Have a look at the following paper.
http://www.cisco.com/warp/public/cc/so/cuso/epso/sqfr/safwl_wp.htm
Tim
CCIE 9015
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Johnson, Richard (NY Int)
Sent: Tuesday, May 14, 2002 3:12 AM
To: [EMAIL PROTECTED]
Hi Rich,
First thing to do is to trace the signal. I.e. what are the physical limits
of the RF. Special wireless tools (like the Sniffer Wireless) are available
to help you with this, but the software delivered with your Aironet can tell
you a lot as well.
If the signal stays within the
I don't usually contradict what somene says but when they're way off, I need
to.
First off; WEP IS UNSECURE! It dosen't matter if it's 64 or 128 bit, they
ar both just as easy to hack (air snort).
Second, MAC address security isn't secure, as you can spoof them.
Third, even if you can't pick
Steven,
Way off Hmmmthe only thing I indeed forgot to mention is the
directional antenna-danger, but to say I'm way off...that's a strong
statement.
First of all let me clarify myself. My final comment, Again, which solution
to go for depends on your security needs and how much you're
Btwthere's a great article on Wireless security on
http://www.networkcomputing.com/1303/1303ws2.html
This article also shows the importance of finding the right balance between
risk assessment, cost and convenience.
Message Posted at:
True not everyone needs Fort Knox, but I just wanted make sure you didn't
believe that WEP is secure. That's been my mantra the past month - to
inform people to the dangers of relying on WEP.
C restion wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Steven,
Way off
I think the only way to secure a wlan is to require vpn authentication
through the bridge. (Which means some hand held clients would not be able
to authenticate.) The client should have the vpn software loaded on their
machine/laptop, connect to a bridge residing on a vlan that has no
What is the best way to secure a Aironet 350 from hackers?
***Keep it unplugged.
***Seriously though, LEAP is a good option if you want ease of use and
pretty good security. It can be brute-forced if there isn't a user
lock-out policy though. (You also need a Cisco ACS server or
8 matches
Mail list logo
