Comment on Always have a good password
over_clox@lemmy.world 22 hours agoI have our modem configured to only allow approved devices to connect, so even if I do share my password with someone or even just post it on the wall in a picture frame, I still have to approve their specific device manually.
smh@slrpnk.net 20 hours ago
Is that bypassable using a spoofed mac address?
Newsteinleo@midwest.social 20 hours ago
yes, but you need the mac of a device on the network. These means you need access to the the router to see the approved mac addresses or you need access to a physical device already on the network. So, something like a wifi enabled security camera could be a risk for anyone securing their network this way.
smh@slrpnk.net 20 hours ago
I’m optimisticly guessing the devices talk to the router in such a way that their mac addresses can’t be eavesdropped out of the ether, and there’s enough mac addresses in the universe that cycling through spoofed addresses is unlikely to be fruitful.
Though, I could learn a device’s mac address by setting up a competing wifi device, possibly by a: having a battery-operated one during a power outage or b: being friendly with my neighbors “sure you can borrow my Wi-Fi”.
Now I’m curious how mac addresses are determined (like, is a Pixel 3’s mac address going to follow a specific pattern?) and I’m going to go look that up.
over_clox@lemmy.world 20 hours ago
Probably, but hey, it’s good enough for the everyday mooches out at our apartments. Not like I go around sharing my mac addresses anyways.