RE: WLAN Security FAQ

["Klaus, Chris (ISSAtlanta)" <CKlaus () iss net>]

Ron,

The latest version is at http://www.iss.net/wireless. It's at version 1.5.
It has also been posted on some of the security Usenet newsgroups if you
want an ASCII version.

Here's recently added info to the FAQ:

Version 1.5

Added all of Netgear's default WEP keys. 
Added Pringles Can and Waveguide Antenna Info. 
Added hybrid threats, next-gen virus/worm spread by wireless. 
Added Parasitic Grids. Free anonymous access for intruders. 
Added SNMP vulnerabilities.  
Added 802.1X Security, and its flaws. 
Added MiniStumbler, Wireless Scanner, BlackICE PC Protection. 
Added info on Broadcast pings. 
Version 1.3 

Added Section 1.7 regarding internal antenna. 
Added link to Cigital regarding ArpSpoofing. Cigital put together a nice
diagram of the attack. 
Added Default WEP key for NetGear AP. 
Added link to BSD version of AirSnort.

-----Original Message-----
From: R. DuFresne [mailto:dufresne () sysinfo com] 
Sent: Sunday, April 28, 2002 1:52 PM
To: Klaus, Chris (ISSAtlanta)
Cc: 'pen-test () securityfocus com'
Subject: Re: WLAN Security FAQ



Chris,

Where is this FAQ maintained online?

Thanks,

Ron DuFresne
-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior security consultant:  sysinfo.com
                        http://sysinfo.com

"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
                -- Johnny Hart

testing, only testing, and damn good at it too!

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/