Comcast storing WiFi passwords in cleartext?

Royce Williams royce at techsolvency.com
Thu Apr 25 04:40:40 UTC 2019


On Wed, Apr 24, 2019 at 8:33 PM Mike Bolitho <mikebolitho at gmail.com> wrote:

> "than the relatively low risk of a database compromise leading to a
>> miscreant getting ahold of their wireless password and using their access
>> point as free wifi."
>>
>
> And this is the thing, not only does someone have to 'hack' the database,
> they also need to drive up to your house and sit in your driveway to get
> free Internet. Of all the things to worry about, this is way down on my
> list.
>

They could also remotely compromise *any* device that's currently (or about
to be) in range of your access point, as a stepping-stone to gaining access
to your network - without having to be physically anywhere near your
driveway.

Perhaps, for example, to make it look as though what they're doing is
coming from your house.

Royce
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20190424/93a74a15/attachment.html>


More information about the NANOG mailing list