[AusNOG] Android storing SSID and WPA encryption keys

roland at chan.id.au roland at chan.id.au
Thu Jun 16 21:27:10 EST 2011


Indeed. If you want to get  to something interesting then you should use a VPN, probably with one of those one time password Secur.. Oh.


Sent via BlackBerry® from Telstra

-----Original Message-----
From: Brad Gould <bradley at internode.com.au>
Sender: ausnog-bounces at lists.ausnog.net
Date: Thu, 16 Jun 2011 11:23:55 
To: Don Gould<don at bowenvale.co.nz>
Cc: ausnog at lists.ausnog.net<ausnog at lists.ausnog.net>
Subject: Re: [AusNOG] Android storing SSID and WPA encryption keys

No, I think its the fact that this info is in the wild.

If bad people gain access to this data then a list of ssid/keys could be generated, giving you a very small solution set to gain access to potential priveleged wireless networks(*).

It is yet another way that compromising a google account can be used for nefarious means.

(*) PWN. They should not exist but we all know they do.

Brad





On 16/06/2011, at 20:35, "Don Gould" <don at bowenvale.co.nz> wrote:

> 
> 
> On 16/06/2011 11:02 p.m., Bevan Slattery wrote:
>> Am I the only one that thinks there's something wrong with that concept?
> 
> What are you suggesting?  That Google have some sort of car with wifi 
> gear that could pull up outside our place and listen in?
> 
> D
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net
http://lists.ausnog.net/mailman/listinfo/ausnog


More information about the AusNOG mailing list