Security Basics mailing list archives
RE: Enhanced Linksys wireless security
From: "Gonzalez, David J." <DJGonzalez () tmh tmc edu>
Date: Wed, 30 Jun 2004 14:46:07 -0500
802.11i has been ratified: http://www.wi-fiplanet.com/news/article.php/3373441 -----Original Message----- From: Nunez, Yonesy F. [mailto:nunezy () conedsolutions com] Sent: Tuesday, June 29, 2004 5:13 PM To: Ricardo Oliva Cc: security-basics () securityfocus com Subject: RE: Enhanced Linksys wireless security AES provides stronger encryption (Rijndael Algorithm). TKIP uses still uses RC4 (used in WEP). I'm currently using WPA-TKIP, but I'm planning to use AES-CCMP with eap-tls when it becomes available (I think the linksys can do that now, but I don't have my Certification Authority ready to start using wireless certificates). Is 802.11i ever going to be ratified? Best of luck! -- Yonesy F. Nunez, CISSP, MCSE, Security+ Technology Services ConEdisonSolutions Office: 914.286.7712 NunezY () ConEdSolutions com Failed to Plan ? ... Then Plan to Fail !!! ((c) Y2K1 JT) -----Original Message----- From: Ricardo Oliva [mailto:ricardo () zoology ubc ca] Sent: Thursday, June 24, 2004 12:34 AM To: Gideon T. Rasmussen, CISSP, CISM, CFSO, SCSA Cc: security-basics () securityfocus com Subject: Re: Enhanced Linksys wireless security HI Gideon, This is nothing new. I have been using my WRT54G with WAP-TKIP for at least six months now (November 2003). But that is because I am using Panther (Os X 10.3.4). I guess the confusion comes from the fact that Microsoft only released the Wireless roll-out that included WPA support for XP around November, 2003. For some reason, they decided to do it very quietly and didn;t even list it as a Critical Update. But Linksys had done a good job offereing WPA on it's router. Now, since you brought the topic up, on the Linksys settings, you can either TKIP or AES for keys under WPA. Does anyone has info on which one is the most secure? I had to stick with TKIP since for some reason I could not get my wireless software to like the AES key. Does anyone have any input on that? Please advise. Cheers -- Ricardo Oliva Core Systems Administrator Zoology Department University of British Columbia On Jun 22, 2004, at 16:10, Gideon T. Rasmussen, CISSP, CISM, CFSO, SCSA wrote:
Linksys has updated the firmware for the Linksys G router (WRT54G) to include AES and TKIP encryption. I am using TKIP because it changes encryption keys at a configurable period. Locking down access by MAC address provides additional security. I found this a pleasant surprise because I bought my router over a year ago. Other Linksys hardware may have been updated to include similar functionality. Kind regards, Gideon Gideon T. Rasmussen CISSP, CISM, CFSO, SCSA Boca Raton, FL gideon () infostruct net National Security Awareness Day - September 10, 2004 - Are you aware? http://www.linksys.com/download ftp://ftp.linksys.com/pdf/wrt54gv1.1_ug.pdf ---------------------------------------------------------------------- - ---- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------- - -----
--------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------------- ----------------------------------------- ____________________________________________________________________________________ ****CONFIDENTIALITY NOTICE**** This e-mail is the property of The Methodist Hospital and/or its relevant affiliates and may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient(or authorized to receive for the recipient), please contact the sender and delete all copies of the message. Thank you. --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- Enhanced Linksys wireless security Gideon T. Rasmussen, CISSP, CISM, CFSO, SCSA (Jun 23)
- Message not available
- Re: Enhanced Linksys wireless security JGJones (Jun 24)
- Message not available
- Re: Enhanced Linksys wireless security Joe Polk (Jun 24)
- Re: Enhanced Linksys wireless security Ricardo Oliva (Jun 24)
- <Possible follow-ups>
- RE: Enhanced Linksys wireless security Nunez, Yonesy F. (Jun 30)
- RE: Enhanced Linksys wireless security Gonzalez, David J. (Jun 30)