Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PEN-TEST] Penetrating Wireless Networks

From: "Matteo,Marc A." <mmatteo () FUSIONSTORM COM>
Date: Tue, 13 Mar 2001 10:08:43 -0800
A note on WEP:

Do not use it. Since static keys are used, the risk of


[ snip ]


You are kidding right? If not, then what perfect solution do 
you propose? I
would agree that if anyone thinks WEP is the end all of 
wireless security,
they are sadly mistaken, but "Do not use it" is hardly an appropriate
answer. The answer is "use it, and other appropriate security 
measures".


Well, one problem is that WEP requires some overhead and on lower end
equipment can degrade performance.  A lot of the gateways/access points
don't have the CPU power to adequatly handle 64-bit WEP let alone
128-bit.  At least in several of the wireless networks I've seen, a more
efficient setup would be to disable WEP entirely and use IPsec
end-to-end (ideally moving the processing needs to a more suitable CPU).

So I think the better answer is "do not use it and use other appropriate
security measures instead" :).

Marc
Previous By Date Next
Previous By Thread Next

Current thread: