My understanding is that with WEP everyone gets the same encryption key, so the network traffic is still sniffable. WPA, OTOH, gives everyone on a WiFi network there own a unique encryption key. Startbucks/TMobile probably should be using WPA with a public password. Ditto for other public WiFi networks. I assume that most laptops nowadays support WPA.
SSL/HHTPS can also fix many of the WiFi security problems. For email, I use SSL with SMTP and POP3. Hopefully all Web login pages, order forms, etc. are using https. Richard -----Original Message----- From: Adam Jacob Muller [mailto:[EMAIL PROTECTED] Sent: Saturday, April 28, 2007 4:40 PM To: Matthew Murphy Cc: Richard M. Smith; [email protected] Subject: Re: [funsec] Hasn't the LA Times and Humphrey Cheung ever heard of the Electronics Communications Privacy Act? What if Starbucks put WEP (or WPA) on, but hung a sign with the key? Does (or should) that still fall under section 1? -Adam _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
