On 08/07/03 17:33 -0000, Craig Brauckmiller wrote:
<snip>
> How hard is it to decrypt SSL based traffic over a wireless link or wired
> for that matter? Is it something trivial, or would it take some time to
> break? I just worry about a hacker hanging out at Starbucks and snagging
> a user name and password for free internet access.
I wouldn't worry about the attacker sitting at the table next to you
with https (just WEP is not enough). You do need to worry about the guy
standing behind you, looking over your shoulder as you type in your
username and password.
I would seriously recommend using client side certificates as well for
authentication and authorization.
Devdas Bhagat
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
