[Dshield] Wireless broadcasts

Aaron Lewis aaron at adldatacomm.net
Tue Jun 28 21:57:29 GMT 2005


Correct. Does that not fit into the discussion? I was trying to steer the
original poster away from WAP which is totally insecure.

ADL

> -----Original Message-----
> From: list-bounces at lists.dshield.org
> [mailto:list-bounces at lists.dshield.org]On Behalf Of John B. Holmblad
> Sent: Tuesday, June 28, 2005 4:10 PM
> To: General DShield Discussion List
> Subject: Re: [Dshield] Wireless broadcasts
>
>
> Aaron,
>
> a WPA or WPA2 compliant device, by definition, supports two
> alternative
> modes for authentication:
>
>     a) pre-shared key authentication mode which is secure but not
>     scalable because it requires the sysadmin to install the
> pre-shared
>     key in each device (Access Point or client/supplicant)
> that is to be
>     secured. The major benefit of this mode of operation is that the
>     wireless medium can be secured without the need for an
>     authentication server such as Microsoft IAS or some other RADIUS
>     type of server that also supports necessary 802.11i
> protocol components.
>
>     b) 802.1X authentication mode which is both secure AND scalable
>     because it makes use of an authentication server/service such as
>     that provided by RADIUS with the necessary 802.11i
> protocol support.
>
> Best Regards,
>
> John Holmblad
>
> Televerage International
> GSEC,GCWN,GGSC-0100,NSA-IAM
>
> (H) 703 620 0672
> (M) 703 407 2278
> (F) 703 620 5388
>
> primary email address:     jholmblad at aol.com
> backup email address:      jholmblad at verizon.net
>
>
> _______________________________________________
> send all posts to list at lists.dshield.org
> To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list



More information about the list mailing list