[Leaplist] an ipcop question
Aaron Morrison
ae4ko at amsat.org
Tue Dec 16 22:14:23 EST 2008
On 16 Dec 2008, at 11:08, Bryan J. Smith wrote:
> Hank Lambert <hank at hanklambert.com> wrote:
>> I use WPA,
>
> Just want to mention that I do WPA/WPA2 with AES-only, no
> TKIP.
WPA with RC4 (the default) is generally good enough given a good pass
phrase (pre-shared key). As a side note, AES takes more computational
power to generate the keys, so not all devices can keep up.
>
>
>> mac filtering, and have the SSID disabled.
>
> Unfortunately, SSID disabling seems to cause issues with
> several devices of mine (especially non-PC, but even an
> Intel WLAN card).
MAC filtering and SSID hiding is not security. At best it's a form of
authentication which is not the same thing. Any sniffer will reveal
that information (instantly).
And as you have experienced Bryan, hiding SSID can cause compatibility
issues with some devices. I do use MAC filtering mainly to prevent
the drive-by associations, however.
--am
More information about the Leaplist
mailing list