On Tue, Oct 28, 2008 at 11:56 AM, Keith Lofstrom <[EMAIL PROTECTED]> wrote: > > > I am running an PTP open access point. The businesses and homes that > I visit that are using encryption are all using WEP. I've never > encountered WPA, so I don't know if my hardware/OS (atheros/2.6.18) > supports WPA *correctly*, even if there is a menu item for it. > > Have some of you used WPA? Are there many sites that use it, or > other allegedly more-secure protocols like that? I'm wondering what > people's experiences with it are, and whether I should prepare for > encounters with it.
I've used WPA, with varying success. There are a number of WPA flavors, and unfortunately, different Operating Systems/Client Software/Firmwares name them different things and they seem to interact with varying success. Of course, I could say the same regarding WEP. WPA Personal or WPA-PSK uses a pre-shared key, ala WEP, though with more restrictions and a not trivial key generation method. As I understand it, WPA uses TKIP encryption and WPA2 uses AES encryption. Some systems allow you to choose WPA/WPA2 modes, which obviate the need to match versions. WPA Enterprise relies on a radius database while providing the same encryption methods. Radius presents the possibility of doing some cool things in terms of managing different classes of users, and provides the only real ability to do any form of security, since any system that uses a shared key is only as secure as the lips of every person you give that key to. As with WEP, all forms of WPA introduce added complexity and create barriers to providing open access to your wireless, if that's your goal. I would also consider them all to be inferior security options when compared to end-to-end encryption of data you want to keep secret. Wireless security is a means of creating some access denial, and not the best way to secure your bits from prying eyes. Michael -- Michael Weinberg President Personal Telco Project, Inc. A 501(c)(3) Non-Profit --~--~---------~--~----~------------~-------~--~----~ The Personal Telco Project - http://www.personaltelco.net/ Donate to PTP: http://www.personaltelco.net/donate Archives: http://news.gmane.org/gmane.network.wireless.portland.general/ Etiquette: http://www.personaltelco.net/index.cgi/MailingListEtiquette List information: http://lists.personaltelco.net To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] -~----------~----~----~----~------~----~------~--~---
