Now I am totally confused. Fajar says that it is not so easy to crack the passwords and Phil says the opposite. I am not a hacker. Can anybody say that this would be easy to do or not:
"A CA certificate must be used at each client to authenticate the server to each client before the client submits authentication credentials. If the CA certificate is not validated it is generally trivially easy (in wireless networks) to introduce a fake Access Point which allows gathering MS-CHAPv2 handshakes, which on recent hardware can be cracked in a matter of seconds." (source: http://en.wikipedia.org/wiki/Protected_Extensible_Authentication_Protocol) Best Regards Sebastian Heinrich Techn. DV Aluminium Oxid Stade GmbH Johann-Rathje-Köser-Straße 21683 Stade email [email protected] web http://www.aos-stade.de - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
