Date: Wed, 8 May 2002 15:46:08 +0200 From: Francesco Casadei <fcasadei@inwind.it> To: Tim Kellers <timothyk@wallnet.com> Cc: freebsd-questions@freebsd.org Subject: Re: wireless (in)security Message-ID: <20020508154608.A2895@goku.kasby> In-Reply-To: <20020508005333.M8150@wallnet.com>; from timothyk@wallnet.com on Wed, May 08, 2002 at 12:53:33AM %2B0900 References: <20020508005333.M8150@wallnet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Wed, May 08, 2002 at 12:53:33AM +0900, Tim Kellers wrote: > I wonder if someone might point me at a source to try and solve a wireless > security issue. > > Wireless router with a Network Name of 09d44b > Wireless encryption key set to: 9d44b > > Wireless interface (wi0) ssid (network name) 09d44b > Wireless encryption key (nwkey) set to 9d44b > > When the wireless laptop boots, it sends the nwkey in clear text, then goes to > 64 bit (or so) encryption. Then transmissions are as theoretically secure as > a 5 character key can make them. But, before encryption takes over, the nwkey > key is transmitted in clear text and this is Not a Good Thing. > > Are there any utilites, workarounds or magic available for FreeBSD (4.6 > Prerelease at present) that would allow a tunnel to be established before the > nwkey is sent... I've had a lot of ideas about how I might do this, but they > all rely on the wireless router being a lot smarter than it is. > > Pointers, links or just plain ideas appreciated. > > Tim Kellers > CPE/NJIT > > > > > -- > Open WebMail Project (http://openwebmail.org) > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > end of the original message The IEEE 802.11 standard for wireless transmission does not attain to its security goals (confidentiality, data integrity and access control). I think there's little you can do to make it more secure. For more information read this: http://cesare.dsi.uniroma1.it/Sicurezza/doc/p180-borisov.pdf Francesco Casadei -- You can download my public key from http://digilander.iol.it/fcasadei/ or retrieve it from a keyserver (pgpkeys.mit.edu, wwwkeys.pgp.net, ...) Key fingerprint is: 1671 9A23 ACB4 520A E7EE 00B0 7EC3 375F 164E B17B [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE82SwgfsM3XxZOsXsRAngGAJ0Y+EzD7Hw+D5reEvTFoz6BRMaaDQCgvczR mTI5AW0dwYVYaIN9fVGqBBI= =H7VC -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020508154608.A2895>