[GLLUG] Meeting Thursday, Dec 6, 2007
Richard Houser
rick at divinesymphony.net
Wed Dec 5 00:02:57 EST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Andy Lee wrote:
>>>> "Steven Sayers" <sjsayers93 at gmail.com> 12/4/2007 7:11 AM >>>
>>From what I concurred at the meeting talking to Karl it was a lets-hack-wep
> over how do we prevent this, however I'm sure karl has a good side when it
> comes to routing.
>
> What I'm looking for is a discussion of just how secure a secured network is, and what the truly best way to go is. To give a benchmark, the current setup is non-broadcast SSID, MAC access list, and WPA. My understanding is that all of these can be defeated without much difficulty, and I'm still hesitant to flip the switch to move this into a production environment, but users are getting to the point of expecting this convenience.
Personally, I use an open access point in a DMZ with limited access
either outside or to the internal network. My clients only run
encrypted connections across wireless (at present, mostly TLS, but I've
done IPSEC in the past and will again soon). Standard
application/transport layer encryption is still reasonably secure and
isn't going away anytime soon.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
Comment: Using GnuPG with Mandriva - http://enigmail.mozdev.org
iD8DBQFHVjD9UMkt1ZRwL1MRAqLqAJ9Xa7m988OB2YAJck1If0MpYKe4LgCgiikx
GMDy3miMqCXTKT2/KoiyK+o=
=YDIa
-----END PGP SIGNATURE-----
More information about the linux-user
mailing list