NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
WPS is ON all the time, and can't be disabled
Orbi RBS20/CBR40 System WiFi Monitor is showing the network as WPS enabled: so it seems it is susceptible to the WPS hacks out there. There is also no visible way to disable WPS within the Orbi L...
I installed the ""reaver" WPS hack tool for Linux. After several attempts, all it manages to say is, "detected AP rate limiting. Waiting 60 seconds before re-checking." One attempt said, that it was trying PIN 12345670, but nothing after that. Not encouraging that the tool designed to discover WPS PIN in a minimum of 11,000 attempts has failed miserably.
Of course, I will keep plugging away trying to hack the Orbi WPS PIN, but I have this feeling that the comment from 2014 is correct that "Modern WiFi access points are not vulnerable to PIN attack."
That leaves the physical WPS button, which I do not see as that much of a vulnerability. If someone can physically touch my Orbi to press the WPS button, they can do so much more.
CrimpOn Interesting results, but not surprising. The fact you can attack the PIN is evidence Netgears post is not fully representative of the facts. The Orbi's do have WPS Pin-mode enabled and it is pretty much the standard implementation. Since they've applied the "try too many times we will stop responding" fix - your tests confirm that it works - it's probably not worth bothering with. The "listen for handshake attack" that detects the PIN being used is probably the worst case: but since that is only used the first time the slave connects after reboots, the chance of someone listening long enough is probably quite small.
After more playing, I found that the "no new connections" security feature also seems broken. When I set Access Control ON devices that come and go (e.g., TV and phones) fail to gain access if they were off when I changed the setting -- yet they appear in the prior devices list and are in my device reservation list. But this is a subject for another post ... lol.
After several more attempts, I am getting nowhere with hacking WPS on the Orbi.
I have yet to get a single attempt to get past "Trying PIN 12345670". All the examples of Reaver on the web describe various messages, getting NACK responses, and then trying another PIN. Mine never get a response at all, much less make another attempt.
A couple of the hacker web sites make the same comment that WPS PIN hacks work only on WiFi routers built between 2006 and 2014.
("But a log of people keep electronics for 10 years or more, so...")
While "push button" WPS is definitely an Orbi feature, I am beginning to doubt that PIN WPS is.