From owner-cvs-all  Fri Aug 10  7:40:13 2001
Delivered-To: cvs-all@freebsd.org
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by hub.freebsd.org (Postfix) with ESMTP
	id A7E0237B403; Fri, 10 Aug 2001 07:39:59 -0700 (PDT)
	(envelope-from robert@fledge.watson.org)
Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.11.4/8.11.4) with SMTP id f7AEcRf19716;
	Fri, 10 Aug 2001 10:38:28 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Fri, 10 Aug 2001 10:38:27 -0400 (EDT)
From: Robert Watson <rwatson@FreeBSD.org>
X-Sender: robert@fledge.watson.org
To: Warner Losh <imp@harmony.village.org>
Cc: Greg Lehey <grog@FreeBSD.org>,
	Brooks Davis <brooks@one-eyed-alien.net>, cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/usr.sbin/wicontrol wicontrol.8 
In-Reply-To: <200108100355.f7A3t6133271@harmony.village.org>
Message-ID: <Pine.NEB.3.96L.1010810103701.19412M-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

My understanding is, by the way, that further progress has been made in
breaking WEP since that original paper.  I haven't verified this, but I
heard a comment in a security presentation earlier this week that,
although in theory the average is several million packets, in practice
it's two reboots.  The reason is that the IV is reset each time the card
powers up, so rather than getting random distribution over the IV space,
you're repeating iteration across the same space all the time.  So the
chances of IV re-use are very high if the card is power-cycled, or the
machine.  I haven't followed this discsion closely, so can't confirm this
is the case.

Robert N M Watson             FreeBSD Core Team, TrustedBSD Project
robert@fledge.watson.org      NAI Labs, Safeport Network Services

On Thu, 9 Aug 2001, Warner Losh wrote:

> In message <20010810131923.I38896@wantadilla.lemis.com> Greg Lehey writes:
> : Agreed.  WEP can discourage casual crackers.
> 
> WEP is massively insecure.  It does discourage the extremely lazy, but
> the industrious will plow through it rather quickly...
> 
> As a project, we don't enourage people to rely on things that are
> insecure, hence the warning.  If you know what you are doing, you can
> ignore the warning, just like with plain old passwords in clear text
> for telnet.
> 
> Wanrer
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message