Re: WEP

To: <debian-laptop@lists.debian.org>
Subject: Re: WEP
From: Adam Shand <larry@spack.org>
Date: Mon, 14 May 2001 23:29:56 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.4.32.0105142259500.26688-100000@maus.spack.org>
In-reply-to: <[🔎] 20010511143853.B4815@llama.nslug.ns.ca>

> Suggestion: don't trust WEP.  It's another layer of obscurity, but
> it's designed wrong and not at all secure.  Some past articles on /.
> have links to papers by people who've broken WEP.  I wouldn't trust it
> to keep my spare change secure.

sorry i have to speak up, i'm no huge lover of wep but that's due to
limitations in it's shared key architecture which makes it useless for
community networking [1] (what i do in my spare time :-). two things:

* wep is effective at doing what it was designed to provide, "wired
  equivelent privacy".  this means that all it was supposed to do was
  provide the same level of privacy as normal cat5 did.

* at this point of the exploits are theoretical and none of them are
  trivial (requiring significant amounts of time, disk space and techincal
  sophistication). i have never heard of the wep exploits actually
  appearing "in the wild" and heard contradictory stories of them every
  being fully and sucessfully demonstrated in the lab.

i'm not saying wep is great, but so long as you're careful about keeping
your key secret, choose a non-obvious essid and you're not a likely target
(eg. you're not the pentagon or amazon.com) i'd feel fairly comfortable
relying on wep to keep intruders away from my wireless network.

adam.

[1] http://www.personaltelco.net/

Reply to:

Follow-Ups:
- Re: WEP
  - From: tom <tallison1@twmi.rr.com>

References:
- Re: WEP
  - From: Peter Cordes <peter@llama.nslug.ns.ca>

Prev by Date: Re: SpeedStep / Geyserville lockups?
Next by Date: Re: SpeedStep / Geyserville lockups?
Previous by thread: Re: WEP
Next by thread: Re: WEP
Index(es):
- Date
- Thread