What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Recent content by NotMeReally

  1. N

    ASUS Krackattack patch?

    LOL - yes they must be close enough to use Wi-Fi ...and so do you. Pretty empty mitigation statement. Yes AsusTek is on the CERT list of vulnerable vendors though a list of specific equipment is not given. AsusTek updated their status on 19 Oct 2017. So I am guessing they told CERT they...
  2. N

    ASUS Krackattack patch?

    CERT seems to say ASUSTek told CERT it has a patch as of 19 Oct 2017. But that patch is not yet released. Probably deployment to individual router ROMs and testing yet. Any inside track Merlin on approximately when to expect ASUSTek release? And more important -- once you have their patch...
  3. N

    ASUS Krackattack patch?

    Lots of forces wanting to keep chip RTOS on ROM for security of original source. So cheap replaceable chips via SD like slot is one possibility. Improved "firewall" of chip RTOS address space from external devices is probably advisable whether to protect FLASH or simple stackover flow exploits...
  4. N

    ASUS Krackattack patch?

    Not as likely for TVs and other appliances at the current time. I have been amazed at LG still occasionally updating our 4K TV for nearly 2 years. If that helps anyone choose a TV. Not sure how bulletproof WebOS is at the foundation level though.
  5. N

    ASUS Krackattack patch?

    Actually most those old devices cannot be updated as the chip code is in ROM not FLASH. But as I understand it manufacturing process standardization and commercial uses are tending to push toward FLASH. ROM was actually chosen to ensure that the factory code was secured and could NOT be changed...
  6. N

    ASUS Krackattack patch?

    Actually CERT says this vulnerability means that unpatched clients might be further attacked and turned into zombies etc once the main network firewall is bypassed. It all depends on the additional security implemented by network clients. More powerful but less stressed platforms might not given...
See more
Back
Top