[clue-tech] Wireless security again
Adam bultman
adamb at glaven.org
Mon May 16 22:22:27 MDT 2005
Collins Richey wrote:
>A friend just gave me a WRT54G unit which is working ok for the two
>windows laptops in the household - both have builtin .G functionality.
>I haven't completed the setup to use Linux (one of the laptops is dual
>boot).
>
>I've setup the unit and the laptops for WEP 120bit security, but I'm
>not really interested in leaving one these beasts connected 24x7. My
>planned use of the unit is as follows
>
>Cable Modem
> |
> V
>Hardwired 4-port router
> |
> +----------> Desktop PC 1 (Linux CentOS4 mostly) (Firewall)
> |
> +----------> PC 2 (WinXP) (Windows firewall, ie not much)
> |
> +----------> WRT54G (occasional use) <----> various laptops
> | (none of the WRT54G hardwired
>connections used)
> |
> +-----------> (occaional use for laptops, etc.)
>
>I'm just wondering what the real exposure is, since neither of my
>regular PCs will ever be on the wireless connection. I can train my
>wife and daughter never to do financial transactions on the laptops,
>but how are the hardwired units exposed?
>
>
>
Picking on the 'financial transactions' part: Even if someone HAD
cracked your wep setup, and were able to successfully sniff your
traffic, they'd still have to break through the SSL encryption to get
anything REALLY useful.
If your financial institution doesn't have SSLencrypted web pages, I'd
suggest a new bank. If a web site you are visiting allows your info to
be passed in plaintext, well, then that's your own fault, and should
know better than that anyway.
Adam
More information about the clue-tech
mailing list