[SATLUG] Help with Madwifi + WPA2 Supplicant + GUI configuration
- ROOT
Gabriel Cornyn
gabriel.cornyn at gmail.com
Thu Jun 21 02:50:39 CDT 2007
I second the VPN on top of your wireless connection. However I have to
say a carefully chosen password using standard WPA beats WEP hands
down. With the new PTW attack for WEP that was released widely in
May, regardless of your levels of precaution, and assuming the
attacker if familiar with the tools, they have access in under 20
minutes. Period.
Even if that number is off by a few minutes, the time required is on
the same order, so basically stop using WEP!
If you are curious, check out
http://docs.lucidinteractive.ca/index.php/Cracking_WEP_and_WPA_Wireless_Networks#WPA_Crackin
or http://aircrack-ng.org/doku.php?id=simple_wep_crack for a more
detailed explanation.
> Be careful with WPA. If you're using in a WPA-Enterprise
> environment, my understanding is that it's reasonably secure.
>
> However, outside of an Enterprise environment, my understanding is
> that it's less secure than WEP. For that, you'd need WPA2.
>
> If you're not in an Enterprise environment and you can't use WPA2,
> then you'd be better off with WEP.
>
> Oh, and of course you should be doing a software IPSec VPN on top of
> whatever you've got at the hardware level. ;)
More information about the SATLUG
mailing list