28 Sep
2004
28 Sep
'04
6:53 p.m.
Hi,
On Mon, 27 Sep 2004, Brent Frère wrote:
Yes your all true, but hey did already some try to crack a WEP
communication, if it's on low traffic network like home, with is generally
switched off even, the probability is rather low that you get the key in
the right time to use it. i KNOW that WEP is not secure, but hey it's
better then nothing, and combined with ACL and only swithing on the net
when you
use it its pretty OK. My advice was ment for his kind of environment, but
of course WPA (or you sure that WPA is not only auth ?) and VPN is far
better.
If I would really NEED this even at home, I would
try to add a VPN
between the two sides of the WiFi link.
Exactly, that's "best practice" right now. If you want do have
this totally secured, route all WLAN traffic through an IPSec
gateway before going onto the LAN - and accept only IPSec
connections of course. You might even want to go IPv6 for such
connectivity (IPSec is included anyway), as many cracker tools
are not fully featured in IPv6 yet.
Greets Eric
--
Pascal Steichen
pascal.steichen(a)lilux.lu
Lilux ASBL
http://www.lilux.lu