Bill_MIBill In Michigan MVM join:2001-01-03 Royal Oak, MI TP-Link Archer C7 Linksys WRT54GS Linksys WRT54G v4
|
to Mike Wolf
Re: WPS / Reaversaid by Mike Wolf:Hmm, Not sure what you mean by disable WPS when I simply go into the web interface and choose "manual" instead of leaving it on Wi-Fi Protected Setup. That in itself disables the WPS. It would seem so doesn't it? Except all recent Linksys routers stay vulnerable even when you do that. Until their new firmware really does turn it off. Fun, huh? |
|
|
Dunno. I personally haven't had any problems. I know that Windows 7 has the WPS ability built in, and I notice two routers under Network Infrastructure when the WPS is enabled, and disappears into only one when WPS is disabled. |
|
Bill_MIBill In Michigan MVM join:2001-01-03 Royal Oak, MI TP-Link Archer C7 Linksys WRT54GS Linksys WRT54G v4
|
said by Mike Wolf:Dunno. I personally haven't had any problems. I know that Windows 7 has the WPS ability built in, and I notice two routers under Network Infrastructure when the WPS is enabled, and disappears into only one when WPS is disabled. The data comes from the attack tool (named "Reaver") still cracking the PIN and getting access, regardless the setting. The best data I know of is: » docs.google.com/spreadsh ··· SSHZEN3c |
|
|
thats interesting, but another option would be to use WPA2 Enterprise and attach a RADIUS server. |
|
|
to Bill_MI
said by Bill_MI:It would seem so doesn't it? Except all recent Linksys routers stay vulnerable even when you do that. Until their new firmware really does turn it off. Fun, huh? Actually, this isn't exactly the same. With older versions of the firmware you didn't really have an option to "turn off" WPS. You could either pick "Manual" or "WPS" but selecting Manual did not turn off WPS (this was the issue). Cisco is releasing updated firmware that does allow WPS to explicitly be turned off, and the Feb release for the V1 routers is the first of these updates. I have not seen any screenshots of the new firmware or any further discussion on this update so I wouldn't know if this setting now disables WPS, or if a new option was added to disable it. The google docs spreadsheet page doesn't appear to have been updated or make any notes about being able to disable WPS with the latest firmware (IE: that page is out of date) The Cisco page listing the routers that have this update is at » www6.nohold.net/Cisco2/u ··· id=25154There had been a posting in Cisco's forums that enabling MAC address filtering on the AP disabled WPS, but it isn't clear to me that this truly disables it rather than providing an extra control (IE: only authorized hardware addresses may use WPS). It is well known that hardware addresses are easily spoofed, so if the latter this is not much protection but if the former (IE: even authorized MAC addresses can not use WPS) it may be a potential workaround. |
|
Bill_MIBill In Michigan MVM join:2001-01-03 Royal Oak, MI TP-Link Archer C7 Linksys WRT54GS Linksys WRT54G v4
1 edit |
E3200 f/w ver 1.0.03 Mar 2012 |
said by Shady Bimmer:I have not seen any screenshots of the new firmware or any further discussion on this update so I wouldn't know if this setting now disables WPS, or if a new option was added to disable it. The google docs spreadsheet page doesn't appear to have been updated or make any notes about being able to disable WPS with the latest firmware (IE: that page is out of date) Here's a screen shot and a revelation... In that spreadsheet (» docs.google.com/spreadsh ··· SSHZEN3c) the E3200 occurs twice, including the latest 1.0.03. Looks like Reaver is STILL cracking it if I read that right - Item 44. Not good. |
|
circade join:2002-08-23 Minneapolis, MN |
E3200 1.0.03 firmware adds two things: 1. Disable/Enable WPS 2. WPS lockdown (when WPS is enabled) Disabling WPS will stop the Reaver crack. With WPS lockdown, the router is suppose to lockdown WPS after a certain number of unsuccessful attempts. One person at the Cisco forum claims the lockdown is not working: » homecommunity.cisco.com/ ··· p/497518 |
|
circade |
|
|
|
to Bill_MI
said by Bill_MI:Here's a screen shot and a revelation... Your snapshot looks different that that of circade below and seems to be missing the option that was added to disable WPS. Something seems very odd there. That spreadsheet, unfortunately, does not make any note of whether or not WPS can be disabled or whether the attempt was made while it was set to 'disabled'. It is difficult to put much weight on a doc only populated by unsubstantiated user feedback, particularly when it is missing a key piece of information. In the forum thread noted by circade below one poster confirms he was instructed how to properly disable WPS, but that when enabled the lockdown is not working. That would seem to hint that you can disable WPS with the new firmware, but it may not be clear how to do so. |
|
circade join:2002-08-23 Minneapolis, MN |
circade
Member
2012-Mar-27 11:48 am
It's the GUI that looks confusing, but when you toggle between 'Manual' and 'Wi-Fi Protected Setup', it will bring up a different page.
To disable WPS, you first have to click on 'Wi-Fi Protected Setup', then click 'Disabled'. Then click on Manual to bring you back to the wireless settings. It took me a couple minutes to figure that out on my e4200 v1.
Cisco should redesign that page. It comes back to how people thought clicking on Manual automatically turned off WPS, but it really does not. |
|
|
planet
Member
2012-Apr-11 1:26 pm
So far, no firmware update for the Linksys E1000..latest firmware dated August 2011. |
|