Penetration Testing mailing list archives
Re: [PEN-TEST] Penetrating Wireless Networks
From: "Matteo,Marc A." <mmatteo () FUSIONSTORM COM>
Date: Tue, 13 Mar 2001 10:08:43 -0800
A note on WEP: Do not use it. Since static keys are used, the risk of
[ snip ]
You are kidding right? If not, then what perfect solution do you propose? I would agree that if anyone thinks WEP is the end all of wireless security, they are sadly mistaken, but "Do not use it" is hardly an appropriate answer. The answer is "use it, and other appropriate security measures".
Well, one problem is that WEP requires some overhead and on lower end equipment can degrade performance. A lot of the gateways/access points don't have the CPU power to adequatly handle 64-bit WEP let alone 128-bit. At least in several of the wireless networks I've seen, a more efficient setup would be to disable WEP entirely and use IPsec end-to-end (ideally moving the processing needs to a more suitable CPU). So I think the better answer is "do not use it and use other appropriate security measures instead" :). Marc
Current thread:
- Re: [PEN-TEST] Penetrating Wireless Networks, (continued)
- Re: [PEN-TEST] Penetrating Wireless Networks mirza sahib (Mar 11)
- Re: [PEN-TEST] Penetrating Wireless Networks Ichinin (Mar 11)
- Re: [PEN-TEST] Penetrating Wireless Networks Phil Cox (Mar 12)
- Re: [PEN-TEST] Penetrating Wireless Networks Marc Mosko (Mar 12)
- Re: [PEN-TEST] Penetrating Wireless Networks Ichinin (Mar 13)
- Re: [PEN-TEST] Penetrating Wireless Networks Phil Cox (Mar 14)
- Re: [PEN-TEST] Penetrating Wireless Networks Phil Cox (Mar 12)
- Re: [PEN-TEST] Penetrating Wireless Networks Frank Knobbe (Mar 08)
- Re: [PEN-TEST] Penetrating Wireless Networks Marnix Petrarca (Mar 09)
- Re: [PEN-TEST] Penetrating Wireless Networks Clarke, Matthew J (Mar 09)
- Re: [PEN-TEST] Penetrating Wireless Networks Bourque Daniel (Mar 13)
- Re: [PEN-TEST] Penetrating Wireless Networks Matteo,Marc A. (Mar 13)
- Re: [PEN-TEST] Penetrating Wireless Networks Phil Cox (Mar 14)