Abacwaningi bakwa-Eset engqungqutheleni eqhubeka kulezi zinsuku ulwazi mayelana () kuma-chips angenawaya e-Cypress nawe-Broadcom, akuvumela ukuthi ukhiphe ukubethela kwethrafikhi ye-Wi-Fi ebanjiwe evikelwe usebenzisa iphrothokholi ye-WPA2. Ukuba sengozini kuqanjwe ngekhodi ukuthi Kr00k. Inkinga ithinta ama-chips e-FullMAC (isitaki se-Wi-Fi sisetshenziswa ohlangothini lwe-chip, hhayi ohlangothini lomshayeli), sisetshenziswa ezinhlobonhlobo zamadivayisi abathengi, kusukela kuma-smartphones avela kubakhiqizi abaziwayo (i-Apple, i-Xiaomi, i-Google, i-Samsung) izipikha ezihlakaniphile (i-Amazon Echo, i-Amazon Kindle), amabhodi (i-Raspberry Pi 3) nezindawo zokufinyelela ezingenantambo (Huawei, ASUS, Cisco).
Ukuba sengozini kubangelwa ukucubungula okungalungile kokhiye bokubethela lapho kunqanyulwa () amadivayisi asuka endaweni yokufinyelela. Lapho inqanyulwa, i-chip ye-seshini egciniwe (PTK) isethwe kabusha ukuze ibe uziro, njengoba ingekho enye idatha ezothunyelwa kuseshini yamanje. Ingqikithi yokuba sengozini ukuthi idatha esele kubhafa yokudlulisela (TX) ibethelwe ngokhiye osusuliwe ohlanganisa kuphela oziro futhi, ngokufanelekile, ingasuswa ukubethela kalula uma ibanjwa. Ukhiye ongenalutho usebenza kuphela kudatha eyinsalela ku-buffer, engamakhilobhayithi ambalwa ngosayizi.
Ngakho-ke, ukuhlasela kusekelwe ekuthumeleni okwenziwa kozimele okuthile okubangela ukuhlukaniswa, kanye nokucatshangelwa kwedatha ethunyelwe ngokulandelayo. Ukuzihlukanisa kuvame ukusetshenziswa kumanethiwekhi angenawaya ukushintsha ukusuka endaweni eyodwa ukuya kwenye ngenkathi uzulazula noma lapho kulahleka ukuxhumana nendawo yokufinyelela yamanje. Ukuzihlukanisa kungabangelwa ukuthumela ifreyimu yokulawula, edluliselwa ingabhaliwe futhi ayidingi ukuqinisekiswa (umhlaseli udinga kuphela ukufinyelela kwesignali ye-Wi-Fi, kodwa akadingi ukuxhunywa kunethiwekhi engenantambo). Ukuhlasela kuhlolwe kusetshenziswa umthetho olandelwayo we-WPA2 kuphela; ukuthi kungenzeka yini ukuhlasela i-WPA3 ahlolwe.
Ngokwezilinganiso zokuqala, ukuba sengozini kungase kuthinte izigidigidi zamadivayisi asetshenziswayo. Inkinga ayiveli kumadivayisi ane-Qualcomm, Realtek, Ralink ne-Mediatek chips. Ngesikhathi esifanayo, ukususwa kwethrafikhi kuyenzeka kokubili lapho idivayisi yeklayenti esengozini ifinyelela indawo yokufinyelela engenankinga, futhi uma idivayisi ethintwa inkinga ifinyelela indawo yokufinyelela ebonisa ukuba sengozini. Abakhiqizi abaningi bedivayisi yabathengi sebevele bakhiphe izibuyekezo ze-firmware ezibhekana nobungozi (ngokwesibonelo, i-Apple ukuba sengozini emuva ngo-Okthoba wonyaka odlule).
Kufanele kuqashelwe ukuthi ubungozi buthinta ukubethela ezingeni lenethiwekhi engenantambo futhi kukuvumela ukuthi uhlaziye ukuxhumana okungavikelekile kuphela okusungulwe ngumsebenzisi, kodwa akwenzi kube nokwenzeka ukulimaza ukuxhumana nokubethela ezingeni lesicelo (HTTPS, SSH, STARTTLS, DNS phezu kwe-TLS, i-VPN, njll.). Ingozi yokuhlaselwa iphinde yehliswe yiqiniso lokuthi ngesikhathi umhlaseli angakwazi ukuhlehlisa kuphela amakhilobhayithi ambalwa edatha eyayiku-buffer yokudlulisela ngesikhathi sokunqanyulwa. Ukuze uthwebule ngempumelelo idatha eyimfihlo ethunyelwe ngoxhumano olungavikelekile, umhlaseli kufanele azi kahle ukuthi ithunyelwe nini, noma aqhubeke aqale ukunqamula indawo yokufinyelela, okuzoba sobala kumsebenzisi ngenxa yokuqalwa kabusha okuqhubekayo kokuxhumana okungenantambo.
Amanye amathuluzi ahlolwe yi-Eset ukuze akwazi ukuhlasela:
- I-Amazon Echo 2nd gen
- I-Amazon Kindle 8th gen
- Apple iPad mini 2
- I-Apple iPhone 6, 6S, 8, XR
- I-Apple MacBook Air Retina 13-intshi 2018
- I-Google Nexus 5
- I-Google Nexus 6
- Google Nexus 6s
- Ukusajingijolo Pi 3
- I-Samsung Galaxy S4 GT-I9505
- Samsung Galaxy S8
- Xiaomi Redmi 3S
- Amarutha angenantambo ASUS RT-N12, Huawei B612S-25d, Huawei EchoLife HG8245H, Huawei E5577Cs-321
Source: opennet.ru