Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Massive security hole. I have a guest wifi set up in my house with a simplish password I can give out. Guest gets on external internet but can't see my internal private stuff. I can change my guest password without having to reenter my main 63 character password in all my other internal devices.

It's not a security hole, by definition. If you consider it a "security hole" because you cannot read the prompt on your other devices, then I would call that a user problem - certainly not a problem with this tech.

It's like blaming the door because you didn't look through the peephole before opening.

The prompt clearly states "Do you want to share the Wi-Fi password for {wifinetwork} with {user}?"

If you want people to access a GUEST network, have them CHOOSE that network.
 
  • Like
Reactions: WhiteHawk
It's not a security hole, by definition. If you consider it a "security hole" because you cannot read the prompt on your other devices, then I would call that a user problem - certainly not a problem with this tech.

It's like blaming the door because you didn't look through the peephole before opening.

The prompt clearly states "Do you want to share the Wi-Fi password for {wifinetwork} with {user}?"

If you want people to access a GUEST network, have them CHOOSE that network.
It is not me I'm worried about, I'd just refuse to share and point to the guest network. The others in my family are not as careful and are less security aware. Security is compromised when it is easy to make mistakes by unaware people. Once the password is shared it is in the keychain of the device it is shared with for examination by anyone with access to that keychain. For me personally I lock down access to my main internal wifi to a list of known MAC addresses making it impossible to trivially get in without my being aware of what is happening even if the password were to get shared.
 
If you're concerned about security get a Circle and set it to deny/pause new devices that join your network. For access you have to allow the device access to <whatever services/groups you set up>.

The content blocking of a circle is nice, but the whitelisting feature really makes it a great device. You can also set things up to block your guest network* until you actually want someone to use it, which is handy.

* requires a separate AP for the guest network.
 
It is not me I'm worried about, I'd just refuse to share and point to the guest network. The others in my family are not as careful and are less security aware.

I get that you are taking perhaps more than adequate protections. But if other people in your family are not as careful, perhaps they need to become so.

I'd recommend hiding your production network SSID. That solves all the problems, if you really don't want people to make mistakes or train them.
 
Have you tried reading the article which addresses the issue or does your bowel lining block your view?

Why thanks ... I guess you also didn't know how to read:

tl;dr ... and have not tried.

next time you insult someone, look at the mirror first.
 
Tried it recently. It didn’t work after multiple attempts including restarting both iPhones.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.