|
Posted by John Hyde on October 11, 2005, 9:46 am
If you were Registered and logged in, you could reply and use other advanced thread options
on 10/10/2005 9:49 PM Unruh said the following:
>
>
>>>WEP128 is broken, it's not even worth thinking about anymore.
>>>
>>>
>>>Juergen Nieveler
>
>
>>Thanks for the reply. I'll be trying to find a firmware upgrade for the
>>laptop since it is built in. If not, I'll take the advice of finding an
>>alternate card.
>
>
>>I did find this interesting quote about WEP.
>
>
>>"WEP is better than nothing
>
>
>>If you can't use WPA, perhaps because you can't afford new base stations
>>and Panther upgrades for all your laptops, at least enable WEP, feeble
>>though it may. There is an old joke about two guys hiking in the woods
>>who spot a mean looking grizzly bear heading their way. One of the
>>hikers takes off his back pack, pulls out running shoes, and starts
>>putting them on. The other says "You idiot, you can't outrun a hungry
>>bear in the woods." The first replies "I don't have to outrun the bear,
>>I only have to outrun you." Even minimal security may be effective
>>against snoops who have plenty of unprotected targets to choose from.
>>Use the higher, 128-bit security setting, if possible, and change
>>passwords frequently."
>
>
>>From: http://world.std.com/~reinhold/airport.html
>
>
> That depends on whether or not someone wants to target you. do you have
> competitors who you would rather not have on your network? They do not care
> that the lumber yard down the street is easier to break into, they want
> you.
>
> Ie, if the bear wants you, for your red hat, being able to run faster than
> your friend is irrelevant.
>
Absolutely, and if you saw my other post, my home network is very likely
to be successful just as a "sprinter", my office network needs to be
able to shoot bears. ;-)
JH
|
|
Posted by ROBERT S AMP BA Drake on October 23, 2005, 2:34 pm
If you were Registered and logged in, you could reply and use other advanced thread options
I would add, re: WEP
1. Hide your wireless network
2. Change its name from the provider default
3. Limit the IPs of the computers using the router to just what you need.
The default is usually about 25
Bob Drake
>
>>> WEP128 is broken, it's not even worth thinking about anymore.
>>>
>>>
>>> Juergen Nieveler
>
>>Thanks for the reply. I'll be trying to find a firmware upgrade for the
>>laptop since it is built in. If not, I'll take the advice of finding an
>>alternate card.
>
>>I did find this interesting quote about WEP.
>
>>"WEP is better than nothing
>
>>If you can't use WPA, perhaps because you can't afford new base stations
>>and Panther upgrades for all your laptops, at least enable WEP, feeble
>>though it may. There is an old joke about two guys hiking in the woods
>>who spot a mean looking grizzly bear heading their way. One of the
>>hikers takes off his back pack, pulls out running shoes, and starts
>>putting them on. The other says "You idiot, you can't outrun a hungry
>>bear in the woods." The first replies "I don't have to outrun the bear,
>>I only have to outrun you." Even minimal security may be effective
>>against snoops who have plenty of unprotected targets to choose from.
>>Use the higher, 128-bit security setting, if possible, and change
>>passwords frequently."
>
>>From: http://world.std.com/~reinhold/airport.html
>
> That depends on whether or not someone wants to target you. do you have
> competitors who you would rather not have on your network? They do not
> care
> that the lumber yard down the street is easier to break into, they want
> you.
>
> Ie, if the bear wants you, for your red hat, being able to run faster than
> your friend is irrelevant.
>
|
|
Posted by Juergen Nieveler on October 11, 2005, 9:54 am
If you were Registered and logged in, you could reply and use other advanced thread options
> I did find this interesting quote about WEP.
>
> "WEP is better than nothing
>
> If you can't use WPA, perhaps because you can't afford new base
> stations and Panther upgrades for all your laptops, at least enable
> WEP, feeble though it may.
I don't agree with that, actually. Turning on WEP will make you think
"Oh, I got at least SOME security", so you'll never know when your
security isn't there anymore.
Either go for real security, or no security - if you have no encryption
enabled, you'll at least always remember that there's a good reason to
be carefull.
Juergen Nieveler
--
42? 7 and a half million years and all you can come up with is 42?!
|
|
Posted by John Hyde on October 11, 2005, 9:56 am
If you were Registered and logged in, you could reply and use other advanced thread options
>
>
>>I did find this interesting quote about WEP.
>>
>>"WEP is better than nothing
>>
>>If you can't use WPA, perhaps because you can't afford new base
>>stations and Panther upgrades for all your laptops, at least enable
>>WEP, feeble though it may.
>
>
> I don't agree with that, actually. Turning on WEP will make you think
> "Oh, I got at least SOME security", so you'll never know when your
> security isn't there anymore.
>
> Either go for real security, or no security - if you have no encryption
> enabled, you'll at least always remember that there's a good reason to
> be carefull.
>
> Juergen Nieveler
Ok, well, I never put high value stuff on the home network anyway; even
when it was a hardwire only network. Still have a router, precautions
on each box, etc. But I have family members who will click on anything
that moves. Yes I try to educate them, provide alternate browser, but
if something doesn't work, the immediate response is to fire up Exploder
(er Explorer). It is bad enough to have to fix the boxes without having
to worry about compromised data. (I've been fortunate - apparently some
of my pissing and moaning when I have had to flatten a system has sunk in.)
This is one of the things I learned from this list, don't put high value
data on a computer or network that you cannot adequately secure. So
thanks I guess.
JH
|
|
Posted by Alun Jones on October 11, 2005, 10:21 am
If you were Registered and logged in, you could reply and use other advanced thread options >
>> I did find this interesting quote about WEP.
>>
>> "WEP is better than nothing
>>
>> If you can't use WPA, perhaps because you can't afford new base
>> stations and Panther upgrades for all your laptops, at least enable
>> WEP, feeble though it may.
>
> I don't agree with that, actually. Turning on WEP will make you think
> "Oh, I got at least SOME security", so you'll never know when your
> security isn't there anymore.
>
> Either go for real security, or no security - if you have no encryption
> enabled, you'll at least always remember that there's a good reason to
> be carefull.
Oh? If you can't afford a suit of armour, best to leave your arse flapping
in the wind than put on a pair of trousers?
Perhaps better to install what security you can, but retain the mindset that
you have something approaching no security at all. After all, there are
arguments that say that no security is impossible to crack - would that mean
that you shouldn't ever add security?
Your argument, taken to its logical conclusion, is absurd. Therefore, your
argument, just like that for installing WEP, requires accepting a balance
point somewhere between "nothing" and "perfect".
Alun.
~~~~
|
| Similar Threads | Posted | | wireless security | June 22, 2006, 2:23 am |
| using wireless internet without security | December 8, 2006, 4:02 am |
| wireless security tools | May 6, 2007, 10:53 am |
| THE NON-WIRELESS WIRELESS NETWORK MONITORING SYSTEM | September 14, 2005, 11:38 am |
| Technical Question on wireless security | July 17, 2005, 7:05 am |
| Wireless adapter security question | April 10, 2006, 1:35 pm |
| wireless router password security | May 7, 2008, 9:59 am |
| Home wireless router security by limiting the number of available IP addresses | June 16, 2007, 11:06 pm |
| Public Wireless Network together with Private Wireless Network | November 15, 2007, 3:39 am |
| Help for noob re wireless | January 16, 2007, 7:54 am |
|
XML site map