[Leaplist] low end SoHo wifi router/ritter as Bryan likes to call
them
Bryan J. Smith
b.j.smith at ieee.org
Tue Mar 9 12:02:57 EST 2010
Clarification:
WPA[2]-PSK is a pre-shared key (PSK) and doesn't require a certificate
infrastructure. It's what most of us use. It uses a pre-shared key to decrypt
key rotation, which the AP (or 'Ritter's WLAN) changes regularly for security.
Cipher-wise, I only enable AES with WPA[2]-PSK. Some APs require WPA2
to get AES or AES-only, and support TKIP with WPA. TKIP is to be
_avoided_.
TKIP uses RC4 for WEP compatibility. This allows one to use WEP only
capable cards with newer WPA, the OS handes the PSK portion, and the
rotation of keys. The problem is that WEP can be broken in seconds, so
rotation of keys helps none. This was assumed for years, and proven
more recently.
----- Original Message ----
From: Kevin Korb <kmk at sanitarium.net>
To: This is the Leap Main List <leaplist at leap-cf.org>
Sent: Tue, March 9, 2010 11:55:19 AM
Subject: Re: [Leaplist] low end SoHo wifi router/ritter as Bryan likes to call them
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The WPA2 should be on the router and in the wifi configuration on the
computers. It doesn't require a server.
On 03/09/10 11:45, Ray Brunkow wrote:
> Oh now to figure out how to set up a server for enterprise WAP2 and see
> how well that works. need to read a lot more before I am ready to
> attempt that project though.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Leaplist
mailing list