Comments on: More news on Wireless Insecurity http://www.theprivacyblog.com/security-breaches/more-news-on-wireless-insecurity/ Anonymizer's Privacy Blog Tue, 07 Feb 2012 08:52:35 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: lance http://www.theprivacyblog.com/security-breaches/more-news-on-wireless-insecurity/comment-page-1/#comment-17 lance Fri, 04 May 2007 17:18:04 +0000 http://www.theprivacyblog.com/?p=14#comment-17 Fundamentally, I agree with you. To my mind, WEP is broken, while WPA is untrustworthy. There is clearly a huge difference in the level of security between the two, but neither should ever be trusted with sensitive content. PGP, SSH and TNS (thanks for the plug) are very effective. PGP and SSH are very flexible and powerful tools. In my experience they are beyond the skills of most Internet users. MAC Address (the hardware address of the WiFi or Ethernet card) authentication is very important, but is not difficult to spoof. At the end of the day it is all about layered security and risk management. Risk elimination is unachievable. Fundamentally, I agree with you. To my mind, WEP is broken, while WPA is untrustworthy. There is clearly a huge difference in the level of security between the two, but neither should ever be trusted with sensitive content.

PGP, SSH and TNS (thanks for the plug) are very effective. PGP and SSH are very flexible and powerful tools. In my experience they are beyond the skills of most Internet users.

MAC Address (the hardware address of the WiFi or Ethernet card) authentication is very important, but is not difficult to spoof.

At the end of the day it is all about layered security and risk management. Risk elimination is unachievable.

]]> By: Ardan Michael Blum http://www.theprivacyblog.com/security-breaches/more-news-on-wireless-insecurity/comment-page-1/#comment-16 Ardan Michael Blum Thu, 03 May 2007 22:14:28 +0000 http://www.theprivacyblog.com/?p=14#comment-16 The best security is the good old computer MAC ADDRESS on the router and then to switch all your communication onto a ssh proxy. To use a "secure" WPA is starting off with a myth: Every type of WIFI connection can be gotten to with simple open source tools such as aicrack AND wireshark, etc. Safe surfing is, to me: 1) PGP or cryptoheaven.com emailing. 2) ssh or TNS from the great Anonymizer.com 3) anti-keylogger set up 4) Trend Micro PC or F-Secure walls 5) a few extra things. AM The best security is the good old computer MAC ADDRESS on the router and then to switch all your communication onto a ssh proxy.

To use a “secure” WPA is starting off with a myth: Every type of WIFI connection can be gotten to with simple open source tools such as aicrack AND wireshark, etc.

Safe surfing is, to me:

1) PGP or cryptoheaven.com emailing.
2) ssh or TNS from the great Anonymizer.com
3) anti-keylogger set up
4) Trend Micro PC or F-Secure walls
5) a few extra things.

AM

]]>