[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: About WLAN and monitoring..
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: About WLAN and monitoring..
- From: "F. Fox" <kitsune.or@xxxxxxxxx>
- Date: Fri, 01 Feb 2008 18:14:15 -0800
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Fri, 01 Feb 2008 21:14:32 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; bh=RYz/Az8VD1+TlPQyL2w7ByXvWFzfjiI067Tel18C1Pc=; b=UfQoLBRALhtF51sq+QGoPxEPCi3U8FRHTRCh+IKInNL9b+MS3GEy4fiRmFoXP8hBFxGZjKZSw3hrT7FBLbmSHyeayKTZrYhXlhKoSHCiRnzXVmBmXTOuNLtYFQjKR6sD28OB6Fl1iCQ6PW7GOmTsx6zmrZSA6oCyI5IuN+i6Qwk=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding; b=NteRjliaB3O0J25k/ap2evdjzccyJ1YElBYe2exF0LvMR5tBE4WMWEHjmpVZoQZr0crWCs6Qwq/zueKDn1FyDUu8aX5UCpqusij1VdcA+uNOFwJqKsTpH8NmVk8uKe9F8ryC01LMUGZciWifqkb+0rs09z7NvXCQxf3iRsfq02E=
- In-reply-to: <549691289@xxxxxx>
- References: <549691289@xxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Icedove 1.5.0.14pre (X11/20071018)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
IMO, basing WLAN security - say, at your home - on MAC addresses is
suicide (the only thing it accomplishes is a massive administrative
headache). It's better to rely on something at least reasonably solid;
if you can't go with a VPN or WPA2-Enterprise, at least go for WPA-PSK
or WPA2-PSK with a large, pseudorandom passphrase.
In this case, yeah, your MAC address could be logged when you're away -
but this should only be a concern of privacy, not security.
Also, when you're on the road, be sure that one way or the other,
everything is sent out of the WLAN through a secure tunnel; otherwise,
there's a lot more than MAC addresses that can give you away...
- --
F. Fox: A+, Network+, Security+
Owner of Tor node "kitsune"
http://fenrisfox.livejournal.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org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=rVjo
-----END PGP SIGNATURE-----