Do you know if they did anything to mitigate replay attacks? If not, you could p... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		x1798DE on Sept 18, 2014 \| parent \| context \| favorite \| on: I was asked to crack a program in a job interview Do you know if they did anything to mitigate replay attacks? If not, you could potentially capture someone's first call-hope and replay it until they fail. Presumably no one would want to, but people still like messing with one another for fun. Also, if you discover a vulnerability like that, you could plausibly claim that someone exploited it to bomb your grade, particularly if you used it against a bunch of people.

superuser2 on Sept 18, 2014 [–]

You would have to be in a position to pcap another person's attempt, which would itself be a fairly intense project on a WPA2-EAP network.

Definitely worthy of glory, but probably harder than just doing the project.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact