New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WiFi backdoor #88
Comments
You mean it is in databases other than github? My concern is that the device does not only reset if the reset button is pressed, but also after a Daikin system restart (if powered via P1/P2), or when the known WiFi is no longer available to retry to connect (and if it fails, to start the AP). So how should we differentiate between reset-button-restarts and other restarts? Tasmota uses a method of repeated restarts, but this must be at the cost of flash writes, which may be a risk in some situations when the device continues to restart every 2-3 minutes. |
Maybe if device has been restarted faster than 1 second after initial start? |
@Enelar : Thanks for your suggestion, this is implemented in v0.9.46: |
This vector is highly unlikely, but still exists.
Each time device looses connection, it will reopen public hotspot.
The wifi password of this hotspot is already in databases.
If anyone would just drive by in a car, send wifi deauth beacons, it will make device expose itself.
My proposal: if the device has no wifi connection, create hotspot only after restart (physical key press)
The text was updated successfully, but these errors were encountered: