Date: Wed, 2 Apr 2008 14:32:04 +0100 (BST) From: Iain Hibbert <plunky@rya-online.net> To: mato <gamato@users.sf.net> Cc: freebsd-bluetooth@freebsd.org Subject: Re: BT issues Message-ID: <1207143124.467349.1017.nullmailer@galant.ukfsn.org> In-Reply-To: <47F13FEB.10503@users.sf.net> References: <47DBE7A4.3060006@users.sf.net> <bb4a86c70803161729y51f376d0t8333c30713c646d6@mail.gmail.com> <47EF6AA5.60403@users.sf.net> <bb4a86c70803311038p6a3d0a3fu8628f53683ba95fe@mail.gmail.com> <47F13FEB.10503@users.sf.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 31 Mar 2008, mato wrote: > However, Windows can manage this as it asks for PIN key when connection > initiation fails. While I don't expect FreeBSD asking for a PIN, it might be > quite useful if it could automatically (upon a connection establishing > failure) throw away its stored link key and recreate it from PIN as Windows > does. btw That would be the wrong thing to do. The stored link key is the 'password' for the remote BDADDR to connect to your services and it is possible on many devices to change the bluetooth device address (BDADDR) You don't want to make it so that a remote attacker can just cause a 'password' reset by pretending to be an authorised device, and this is the reason PINs should not be permanently stored.. iain
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1207143124.467349.1017.nullmailer>