I can't get to the slashdot article easily right now (we don't use split-tunnel VPN's and since I'm on the VPN...no slashdot) but wouldn't only WPA networks using PSKs be affected? WPA networks using various forms of EAP shouldn't be cracked as easily (as I understand it, every wireless session gets different encryption keys than every other session - but I've not dug into it heavily in a long time).
ML Mark A. Lappin, CCNA, MCSE:Security | Lee Michaels Fine Jewelry Director of Information Technology 11314 Cloverland Ave | Baton Rouge, LA 70809 Ph: 225.291.9094 ext 245 | Fax: 225-291-5778 | Mobile: 225-362-2770 www.lmfj.com This communication is privileged and confidential. If you are not the intended recipient, please notify the sender by reply e-mail and destroy all copies of this communication . -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Joe Fruchey Sent: Sunday, October 12, 2008 6:18 PM To: [email protected] Subject: Re: [brlug-general] WPA now worthless? This only affects people using passwords like 'mysupersecretwpapassword'. Use a real, 63-character key consisting of upper- and lowercase letters, numbers, and symbols, and your password will still take a million years to crack. The first comment on the slashdot post is insightful. On Sun, Oct 12, 2008 at 1:02 PM, Terry Stockdale <[EMAIL PROTECTED]> wrote: > At 12:54 PM 10/12/2008, you wrote: > > According to this, it is now practical to crack WPA. > > http://mobile.slashdot.org/article.pl?sid=08/10/12/1724230 > > I was not happy when LSU started using WPA on their network because it > is not end to end encryption and provides only an illusion of > security. So much for the illusion. I wonder if LSU will back down > on WPA now. > > WPA has been worthless for a long time. Do they support WPA2? > > -- > Terry Stockdale -- Baton Rouge, LA > My computer tips site and newsletter: > http://www.TerrysComputerTips.com > > _______________________________________________ > General mailing list > [email protected] > http://mail.brlug.net/mailman/listinfo/general_brlug.net > > _______________________________________________ General mailing list [email protected] http://mail.brlug.net/mailman/listinfo/general_brlug.net _______________________________________________ General mailing list [email protected] http://mail.brlug.net/mailman/listinfo/general_brlug.net
