Chris Hedemark on Sun, 12 Jan 2003 16:30:33 -0500


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] wireless security


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Sunday, January 12, 2003, at 01:31 PM, jeff wrote:

What of wireless security?
I haven't installed wireless but am curious about this.  I've read
horror stories about wardriving and intrusions.  I understand you can
specify that only certain MAC addresses can get by.

That is not security. MAC address kluging is marginally more difficult than IP address kluging.


Is there anything
else?

Treat your wireless network as a hostile network connection (like the Internet). All wireless clients should have to pass through a crunchy shell (VPN) to get to the soft gooey center of your network. IPSec is your friend.


I have a feeling that work is about to start yammering for one so I'm
starting the security research.

802.11a is more expensive but has a lot going for it, not only in terms of performance & range, but also security through obscurity. You still want to isolate your wireless network from the hard wired world and require IPSec to get into your secure network.


Chris Hedemark .. Prospect Park, PA .. http://yonderway.com
Homeland Security begins at home; support your Second Amendment.


-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (Darwin)

iD8DBQE+IduzYPuF4Zq9lvYRAuhOAKCRsaUnzuhSRIz4vuo5m/gEWl4nBACeOUZV
6TI3XKnbThP9wm9u7Pkh+30=
=yPCY
-----END PGP SIGNATURE-----

_________________________________________________________________________
Philadelphia Linux Users Group        --       http://www.phillylinux.org
Announcements - http://lists.netisland.net/mailman/listinfo/plug-announce
General Discussion  --   http://lists.netisland.net/mailman/listinfo/plug