Wireless Office
Lennart Sorensen
lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org
Mon Jan 5 17:46:54 UTC 2009
On Mon, Jan 05, 2009 at 12:29:36PM -0500, James Knott wrote:
> IIRC, WPA has been partially broken, but not WPA2. WPA was supposed to
> be an interim measure, while waiting for 802.11i to be finalized. WPA2
> is 802.11i, but with a pre-shared key instead of a RADIUS server. TKIP
> is a weak point.
WPA2 does not add anything to WPA security wise, other than mandating
AES must be supported.
PSK is as far as I know considered insecure on either. Perhaps not
completely trivial to break, but certainly something that could be done
within hours or days as far as I have understood.
> That's what I do. My home WiFi is WPA2 with the WiFi router outside my
> firewall. The only way into my home network is via OpenVPN or SSH.
Certainly the best way to get security.
--
Len Sorensen
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list