[londons_explore]

"We initialize the random number generator with the system uptime, then use it to make crypto keys" - really?!?

"We also publish the system uptime in an unencrypted broadcast message to save you the effort of even bruteforcing it".

Does nobody do security reviews on this stuff, or are these weaknesses there deliberately?

The line between incompetence and malice really is thin here...

[cm2187]

And on a device equipped with a radio, it's not very hard to generate entropy.

[gsich]

The radio might not be exposed to the OS. If it's a Fullmac device, you usually don't have access to the radio stuff. Even with Softmac, there's not a guarantee.

[cm2187]

I am sure that's a problem on the client, but on the AP, the manufacturer controls both the hardware and the OS.

[gsich]

Not necessarily. Again with fullmac devices you don't control the complete hardware.

[cm2187]

Yeah but if you are Cisco, Netgear or DLink, and tell your supplier that you want a function to access noise in the signal, or you want to get a true random number based on that noise, I am sure they could accommodate in future generations of their chip at an insignificant cost.