[9464] in cryptography@c2.net mail archive
Re: New encryption technology closes WLAN security loopholes
daemon@ATHENA.MIT.EDU (Rodney Thayer)
Mon Sep 24 15:27:15 2001
Message-Id: <5.0.0.25.2.20010924113035.04a4e370@127.0.0.1>
Date: Mon, 24 Sep 2001 11:35:00 -0700
To: "R. A. Hettinga" <rah@shipwright.com>
From: Rodney Thayer <rodney@tillerman.to>
Cc: cryptography@wasabisystems.com
In-Reply-To: <p05100339b7d18766cc7a@[10.0.1.15]>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
At 08:10 PM 9/21/01 -0400, R. A. Hettinga wrote:
>At 10:34 AM -0400 9/20/2001, Perry E. Metzger wrote:
> >"R. A. Hettinga" <rah@shipwright.com> writes:
> >> [1] "New encryption technology closes WLAN security loopholes"
> >
> >We don't need a new proprietary technology. IPSec tunnels from the
> >wireless node to the base station work just fine, and are actually
> >secure on top of it!
> >
(From: "Arnold G. Reinhold" <reinhold@world.std.com>)
>As I understand things, and please correct me if I am misinformed,
>IPSec is still quite complex to install and setup.
And wireless is a bit of a bitch too -- I'm able to set it up with
ease now that I've got four different kinds of cards to switch back
and forth... wild variation in management interfaces in the Win32 world...
>While we are on the topic, it seems to me that the other implication
>of 802.11 is that the Ethernet backbone in most offices can no longer
>be considered secure.
It never was. "Get a life, use IPsec (or TLS, or SSH, or PGP, or SMIME...)"
is (a) standard answer to link layer security.
At this time, I'm much more worried about some Exodus employee going
postal and selling out to my competitor and tapping the copper wires,
than some drive-by cypherpunk sniffing my 802.11 network.
(Picking on Exodus because their economic fortunes have blemishes, not
to say other colo's and ISP's are perfect...)
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@wasabisystems.com
