Moggadeet Posted December 12, 2014 Posted December 12, 2014 I have a few questions for whoever thought it was a good idea to offer less choices on the new update on the pineapple? More specifically, what added benefit does it give users not to choose their wifi encryption protocol, or what added benefit does it give users not to disable the open connection all togetther from the easy to use web interface? Everything else you did with this update is just fine(at least from what I've seen) besides that area. Why would you think that giving less ease of use was better? I'm pretty sure I'm not the only one thinking this and noone should be ok with what was done with that area.
newbi3 Posted December 12, 2014 Posted December 12, 2014 Correct me if I'm wrong (I dont have a pineapple infront of me right now) but you can disable the open access point from the network infusion by clicking the check mark that says "disable". Also why would you want to choose WEP or WPA? The purpose of having the WPA2 encrypted network is so that your pineapple doesn't get owned, why would you want that less secure? If for whatever reason you do want it less secure its only like 2 lines you have to change in /etc/config/wireless and then type the "wifi" command and you're done
Moggadeet Posted December 12, 2014 Author Posted December 12, 2014 Correct me if I'm wrong (I dont have a pineapple infront of me right now) but you can disable the open access point from the network infusion by clicking the check mark that says "disable". Also why would you want to choose WEP or WPA? The purpose of having the WPA2 encrypted network is so that your pineapple doesn't get owned, why would you want that less secure? If for whatever reason you do want it less secure its only like 2 lines you have to change in /etc/config/wireless and then type the "wifi" command and you're done U can s Disable the encrypted one and only "hide" the open one. Also having the other encryptions serve a purpose of having system u can test hacking into yourself/teach other and show why u shouldnt have this type of encryption of course there is always other reasons and never a good reason not to have the option., also other things that are somewhat useful to me.
m40295 Posted December 12, 2014 Posted December 12, 2014 (edited) I see that they added more features instead of only having an open access point to connect to now we have a protected access. And the choice to have an open access. Or hidden open access. Not one person in my house has found the hidden one but when I run the attack such as karma or pineap I can still get people to connect. you can always edit interfaces file to your liking. Edited December 12, 2014 by m40295
Moggadeet Posted December 12, 2014 Author Posted December 12, 2014 I see that they added more features instead of only having an open access point to connect to now we have a protected access. And the choice to have an open access. Or hidden open access. Not one person in my house has found the hidden one but when I run the attack such as karma or pineap I can still get people to connect. you can always edit interfaces file to your liking. yes that is true, many non-tech savy people would probably find the hidden access point, but I found it with ease and could still connect to it with ease. I still think they should have the way they had it before and have an option to have a/an open access point if u want it.
newbi3 Posted December 12, 2014 Posted December 12, 2014 The reason for not giving you the option to turn off the open access point is because it is needed for karma to still work. If its gone then karma will not work
m40295 Posted December 13, 2014 Posted December 13, 2014 It all depends on what you're using your pineapple for it has newbi3 said if you're trying to capture anyone using karma you're going to want them to be able to connect to you unless you're handing out the password for the encryption you're going to be all alone I personally love the 2 ap mode great addon
hk887 Posted December 13, 2014 Posted December 13, 2014 I too would like to be able to disable the open connection from the web interface.
m40295 Posted December 14, 2014 Posted December 14, 2014 edit the interfaces file make both wpa2 Or iw wlan0 down should work. I just dont understand why you would want to limit conmections to only password access wifi. With no open ap. Karma will not function. wlan0 = SSID= _ open hidden Wlan0.1 = pineapple wpa2 wlan1 mon0 Wlan2 client to router Works great for me Not one person has found _ network yet but karma works along with pineap
SergeantFTC Posted December 14, 2014 Posted December 14, 2014 (edited) Not everyone wants to use Karma all of the time. Anyway, I can confirm that ifconfig wlan0 down does work as expected, without messing with wlan0-1, the secure AP. However, that does cause the blue wlan0 light to turn off. Edited December 14, 2014 by SergeantFTC
TitaniumRat Posted December 15, 2014 Posted December 15, 2014 by default, the name of the hidden ssid is vulnerable if you know what to look for... it seems to get created with Pineapple5_ followed by the last 4 digits of the wireless adapter's MAC address. a shell script, a while loop, an incrementing $counter and iwconfig wlan1 essid Pineapple5_${counter} would get you through most of the combinations of 4 digits. you'd just have to account for the rest of the hex possibilities to be thorough.
Moggadeet Posted December 16, 2014 Author Posted December 16, 2014 (edited) oh btw karma WILL Function if you have the password to the wifi btw. I have been to many hospitals where they give out the password to their wifi and have use karma on a protected wifi point(all u need to do is change your wifi protected password to their's. It's basic logic, all karma does is intercept the devices probes and redirects it to the mark 5(You can also block anyone who tries to connect to their wifi if you have the wrong password, which is good if u want to be an asshole to your friends). also quoting the other person above me, looks like this is true and provides a even more security flaw. Another reason to remove this second open one is that it will flood the airwaves(very settle, but in places with many wifi connections around this could serve an issue) with, NO REAL PURPOSE. All I want is the option to disable the second one and if i need it again an option to re-enable it from within the web interface.(i think that is the better option) Edited December 16, 2014 by Moggadeet
Moggadeet Posted December 16, 2014 Author Posted December 16, 2014 edit the interfaces file make both wpa2 Or iw wlan0 down should work. I just dont understand why you would want to limit conmections to only password access wifi. With no open ap. Karma will not function. wlan0 = SSID= _ open hidden Wlan0.1 = pineapple wpa2 wlan1 mon0 Wlan2 client to router Works great for me Not one person has found _ network yet but karma works along with pineap I don't want to limit the connections just to password wifi(just to ONE! wifi connection, we don't need 2)
m40295 Posted December 16, 2014 Posted December 16, 2014 sorry I will stop helping I like haveing both
Darren Kitchen Posted December 16, 2014 Posted December 16, 2014 oh btw karma WILL Function if you have the password to the wifi btw. I have been to many hospitals where they give out the password to their wifi and have use karma on a protected wifi point(all u need to do is change your wifi protected password to their's. It's basic logic, all karma does is intercept the devices probes and redirects it to the mark 5(You can also block anyone who tries to connect to their wifi if you have the wrong password, which is good if u want to be an asshole to your friends). also quoting the other person above me, looks like this is true and provides a even more security flaw. Another reason to remove this second open one is that it will flood the airwaves(very settle, but in places with many wifi connections around this could serve an issue) with, NO REAL PURPOSE. All I want is the option to disable the second one and if i need it again an option to re-enable it from within the web interface.(i think that is the better option) I'm sure that option can be accommodated if a ticket is submitted: https://wifipineapple.com/index.php?bugs_pub
Moggadeet Posted December 16, 2014 Author Posted December 16, 2014 Sent in the Suggestion, thanks for taking your time to read this and hope you add the suggestion. Please Close this thread if possible, thanks.
Recommended Posts