Folks,
Last year there was a bit of a scare with wifi security and although no evidence of hack taking place manufacturers were busy putting out security updates.
At the time, and I'm not sure why, repeaters were considered vulnerable.
Does anyone know if this is still the case?
Geffers
Re: WiFi Repeater Security
Source?
I use a couple of WiFi extenders, never had an issue. It could help if you quote make and model that you are concerned with.Does anyone know if this is still the case?
E8 85 A2 40 C9 40 81 94 40 81 95 40 89 84 89 96 A3
Still NF Shirls
Still NF Shirls
-
- Posts: 14048
- Joined: Fri Mar 09, 2012 7:36 pm
- Location: Vallejo, CA (US)
Re: WiFi Repeater Security
Basically, anything with a default ID and password is vulnerable. If it can take a connection from the outside, doubly so. There were articles about various models of router having these sorts of vulnerabilities, but I don't recall reading anything about APs or range extenders specifically.
Just change the default administrative password. Change the ID if you can (not all routers permit that). Use the best WiFi security your router/access point/extender has. If you're really concerned, go wired.
Just change the default administrative password. Change the ID if you can (not all routers permit that). Use the best WiFi security your router/access point/extender has. If you're really concerned, go wired.
- Yukon Cornelius
- Posts: 24
- Joined: Tue Jul 03, 2018 7:24 am
Re: WiFi Repeater Security
Valuable info there on routers in general , and I would add a few extras :-W. H. Heydt wrote: ↑Tue Oct 02, 2018 4:18 amBasically, anything with a default ID and password is vulnerable. If it can take a connection from the outside, doubly so. There were articles about various models of router having these sorts of vulnerabilities, but I don't recall reading anything about APs or range extenders specifically.
Just change the default administrative password. Change the ID if you can (not all routers permit that). Use the best WiFi security your router/access point/extender has. If you're really concerned, go wired.
In router admin , disable WPS , or whatever your router calls that "handy" button that enables quick connection
of new hardware ( eg new printer , mobile device of a friend / visitor ).
It's a security nightmare which is exploitable by anyone within wifi range .
Likewise , disable " broadcast SSID" if it's possible in your router admin ...... Why ?
Because popular routers all over the world come out of the box with unbelievably stupid defaults
eg. user := "user" , admin := "admin" or "changeme "
That is still the case with Comcast routers and was also true of Virgin Media routers , last time I worked in UK .
So it makes it a gift to hacker , who only has to scan wifi networks in the vicinity , and pick the low-hanging fruit .
Keep in mind that if you are using an ISP provided router , of any make or type , it is them in control of the device , not you .
The remedy is as simple and cheap as buying a basic router and putting it in between your equipment and their router .
And there are some great Pi projects for home-made routers ..... what a surprise !
Not ....

-
- Posts: 14048
- Joined: Fri Mar 09, 2012 7:36 pm
- Location: Vallejo, CA (US)
Re: WiFi Repeater Security
I was on an AmTrak train a couple of years ago and set up a Pi in the lounge car while we were rolling through some suburbs. It was amusing to see all the WifI listings scrolling by, probably about 3/4 of them had default SSIDs...and mostly likely either default or easily guessed passwords. Kind of put a new twist on "war driving".
-
- Posts: 14048
- Joined: Fri Mar 09, 2012 7:36 pm
- Location: Vallejo, CA (US)
Re: WiFi Repeater Security
And, just in time for this topic, here is an article from The Register about hijacking home routers...
https://www.theregister.co.uk/2018/10/0 ... r_hacking/
https://www.theregister.co.uk/2018/10/0 ... r_hacking/
Re: WiFi Repeater Security
Reference my original post; definitely read somewhere repeaters were a particular problem but afraid cannot recall specifics.
I have an older Draytek router (no wifi) but have an Edimax WiFi AP connected. I've actually got 3 Edimax WiFi APs EW7228APn devices acquired over the years. Experimented with using as repeaters and extra AP to try and eliminate WiFi dead spots. Stopped using as repeaters when the scare came out.
Think one was krack and cannot recall the other. I do recall Linux addressed the problem very quickly.
Geffers
I have an older Draytek router (no wifi) but have an Edimax WiFi AP connected. I've actually got 3 Edimax WiFi APs EW7228APn devices acquired over the years. Experimented with using as repeaters and extra AP to try and eliminate WiFi dead spots. Stopped using as repeaters when the scare came out.
Think one was krack and cannot recall the other. I do recall Linux addressed the problem very quickly.
Geffers
Re: WiFi Repeater Security
I don't think that repeaters are affected as long as your modem has a decent security.
Re: WiFi Repeater Security
Hidden SSIDs are useless, just like a chocolate teapot, so easy to circumvent it’s not worth the effort.