lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20031114120420.A18072@ring.CS.Berkeley.EDU>
Date: Fri, 14 Nov 2003 12:04:20 -0800
From: Nicholas Weaver <nweaver@...berkeley.edu>
To: "Schmehl, Paul L" <pauls@...allas.edu>
Cc: bugtraq@...urityfocus.com, full-disclosure@...ts.netsys.com
Subject: Re: [Full-Disclosure] Re: Serious flaws in bluetooth security lead to disclosure of personal data


On Fri, Nov 14, 2003 at 12:38:50PM -0600, Schmehl, Paul L composed:
> Bluetooth is *supposed* to be very short range - 10 meters is supposed
> to be the maximum range.  It is *not* 802.11b.  It's 802.15.1.  See
> bluetooth.org for the details.

And 802.11b is supposed to only be a few hundred meters, but that
hasn't stopped people from accessing across 50 kilometers!

And 16 kilometers with omnidirectional antennas!

http://home.earthlink.net/~wifi-shootout/

Thus although bluetooth's range is supposed to be 10 meters, for
purposes of attack envelope, it should probably be considered 100
meters or more.

-- 
Nicholas C. Weaver                                 nweaver@...berkeley.edu

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ