;
- Therefore, the company has no duty of care.

 

The solution is an Accept page which includes a waiver the user must agree to.

 

 

As a general proposition, in respect to whether one entity owes a duty of care to another for the purpose of liability in tort for negligence, the first three matters are either not decisive or even irrelevant. The last idea will help but only if the Ts&Cs are properly drafted, which pretty much 95% of NZ companies will fail at. 

 

 

 

 


38 posts

Geek
+1 received by user: 7


  Reply # 1886622 20-Oct-2017 07:51
Send private message quote this post

Patch for Grandstream fw confirmed to be released asap.


1849 posts

Uber Geek
+1 received by user: 513


  Reply # 1886702 20-Oct-2017 09:22
Send private message quote this post

MikeAqua:

 

If someone tried to assert liability on the company's part in relation to our guest WiFi,  I would simply argue there is no scope for liability because: -

 

- Guest Wifi is free;
- Therefore, the company has received no consideration;
- Therefore, the company has no duty of care.

 

The solution is an Accept page which includes a waiver the user must agree to.

 

 

It's also not uncommon for guest wifi to not even use WPA2 and just be unencrypted (with a guest portal login and a disclaimer), potentially more commonplace in cafes, hotels, etc than at businesses. This type wifi network is unaffected by KRACK as they were never secure in the first place.

 

But assuming your guest wifi is using WPA2 and APs are patched or not affected then it is the vulnerability in THEIR phone that is being exploited, not your network. IANAL, but I don't see how you could be held liable for that.


1 | 2 | 3 | 4 | 5 | 6
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Netatmo launches smart home products in New Zealand
Posted 20-Nov-2017 20:06


Huawei Mate 10: Punchy, long battery life, artificial intelligence
Posted 20-Nov-2017 16:30


Propel launch Disney Star Wars Laser Battle Drones
Posted 19-Nov-2017 21:26


UFB killer app: Speed
Posted 17-Nov-2017 17:01


The case for RSS — MacSparky
Posted 13-Nov-2017 14:35


WordPress and Indieweb: Take control of your online presence — 6:30 GridAKL Nov 30
Posted 11-Nov-2017 13:43


Chorus reveals technology upgrade for schools, students
Posted 10-Nov-2017 10:28


Vodafone says Internet of Things (IoT) crucial for digital transformation
Posted 10-Nov-2017 10:06


Police and Facebook launch AMBER Alerts system in NZ
Posted 9-Nov-2017 10:49


Amazon debuts Fire TV Stick Basic Edition in over 100 new countries
Posted 8-Nov-2017 05:34


Vodafone VoIP transition to start this month
Posted 7-Nov-2017 12:33


Spark enhances IoT network capability
Posted 7-Nov-2017 11:33


Vocus NZ sale and broadband competition
Posted 6-Nov-2017 14:36


Hawaiki reaches key milestone in landmark deep-sea fibre project
Posted 4-Nov-2017 13:53


Countdown launches new proximity online shopping app
Posted 4-Nov-2017 13:50



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.