Wireless Office

Lennart Sorensen lsorense-1wCw9BSqJbv44Nm34jS7GywD8/FfD2ys at public.gmane.org
Mon Jan 5 17:46:54 UTC 2009


On Mon, Jan 05, 2009 at 12:29:36PM -0500, James Knott wrote:
> IIRC, WPA has been partially broken, but not WPA2.  WPA was supposed to 
> be an interim measure, while waiting for 802.11i to be finalized.  WPA2 
> is 802.11i, but with a pre-shared key instead of a RADIUS server.  TKIP 
> is a weak point.

WPA2 does not add anything to WPA security wise, other than mandating
AES must be supported.

PSK is as far as I know considered insecure on either.  Perhaps not
completely trivial to break, but certainly something that could be done
within hours or days as far as I have understood.

> That's what I do.  My home WiFi is WPA2 with the WiFi router outside my 
> firewall.  The only way into my home network is via OpenVPN or SSH.

Certainly the best way to get security.

-- 
Len Sorensen
--
The Toronto Linux Users Group.      Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists





More information about the Legacy mailing list