[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
Grant Sewell wrote: > On Thu, 14 Feb 2008 15:42:16 +0000, Steph Foster wrote: > >> I picked up this book in my local Waterstones to browse through >> >> It looks reasonably friendly to newbies with inofrmation about >> customizing the look of your Ubuntu box >> >> How to find the apps, check your email, browse the web etc >> >> I do however have some serious doubts about the level of technical >> ability of the author >> >> I had to stifle a laugh when I read: >> >> "some wireless internet connections encrypt their traffic with a code >> called WEP which serves to prevent the internet traffic from being read >> by hackers with specialist equipment" >> >> This is precisely what gives people the wrong impression that they are >> nice and safe, all wrapped up in their belief they are secure >> >> I believe the expression "Snake Oil" comes in here >> >> WEP can be broken in 60 seconds flat with aircrack-ptw >> > > One of my favourite things to do when people start talking about how secure > wireless is is to direct them to a little video showing someone breaking > into a WEP and a WPA-PSK network (then stealing someone's cookies). > > Go to http://www.offensive-security.com/videos.php and watch the BackTrack > 3 teaser. :D > > Grant. > > > Ah yes, thats the demo of WifiZoo on the beta of BackTrack 3 It's really not WEP's fault , it was based on the RC4 cipher by Ron Rivest (of RSA fame) RC4 has it's faults as they all are found to do in time I'm reasonably happy with having WPA2 protection on my router for the time being and anyway its only the other half's laptop, I'm on Cat 5 utp. *laughs* I'll stick with nice long DiceWare generated passwords and so long as no one has time and storage enough to generate rainbow tables for 20 character passwords I won't worry too much *thinks* using alpha numerics with no lower case or special characters thats 36 to the power of 20 !! I'm sure that is likely chicken feed to GCHQ or the NSA but perhaps a tadge much for the usual script kiddy to bother with Steph -- The Mailing List for the Devon & Cornwall LUG http://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html