Hi Guys, We've posted a status update for airMAX devices here: https://community.ubnt.com/t5/airMAX-General-Discussion/WPA2-broken-with-KRACK/m-p/2099981#M70470
>From the thread: "Everyone, thanks for the thoughtful replies. Again, WPA2 is not broken, contrary to what is being reported here and there. Yes, this is a very big problem for WPA2 clients that won't get any more updates. But let's keep this thread focused on airMAX products. First of all, you are mostly covered if you are running v8.4.0 (AC series) or v6.0.7 (M series). We will fully resolve the issue with v8.4.2/v6.1.2 (betas aimed for the end of this week). Furthermore, our proprietary airMAX protocol makes simple attacks more difficult to carry out. Will be fully fixed with v8.4.2/v6.1.2: CVE-2017-13077: reinstallation of the pairwise key in the Four-way handshake CVE-2017-13078: reinstallation of the group key in the Four-way handshake CVE-2017-13079: reinstallation of the integrity group key in the Four-way handshake CVE-2017-13080: reinstallation of the group key in the Group Key handshake CVE-2017-13081: reinstallation of the integrity group key in the Group Key handshake Unaffected: CVE-2017-13082: accepting a retransmitted Fast BSS Transition Reassociation Request and reinstalling the pairwise key while processing it CVE-2017-13084: reinstallation of the STK key in the PeerKey handshake CVE-2017-13086: reinstallation of the Tunneled Direct-Link Setup (TDLS) PeerKey (TPK) key in the TDLS handshake CVE-2017-13087: reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame CVE-2017-13088: reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame" On Mon, Oct 16, 2017 at 12:41 PM, Steve Jones <[email protected]> wrote: > we are all going to die > > On Mon, Oct 16, 2017 at 11:17 AM, Mike Hammett <[email protected]> wrote: > >> ... for UniFi. >> >> >> >> ----- >> Mike Hammett >> Intelligent Computing Solutions <http://www.ics-il.com/> >> <https://www.facebook.com/ICSIL> >> <https://plus.google.com/+IntelligentComputingSolutionsDeKalb> >> <https://www.linkedin.com/company/intelligent-computing-solutions> >> <https://twitter.com/ICSIL> >> Midwest Internet Exchange <http://www.midwest-ix.com/> >> <https://www.facebook.com/mdwestix> >> <https://www.linkedin.com/company/midwest-internet-exchange> >> <https://twitter.com/mdwestix> >> The Brothers WISP <http://www.thebrotherswisp.com/> >> <https://www.facebook.com/thebrotherswisp> >> >> >> <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> >> ------------------------------ >> *From: *"Josh Reynolds" <[email protected]> >> *To: *[email protected] >> *Sent: *Monday, October 16, 2017 11:16:30 AM >> *Subject: *Re: [AFMUG] Update Every Device -- This KRACK Hack Kills Your >> Wi-Fi Privacy >> >> UBNT already released fixed firmware before the public disclosure... >> >> On Oct 16, 2017 9:38 AM, "Josh Luthman" <[email protected]> >> wrote: >> >>> All they need to do is figure out the ePMP and Ubnt MACs now! >>> >>> >>> Josh Luthman >>> Office: 937-552-2340 <(937)%20552-2340> >>> Direct: 937-552-2343 <(937)%20552-2343> >>> 1100 Wayne St >>> <https://maps.google.com/?q=1100+Wayne+St+Suite+1337+Troy,+OH+45373&entry=gmail&source=g> >>> Suite 1337 >>> <https://maps.google.com/?q=1100+Wayne+St+Suite+1337+Troy,+OH+45373&entry=gmail&source=g> >>> Troy, OH 45373 >>> <https://maps.google.com/?q=1100+Wayne+St+Suite+1337+Troy,+OH+45373&entry=gmail&source=g> >>> >>> On Mon, Oct 16, 2017 at 9:14 AM, Jaime Solorza < >>> [email protected]> wrote: >>> >>>> https://www.forbes.com/sites/thomasbrewster/2017/10/16/krack >>>> -attack-breaks-wifi-encryption/#60cf1d892ba9 >>>> >>> >>> >> >
