Turn This Off On Your Router RIGHT NOW #Shorts

And turn off data logging. For some reason by default my router was creating log files of all network connections and packets and it was eating so many cpu cycles that the 1.8ghz quad core inside the router couldn't keep up and it caused my download speeds to be less than half what it should be. As soon as I disabled logging I got max speeds

ms

If someone is sitting in my driveway for hours, they're going to have bigger problems than getting access to my wifi.

Lil_Puppy

It gets worse. On some routers, "turning off" WPS disables the button and hides the UI for entering a client PIN - but the router itself still responds to WPS messages using the AP PIN, which is what the attack uses!

NetRolllerD

And then there's my POS Netgear modem/router that has a checkbox to disable wps, but has it grayed out so I can't use it. Thanks Netgear

smokeyninja

It is ridiculously easy to get WiFi access to a network with WPS enabled. I'm noticing that it is disabled by a lot of routers these days.

Bs

Thought I had this disabled. Turns out I didn't (probably misremembered from the last router). Good thing I checked.

yuvalne

Thing is, a lot of devices still requires WPS to pair to a router

GnZLow

WPS attacks only affect WPS pin mode since if you were doing any of the Pixie-Dust or just bruteforce attacks you would have to send the payload, if it was set up with a button you would just get a timeout

ratsec

I had a printer that could only be connected to my router through WPS
My router didn't have WPS

Jensettiman

Surprisingly WPS was off by default on my cheap modem/router combo (only being used as a modem now though)

sorrynotsorry

WPS is really bad securitywise, but some devices that doesn't have any input methods still relies on WPS. For this reason I keep an old router with WPS button activated and the same SSID and password as my current router and when a client needs WPS to connect I power up the old router, press the WPS button and when everything's done I turn the old router off again. Not the most convenient method, but it gets the job done.

nictvru

Haha that's how I logged into my thesis adviser's wifi without him knowing.

icerink

I don't think I've ever gotten the WPS button to work.

bland

I didn't know all this, but I thought it was common sense that if something is made too easy for me, it's probably made too easy for other people too.

sen

If you actually like WPS you can always turn it on temporarily to auth a device and then turn it off again.

BlazerRox

There are 2 WPS authentication modes: Push button and PIN. Some routers have a toggle for both. The PIN mode is the unsecure one, since a number is easy to guess. Push button you can leave on, since you only get 2 minutes to connect, and it's unlikely someone is waiting around to connect to it ahead of you.

Vortexcube

Better: Upgrade your router's firmware to OpenWRT or DDWRT. Neither support WPS, or several other things that are easily broken.

TvistoProPro

most routers these days have a brute force protection and disable wps after 2-3 attempts for a day or so. still better to turn it off just in case

baconbob

I thought WPS was only turned on temporarily for a few minutes when you press the button, to allow you to connect devices like printers?

R.-.

Except there are 3 wps modes.

1) router gives pin, enter it on device, always active
2) device sets pin, enter on router, only active while the device is attempting to connect via WPS
3) push a button on both the router andd the device within 2 minutes

Only the first one is critically compromised, due to a flaw that there are different error codes on whether the left or right half of the 8 digit code is wrong, making it like cracking 2 4 digit codes (20k options) instead of one 8 digit code (100 million options)

MyxT