[86892] in North American Network Operators' Group
Re: Wifi Security
daemon@ATHENA.MIT.EDU (Ross Hosman)
Mon Nov 21 11:11:49 2005
Date: Mon, 21 Nov 2005 08:04:02 -0800 (PST)
From: Ross Hosman <rosshosman@yahoo.com>
To: "Christopher L. Morrow" <christopher.morrow@mci.com>,
Niels Bakker <niels=nanog@bakker.net>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.58.0511211542030.20032@marvin.argfrp.us.uu.net>
Errors-To: owner-nanog@merit.edu
--- "Christopher L. Morrow"
<christopher.morrow@mci.com> wrote:
>
> yes, there are stupid people everywhere... Perhaps
> asking the question in
> another way is in order:
>
> "Given a large and widely available wireless network
> solution for
> 'consumers', how would you propose to raise the
> 'security' for users of
> that network?'
>
> Would you force WEP?
> Would you force WPA/WPA-2?
> Would you force ipsec?
> Would you skip transport level encryption in favor
> of application level
> security?
> Would you do widespread and widescale education
> efforts for the users?
>
> -chris
>
Google has come out with their secure access product
which helps but reminding someone's grandma to use
that product when she is using a wifi network is going
to be near impossible. For one she doesn't know what
wifi is, she just knows how to connect her computer to
the internet and click that email icon on her desktop.
Education will also be nearly impossible as many can
hardly grasp simple concepts.
With wireless encryption you could setup your "fake"
AP to use it between the user and the AP then just
sniff the traffic on the end.
__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
