From owner-freebsd-chat@FreeBSD.ORG Wed Aug 13 06:35:58 2003 Return-Path: Delivered-To: freebsd-chat@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D817D37B401 for ; Wed, 13 Aug 2003 06:35:58 -0700 (PDT) Received: from mta11.adelphia.net (mta11.adelphia.net [64.8.50.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12BC743F3F for ; Wed, 13 Aug 2003 06:35:58 -0700 (PDT) (envelope-from wmoran@potentialtech.com) Received: from potentialtech.com ([24.53.179.151]) by mta11.adelphia.net (InterMail vM.5.01.05.32 201-253-122-126-132-20030307) with ESMTP id <20030813133558.VZJK7060.mta11.adelphia.net@potentialtech.com>; Wed, 13 Aug 2003 09:35:58 -0400 Message-ID: <3F3A3EBD.1090905@potentialtech.com> Date: Wed, 13 Aug 2003 09:35:57 -0400 From: Bill Moran User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.3) Gecko/20030429 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Paul Robinson References: <3F37D493.9050604@potentialtech.com> <44lltyij8s.fsf@be-well.ilk.org> <3F397708.7050803@potentialtech.com> <3F3A0581.9010908@iconoplex.co.uk> In-Reply-To: <3F3A0581.9010908@iconoplex.co.uk> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: chat@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:09.signal X-BeenThere: freebsd-chat@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Non technical items related to the community List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Aug 2003 13:35:59 -0000 Paul Robinson wrote: > Bill Moran wrote: > >> And ... as far as I'm concerned, WEP is _completly_ insecure, and totally >> worthless. > > Great, so I send you 10Mb of WEP traffic caught off the air, you can > decrypt it for me? You see, to me it's just a big mess of encrypted > traffic, but you obviously have some secret technique (or should that be > "t3kni|<" ?) for breaking it trivially. If you can't, you've just shown > it has some security advantage. Which it has. Yes, and no. Yes, if you send me 10Mb of WEP traffic I could crack it. And no, it's not a secret. The fact that WEP is cracked has been known for quite some time. I believe it was last spring (but my memory could be off) that a couple of college students actually attempted the exploit to demonstrate whether or not it was really doable. Again, my memory could be off, but I think they showed that it took less than 15 minutes of sniffing to break WEP on average. Their report is quite detailed, including the exact (cheap) hardware that was required to capture the packets. Abuse google if you want the details. The last time I looked the data was still online. And, yes, WEP has _some_ security advantage. About the same amount as locking the screen door on your house has. The terribly easily deterred criminals will give up. You're right, that probably is worth something. > Oh, and I think you meant that you were guessing WEP is completely > UNsecure, and not INsecure. If it was insecure, it would be asking us > all to hug it more often. OK, you caught me at my own game here, Mr English. You're right, I used the word incorrectly. But don't put words in my mouth. WEP _is_ unsecure. There's no guessing about it. *Hugs his WEP* -- Bill Moran Potential Technologies http://www.potentialtech.com