Ubuntu
indicator-network package

Should prompt the user when connecting to an insecure network

Bug #1411527 reported by Antti Kaijanmäki
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
indicator-network (Ubuntu)
Triaged
Wishlist
Matthew Paul Thomas

Bug Description

To protect the user, we should inform the user that he is trying to connect to a potentially insecure network (Open, WEP, WPA).

[Young Pirate hacker gets top security secrets]
http://www.net-security.org/secworld.php?id=17828

Antti Kaijanmäki (kaijanmaki)
Changed in indicator-network:
importance: Undecided → Wishlist
Antti Kaijanmäki (kaijanmaki)
summary: - should prompt the user when connecting to an unsecure network
+ should prompt the user when connecting to an insecure network
Revision history for this message
Matthew Paul Thomas (mpt) wrote :

I think we need a little more detail on the threat model here.

The person running a Wi-Fi network can monitor your traffic, regardless of whether it is open, WEP, WPA, or anything else. Right?

If so, the only difference here between network types is whether someone *other* than the person running the network can snoop on your traffic. They can if it's open, if it's WEP, if it's WPA-TKIP, if it's WPA with WPS, or if it's WPA with MS-CHAPv2. Correct?

It may make sense to design the fix for bug 1258496 at the same time as this bug.

Pete Woods (pete-woods)
no longer affects: indicator-network
Antti Kaijanmäki (kaijanmaki)
Changed in indicator-network (Ubuntu):
status: New → Triaged
importance: Undecided → Wishlist
Magdalena Mirowicz (magdalena-mirowicz)
summary: - should prompt the user when connecting to an insecure network
+ [indicators] should prompt the user when connecting to an insecure
+ network
Changed in ubuntu-ux:
status: New → Triaged
importance: Undecided → Low
assignee: nobody → Paty Davila (dizzypaty)
Revision history for this message
Matthew Paul Thomas (mpt) wrote : Re: [indicators] should prompt the user when connecting to an insecure network

This is not an indicator design issue, it's a networking design issue. (It applies just as much if you're connecting via System Settings or the Wi-Fi Available prompt.)

Antti, would you be able to answer my previous two questions?

no longer affects: ubuntu-ux
summary: - [indicators] should prompt the user when connecting to an insecure
- network
+ Should prompt the user when connecting to an insecure network
Changed in indicator-network (Ubuntu):
assignee: nobody → Matthew Paul Thomas (mpt)
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.