Warn the user when connecting to an open AP which has been connected before as encrypted
Bug #1267407 reported by
Antti Kaijanmäki
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Ubuntu UX |
Triaged
|
Wishlist
|
Matthew Paul Thomas | ||
| indicator-network (Ubuntu) |
Triaged
|
Wishlist
|
Unassigned | ||
Bug Description
scenario:
Bob works at an office which provides encrypted wireless for the employees to securely connect to the company network. Somebody outside the office sets up an access point with the same SSID but without encryption hoping that somebody from the company connects to it. Bob does not notice that the AP he sees in his indicator is in fact not encrypted and connects to the open AP thinking he is connected to the company secure AP and now all his sensitive traffic is exposed to the attacker.
Revision history for this message
| Antti Kaijanmäki (kaijanmaki) wrote | #1 |
| summary: |
- Warn the user when connecting to an open AP which has been connectected + Warn the user when connecting to an open AP which has been connected before as encrypted |
Revision history for this message
| Pete Woods (pete-woods) wrote | #2 |
| Changed in indicator-network (Ubuntu): | |
| importance: | Undecided → Wishlist |
| no longer affects: | indicator-network |
| Changed in indicator-network (Ubuntu): | |
| status: | New → Triaged |
| Changed in ubuntu-ux: | |
| status: | New → Triaged |
| importance: | Undecided → Wishlist |
| assignee: | nobody → Matthew Paul Thomas (mpt) |
Revision history for this message
| Matthew Paul Thomas (mpt) wrote | #3 |
To post a comment you must log in.
putting this to wishlist for now. I don't think nm-applet nor Windows implement this kind of a warning, but it would be relatively easy to implement.
Benefits:
A) would offer a minimal protection against this simple AP attack
B) would help to detect if somebody in the office has set up a tethering AP by accident (this happens more often you think)