On Wed, 5 Nov 2003, jon baer wrote: > Wi-Fi Protected Access (WPA) has a weakness: poorly chosen short > human-readable passphrases can be cracked with a robust dictionary attack > offline and without access to the network: Robert Moskowitz, the senior > techncial director of TruSecure Corp.'s ICSA Labs, has given me permission > to post this paper he has written that describes a weakness in the interface > design for WPA-equipped access points and adapters. >
The only issue I have with WPA-PSK is that there seems to be no standard on how many characters max and what kind of characters are permitted, as well as no way to enter the PSK itself in hexadecimal ala WEP. I have a pretty secure way of generating random hexadecimal strings, but that wouldn't do me any good with PSK. Kevin "Starfox" Arima -- NYCwireless - http://www.nycwireless.net/ Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/ Archives: http://lists.nycwireless.net/pipermail/nycwireless/
