From owner-freebsd-hardware Sun May 14 14:18:45 2000 Delivered-To: freebsd-hardware@freebsd.org Received: from hedgehog.osp.nl (cp223erm04.gelrevision.nl [195.86.240.223]) by hub.freebsd.org (Postfix) with ESMTP id 16BB037B5AB for ; Sun, 14 May 2000 14:18:41 -0700 (PDT) (envelope-from josv@osp.nl) Received: from jadzia.osp.nl (jadzia.josv.com [10.78.234.74]) by hedgehog.osp.nl (8.9.3/8.9.3) with ESMTP id XAA04066; Sun, 14 May 2000 23:20:30 +0200 (CEST) Received: from osp.nl (localhost [127.0.0.1]) by jadzia.osp.nl (8.9.3/8.9.3) with ESMTP id XAA30064; Sun, 14 May 2000 23:27:06 +0200 X-Great-User-Group: NLUUG, see http://www.nluug.nl Message-ID: <391F1A28.41BC7F50@osp.nl> Date: Sun, 14 May 2000 23:27:04 +0200 From: Jos Visser Organization: Open Solution Providers X-Mailer: Mozilla 4.72 [en] (X11; I; Linux 2.2.13 i586) X-Accept-Language: nl, en MIME-Version: 1.0 To: Randy Bush Cc: freebsd-hardware@freebsd.org Subject: Re: Wavelan 802.11 with encryption References: <391EF3DE.FA17A058@osp.nl> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hardware@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org WEP encryption (default with the Silver Wavelan card) supports a 64-bit key. That's strong enough for me. Anyone who's interested enough in my stuff to come over to my house, tap into the 802.11 traffic and feed it to a sufficiently strong computer to do a brute force attack on the 64 bit key has plenty of other (cheaper and easier) opportunities to retrieve whatever they want. Remember: a 64 bit key (given a sufficiently strong enough algorithm) means 2^64 = 18446744073709551616 possible keys. Given a computer that can try 100 billion keys per seconds, I would need approximately 184467440 seconds to search the entire keyspace. You'd expect to need to search only half the keyspace, so 92233720 seconds. At 3600 seconds per hour, this means 25620 hours, at 24 hours in a day, this means 1067 days, which is almost three years (roundoff errors due to the use of bc). Now, believe me, I would be willing to tell you almost everything dating from three years and further back... ++Jos Randy Bush wrote: > > > I set up a wireless network in my home using two Lucent WaveLan 802.11 > > wireless LAN cards, one of which sits in a FreeBSD 3.0 machine. It works > > like a charm. But now I want to set up encryption. As far as I can see, > > the current FreeBSD driver does not support encryption? > > WEP encryption is not sufficiently strong for real use. use end-to-end > ip encryption, e.g. ssh etc. > > randy -- Yesterday is history. Tomorrow is mystery. Today is a gift, that's why we call it 'present'. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hardware" in the body of the message