Re: Router Homepage says WPA2 but Net Stumbler says WEP

Author	All Replies
duhriddler join:2007-08-26 Riegelsville, PA	reply to puffgussy36 Re: Router Homepage says WPA2 but Net Stumbler says WEP The best solution would be to use WPA2 with AES and a passphrase consisting of 63 random printable ASCII characters. This website will do the trick: »https://www.grc.com/passwords.htm
duhriddler join:2007-08-26 Riegelsville, PA	to forum · permalink · · 2008-03-25 13:22:55 ·
puffgussy36 join:2007-01-15 Hampton, NH	Ah good ol' Gibson Research.
puffgussy36 join:2007-01-15 Hampton, NH	to forum · permalink · · 2008-03-25 13:37:56 ·
justanotherguy @dslextreme.com	As noted above, the best use of WPA or WPA2 is via strong passphrases, at least when using pre-shared key. The better system would be to use an EAP-based system (a la RADIUS server) but that requires an AP that supports it, plus you need to set up a RADIUS server as well as client identity credentials (certificate, password, etc.). It's a lot more moving parts to manage, but it's the best way to keep rotating your Pairwise Master Key between authenticated sessions. Aside from LEAP (and perhaps MD5), I'm not aware of any tools that attack 802.1X. But for small-scale use, WPA / WPA2 is the practical way to go, plus using an SSID that can be considered unique (something that probably won't exist in a rainbow table). Defeating WPA-PSK security is still based on dictionary attacks.
justanotherguy @dslextreme.com	to forum · permalink · 2008-03-25 14:09:17 ·


Saturday, 26-Jul 13:13:54	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact 8th year online! © 1999-2008 dslreports.com. republican-creole page compression OFF