I am having issues with a Promise Pegasus RAID system, their tech staff have asked me to send them my Systems Report for both MacBook Pro and the iMac.
I see the system report tells them everything about my Mac down to my WiFi access point and password.
Will sending the report expose me to remote accessing / security risks?
MacBook Pro 15″, macOS 10.14
Yes - Under System report/WiFi/Current Network information - have a look at yours.
I've never seen any compromising info such as passwords in a system report. Where do you see this and what are you using to produce the report?
I've looked at mine, no passwords!?
Hey Bob - thanks for replying -
Under System report/WiFi/Current Network information. Sorry - my apologies - it shows the SSID - I Hide my SSID so confused the two.
I just am wary of sending all my system information to a third party as it also shows MAC addresses etc, I am concerned about people going remote access to my system without permission.
Hiding the SSID achieves probably three goals: it makes the Wi-Fi network harder to join for authorized users, it causes all paired Wi-Fi clients (those set to auto-join) to start broadcasting the name of the hidden SSID everywhere the clients are trying to access any Wi-Fi, and the hidden SSID setting attracts the attention as it’s trivial to pick ip the SSID form the other four spots it gets broadcast.
Here’s the Windows command to show local hidden SSIDs: wlan show networks mode=bssid
Tools such as as NetSpot specifically flag hidden networks, or NetStumbler or other tools. AirCrack works well for this stuff too, and the availability of these and other tools is also why getting to at least WPA2 AES with a robust password, and preferably to WPA3, is a Good Idea.
Microsoft has a write-up from a while back on why hidden SSIDs are a bad idea, too.
Put differently, stop worrying about a SSID name. Even if you don’t un-hide it here, it’s still not going to expose anything that’s not already exposed.
Wow, you see the Wifi password???
Thanks for the advise Mr Hoffman, there are so many different opinions on IT security, it's hard to know best practice.
Sorry - Incorrect info, I confused SSID in the sys report with the WiFi password .
No problem, finally figured that out myself... so, did you send it my friend?
Should I share a System Report with a third party
