LEAP is essentially CHAP and thus is susceptible to offlline dictionary attacks.
On Friday, February 14, 2003, at 11:15 PM, Matt Peterson wrote:
I think Sameer makes some very valid points. LEAP is closed-source security (kinda like WEP, look at what happened there), this should concern any true security evaluation.
It would seem SFSU should take the Standard route; captive portal w/ already issued accounts. Registering MAC addresses is silly, they can be spoofed and users are likely to swap wireless cards (thus MAC addresses).
--Matt
--
general wireless list, a bawug thing <http://www.bawug.org/>
[un]subscribe: http://lists.bawug.org/mailman/listinfo/wireless
-- general wireless list, a bawug thing <http://www.bawug.org/> [un]subscribe: http://lists.bawug.org/mailman/listinfo/wireless
