Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cisco LEAP exploit tool...

From: Paul Schmehl <pauls () utdallas edu>
Date: Wed, 14 Apr 2004 12:41:31 -0500
--On Wednesday, April 14, 2004 09:17:56 AM -0500 Ron DuFresne <dufresne () winternet com> wrote: 

All wireless traffic should be treated as unsecured, and pushed through a
DMZ/encryption tunneled setup.  Puttiing wireless AP's directly on the LAN
is a major blunder.
Well, that really depends, doesn't it. We're doing IPSEC using AES for wireless on a test network. It's a good deal more secure than our wired network, which is still plain text. 

Or did you just assume that everyone is using WEP?

Paul Schmehl (pauls () utdallas edu)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: