Dispatcherator
@choiceone.net
moderated:
September 28th, @12:42PM
| Verizon FiOS default WEP key HIGHLY insecure!
Just a FYI, the WEP keys used by default in the wifi routers provided by verizon FiOS are HIGHLY INSECURE!!!!
Even despite this fact, it typically takes me about 10 minutes to crack a 40 or 64 bit WEP key from scratch, regardless of what the key might be.
For these reasons I HIGHLY recommend that people immediately swicth their security to WPA or WPA2 !!!!
This has been a public service announcement. |
|
Vamp
5c077
Premium
join:2003-01-28
MD
 ·Verizon FIOS
moderated:
September 28th, @12:41PM
| They should definitely ship with WPA instead, but they still use WEP for compatability. Some people still use hardware that doesn't support WPA, and even more that dont support WPA2.
--
20/20 FIOS || MSN Msgr: scott001^gmail_com |
|
JohnA
Premium
join:2003-09-16
Pittsburgh, PA
| Re: Verizon FiOS default WEP key HIGHLY insecure!
The idea was not that it was fully secured, but that it was not shipped in a fashion that allowed it to come up fully open. IIRC the original ATs didn't have WPA2. That came in a firmware upgrade. As always, the responsibility for properly securing a wireless network lies with the person operating it. |
|
yj4x4
Someone's in my head but it's not me
Premium
join:2002-09-18
Whittier, CA
clubs:  | reply to Dispatcherator
Anybody who uses defaults deserves whatever happens. |
|
ENIQomios
@verizon.net
moderated:
September 28th, @12:38PM
| reply to Dispatcherator
the wep key that is used is the ROUTER's mac, not the WIFI mac. they are two different addresses.
while wep isn't impossible to break it still has its place and is fine for most users |
|
mystryfiostk
join:2008-07-17
00000
| reply to Dispatcherator
IMO your post should read:
Verizon FiOS default WEP key provides basic security!
if anything they should get a kudo or two (or at least actiontech) for locking down their routers BY DEFAULT.
WEP keeps 99%+ of people off your network and at least it's something. most of the "comcast home networking" setups i've seen are left open as are retail routers. |
|
dstathop
@lmco.com
| reply to Dispatcherator
Re: Verizon FiOS default WEP key HIGHLY insecure!
Arguing about the security of a WEP password is a useless exercise. Who cares, it isn't the password that is insecure, but WEP by itself.
I guess you can give Verizon kudos for implementing some sort of wireless security by default, I still question the use of WEP. Why not WPA, since WPA is orders of magnitude more secure than WEP? Even for the newer routers that actually support WPA. Maybe Verizon didn't want to change their setup or settled on WEP because everyone has WEP. Who knows, but arguing about the security of a WEP password, give me a break. |
|
PoloDude
Premium,VIP
join:2006-03-29
East Northport, NY
·Verizon FIOS
| Yes WEP is the least insecure of the encrption methods.But, to come on here and scream that you can crack it in seconds as a PSA is wrong.
VZ should be given kudos for implementing a basic security on thier installs. WEP is easily used by every system that i have seen so far. It keeps the honest people out and the hackers are going to get in if they want to.
besides urban areas where it easy to "see" many signals at a time, most times you would have to drive around than be set up within range of your intended tagert.
Now i can see 3 to 4 routers from my L/R. But what would be my reason to crack them if except to get online. To do damage,steal?
Most people from my experience have never heard of encryption and are glad that VZ is doing this. They usually have a Linksys open to the world (second largest ISP  )
I also don't think it is right that you have specified the tools and details that might help some one do this.
--
I'm not as good as I once was
but I'm as good once
as i ever was. |
|
xargs
join:2000-08-25
Camarillo, CA
| reply to PoloDude
Re: Verizon FiOS default WEP key HIGHLY insecure!
quote:
VZ should be given kudos for implementing a basic security on thier installs.
But they haven't. They've implemented false security.
quote:
It keeps the honest people out and the hackers are going to get in if they want to.
No, they're not. WPA with a strong password has not been cracked.
quote:
I also don't think it is right that you have specified the tools and details that might help some one do this.
Hiding the truth doesn't make WEP more secure. If people see first hand how easy it is to break WEP, perhaps they'll be motivated to use WPA. |
|
Oregonian2
join:2008-07-16
Beaverton, OR | reply to Dispatcherator
Actiontec/Verizon doesn't do as well as they could, but it's my observation that most routers come with nothin' enabled (public free wifi hotspot mode), so Verizon is way way ahead of most. |
|
EMC2
join:2007-08-21
Tampa, FL
| reply to Dispatcherator
Probably the best thing would be to ship the router with the wifi radio defaulted to OFF. That would require a conscious effort by the user to enable the wifi feature & choose a security setting.
In any event, IMHO, the security of the end user's connection/network is the sole responsibility of the end user. We all use our access to the internet at our own risk. |
|
Merru
join:2008-09-02
Yonkers, NY | reply to Dispatcherator
how about u just lock ure mac address' so no one besides ure comp cant connect or see it |
|
Oregonian2
join:2008-07-16
Beaverton, OR
·Verizon FIOS
 ·SpiritOne / Aracne..
| reply to EMC2
said by EMC2  :Probably the best thing would be to ship the router with the wifi radio defaulted to OFF. That would require a conscious effort by the user to enable the wifi feature & choose a security setting. In any event, IMHO, the security of the end user's connection/network is the sole responsibility of the end user. We all use our access to the internet at our own risk. Good idea except that it would result in massive numbers of problem reports to Verizon (and associated bad reputation) about how the Wifi doesn't work.  |
|
cdru
Go Colts
Premium,MVM
join:2003-05-14
Fort Wayne, IN
·Verizon FIOS
| reply to Merru
said by Merru :how about u just lock ure mac address' so no one besides ure comp cant connect or see it MAC addresses can be sniffed and spoofed. MAC authentication is only security through obscurity. It's better then nothing, but your foolish if you rely on it solely. |
|
Drunkula
Premium
join:2000-06-12
Denton, TX
·Verizon FIOS
| reply to Dispatcherator
My stepdad had a problem with his new wireless router and he called me to help. I wasn't able to return his call to the next day so he called his ISP [not Verizon] for assistance. The tech walked him through configuring the encryption on the router and the few machines that have wireless. I was pleased that he got it fixed until I learned the tech set him up with WEP. I strongly urged him to switch to WPA if at all possible if all their hardware supports it. If not the hardware should be upgraded.
--
There are 10 types of people that understand binary numbers. Those that do - and those that do not... |
|
JohnNWPVNJMH
join:2007-03-26
Berkeley Heights, NJ
·Verizon Online DSL
| reply to mystryfiostk
I agree. The basic WEP will keep off the average neighbor trying to get free Internet off your dime.
You are right, WEP keeps 99%+ of people off your network and in such Verizon and Actiontec did the right thing.
Yes, WPA and WPA2 is superior and I use WPA2 with a large & complex passkey along with my SSID in stealth mode. That said, the cost for Verizon to send by default WPA2 to the average consumer would be huge. Compatibility and complexity in getting all of the devices to work are a task for any seasoned tech and certainly not that of a regular user. WPA2 can be very frustrating when trying to integrate older equipment, PC to MAC and so on.
I give both thumbs up to Verizon for having the specs that their routers ship secured with basic WEP. |
|
deblin
Dark Side of the Moon
Premium,MVM
join:2001-09-01
Middletown, DE
·Verizon FIOS
 ·Comcast Workplace
·DSL EXTREME
| said by JohnNWPVNJMH :along with my SSID in stealth mode. "stealth" mode (e.g. not broadcasting the SSID) isn't really worthwhile. The SSID is easily found if there are active wifi devices talking to the WAP/router, and it can even cause issues with certain client devices (though, that might have been something that has mostly been fixed with newer devices that support WPA2 anyway )
--
He who is not contented with what he has, would not be contented with what he would like to have. -Socrates |
|
