lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Pine.GSO.4.43.0404141523010.15071-100000@tundra.winternet.com>
From: dufresne at winternet.com (Ron DuFresne)
Subject: Cisco LEAP exploit tool...

On Wed, 14 Apr 2004, Paul Schmehl wrote:

> --On Wednesday, April 14, 2004 09:17:56 AM -0500 Ron DuFresne
> <dufresne@...ternet.com> wrote:
> >
> > All wireless traffic should be treated as unsecured, and pushed through a
> > DMZ/encryption tunneled setup.  Puttiing wireless AP's directly on the LAN
> > is a major blunder.
> >
> Well, that really depends, doesn't it.  We're doing IPSEC using AES for

Yes, as I said, tunneled and encrypted, anything spewing into the 'air'
needs to be kept from someone just reaching out and grabbing your data, be
it wireless network traffic, wireless cameras and keyboards and mice, and
this includes those sweet little nanny-cams that are actually being
marketed as 'security monitors'.  WEP/WAP, no matter, tunnel it if it is
to really pass through your wired boundries.  Or just don't allow it.

Then again rougue AP's are another matter...

Thanks,

Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
	***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ