[Leaplist] an ipcop question
Hank Lambert
hank at hanklambert.com
Wed Dec 17 14:41:06 EST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
True, my mistake; thanks for the clarification. I originally skimmed
through an article in Network world that was sent to me. I went back
and re-read it after seeing your e-mail, and the heading was
misleading. In the article, it did state that it was TKIP that was
cracked with a standard dictionary attack in 12 - 15 minutes. It
further stated that they were unable to crack the encryption keys used
to secure the data in transit from the PC to the ritter. I don't use
TKIP anyway because of it's use of RC4, I prefer AES.
Anyone interested in the article can read it here:
http://www.networkworld.com/news/2008/110608-once-thought-safe-wpa-wi-fi.html?netht=rn_110608&nladname=110608
- --Hank
Aaron Morrison wrote:
>
>
> WPA has not been cracked. There is a small chink in the TKIP armor
> that may allow ARP or DNS poisoning, but that's not the same thing
> as recovering the keys used (cracking).
>
> See this ( http://arstechnica.com/articles/paedia/wpa-cracked.ars )
> article, and this ( http://www.grc.com/sn/sn-170.htm or
> http://www.grc.com/sn/sn-170.mp3 ) which explains what's really
> going on.
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFJSVXSBEC44ZbTPXERAkzmAKCeNVhZvxXGeX8K7nbyVfDuX4om6ACfVFJZ
4kTyCWNxqHA71gkoak23Dmc=
=ZB2O
-----END PGP SIGNATURE-----
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Leaplist
mailing list