[CLUE-Tech] WEP security?
Randy Arabie
randy at arabie.org
Sun Nov 17 17:19:05 MST 2002
On Sunday, 17 November 2002 at 16:44:30 -0700, Sean LeBlanc wrote:
> I was trying to enable WEP on my laptop to discourage wardrivers or
> neighbors from trying to hijack my wireless network, but the wicontrol(8)
> man page says this...wicontrol is what is used on FreeBSD, BTW, to set up
> wireless configuration.
>
> I knew WEP was on shaky ground, but this makes it sound like cracking WEP is
> trivial. Has anyone been cracked at work or at home, and if so, how did you
> find out about it?
>
> ======
> BUGS
>
> The WEP encryption method has been broken so that third parties can
> recover the keys in use relatively quickly at distances that are surpris-
> ing to most people. Do not rely on WEP for anything but the most basic,
> remedial security. IPSEC will give you a higher level of security and
> should be used whenever possible. Do not trust access points or wireless
> machines that connect through them as they can provide no assurance that the
> traffic is legitimate. MAC addresses can easily be forged and should
> therefore not be used as the only access control.
<--snip-->
I have no experience with WEP, definately none WRT cracking it ;-)
But, I have read in numerous places that it is in no way secure. I
would use IPSEC, as recommended in the notes above.
--
Allons Rouler!
Randy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
Url : http://cluedenver.org/pipermail/clue-tech/attachments/20021117/5d156e17/attachment.bin
More information about the clue-tech
mailing list