Re: KRACK security hole in WPA2 - VM fixes incoming?
If your router is being use a just a router then the router does not need updating.
If the router is being used as a repeater then you have a problem as this is acting as a client and is affected by the 3rd hand shake with the resetting of the nonce.
Don't believe superhub can be used as a repeater itself so it should be safe.
The issue is with the client devices, and Android 6 has a really bad flaw with the key resetting and that needs to be patched.
But yeah, to do this you need to have a man in the middle device acting like the wifi device and dropping the 3rd hand shake. It isn't something I would thought would be overly used as just sitting outside a open wifi network achieves the same thing and does not require all this messing around.
|