lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <3FB41467.8040802@domdv.de>
From: ast at domdv.de (Andreas Steinmetz)
Subject: Re: Serious flaws in bluetooth security lead to disclosure of personal
 data

Pentest Security Advisories wrote:
> 
> Fixes.
> ======
> 
> 1) Only enable Bluetooth when absolutely necessary.
> 
> 2) Place the device in non-discoverable mode. While this does not correct
>    the fault, it is harder to find the target device. There can be problems
>    with this, some Nokia devices fail will to connect properly when hidden.
> 

Hint: After powering on or enabling bluetooth on the 6310i put the phone 
   in discoverable mode, connect the required devices and after that put 
the phone in non-discoverable mode. At least the HDW-2 heatset will then 
be able to connect while the 6310i is in non-discoverable mode.

-- 
Andreas Steinmetz

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ