[AusNOG] Android storing SSID and WPA encryption keys

Andrew E edo at ohlawd.net
Thu Jun 16 21:18:16 EST 2011


> Am I the only one that thinks there's something wrong with that concept?

Nope. But also, I was always of the opioun that wifi networks are treated as unseucre along with the devices connected to them so we should build extra security to suit. 

- Andrew Edington 

Bevan Slattery <Bevan.Slattery at nextdc.com> wrote:

>Yeah - they noticed some manufacturers did this by default and some didn't.  Eee Pad (Android Honeycomb) seems to pass/synch whereas Droid 2 doesn't (not sure what the Android version was on Droid 2).  So [at this stage] it would appear that many personal and enterprise WPA keys now get stored in Google's cloud most likely without their knowledge or consent.  Am I the only one that thinks there's something wrong with that concept?
>
>[b]
>
>> -----Original Message-----
>> From: Andrew E [mailto:edo at ohlawd.net]
>> Sent: Thursday, 16 June 2011 8:48 PM
>> To: Bevan Slattery; ausnog at ausnog.net
>> Subject: RE: [AusNOG] Android storing SSID and WPA encryption keys
>>
>> I just purchased a Motorola Xoom tablet over the weekend and noticed this
>> option in the settings somewhere (backup settings or similar - sync program
>> settings, wifi configurations, etc...). While you can sync your wifi
>> settings with Google, as far as I can tell it's something that you have to
>> enable manually (my Xoom came with this option disabled by default).
>>
>> The options make it pretty clear it'll sync your wifi settings with Google.
>> It's a bit concerning since the negative implications outweigh the
>> positives...
>>
>> This is obviously with honeycomb only - my Android 2.3 phone has no such
>> option. And if it did, when I entered my Google account info into my Xoom
>> one would have expected it to auto-connect my home wifi like the article
>> suggests - which it didn't (since I had already sync'd with Google over 3g)
>> =)
>>
>> - Andrew Edington.
>>
>> -----Original Message-----
>> From: ausnog-bounces at lists.ausnog.net
>> [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Bevan Slattery
>> Sent: Thursday, 16 June 2011 7:43 PM
>> To: 'ausnog at ausnog.net'
>> Subject: [AusNOG] Android storing SSID and WPA encryption keys
>>
>> Please tell me this isn't true...  Can any Android users confirm?
>>
>> http://tek.io/j1LWe8
>>
>> [b]
>> The information contained in this email and any attachments may be
>> confidential. This email and any attachments are also subject to copyright.
>> No part of them may be reproduced, adapted or transmitted without the
>> written permission of the copyright owner. If you are not the intended
>> recipient, any use, interference with, disclosure or copying of this
>> information is unauthorised and prohibited. If you have received this email
>> in error, please immediately advise the sender by return email and delete
>> the message from your system. All email communications to and from
>> NEXTDC
>> Limited are recorded for the purposes of archival and storage.
>> _______________________________________________
>> AusNOG mailing list
>> AusNOG at lists.ausnog.net
>> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>The information contained in this email and any attachments may be confidential. This email and any attachments are also subject to copyright. No part of them may be reproduced, adapted or transmitted without the written permission of the copyright owner. If you are not the intended recipient, any use, interference with, disclosure or copying of this information is unauthorised and prohibited. If you have received this email in error, please immediately advise the sender by return email and delete the message from your system. All email communications to and from NEXTDC Limited are recorded for the purposes of archival and storage.


More information about the AusNOG mailing list