Quote:
Originally Posted by Dragonlich
Actually... My SMC router uses mere WEP encryption, and uses a pass-phrase to calculate a one-time WEP key. So he might not be confusing the two at all.
|
That passphrase is just an "easy way" for you to calculate your WEP key for the access point and the client. The length and complexity of the pass-phrase has
NOTHING to do with the underlying strength of the key itself. It's still a 128bit key based upon the flawed RC4 block cipher standard. And you kind of answered the original question anyway. The so-called pass-phrases used by some manufacturers for WEP key calculation (Linksys and SMC etc), are used to define a
one time WEP key. It has nothing to do with the key strength or any dynamic key management features.
That's where WPA comes in. The true pass-phrases used by WPA are conceptually like shared secrets that are concurrently used to regularly regenerate new WEP keys on a periodic basis. Now, if that pass-phrase is not long enough then you can actually be vulnerable, but that's a different matter.
I can understand why there's some confusion, but there
is a difference. Trust me.
Quote:
Oh, and I'd say the MAC adress filter is pretty much a false security - it's relatively easy to spoof a MAC adress, so once you find out what it needs to be, you can hack it. Encryption is much better.
|
Absolutely not.
MAC filtering should be used only as
one part of a set of security settings. Seeing as 99% of hacking attempts on home wireless are by
opportunistic kiddie-hackers or war-walkers, then having MAC filtering enabled will significantly improve your security against those "amateur" attacks.
Of course, any professional or even experienced hacker knows how to spoof MAC addresses, but I specifically noted that in my post. Let me quote myself "Not entirely foolproof, as experienced hackers can spoof MAC addresses. But it certainly adds to security and makes it more difficult for kiddie-hackers."
MAC filtering alone is not really good security. But as
part of a set of features and steps, it does add significantly to the strength of your wireless network; especially for home networks where most attacks will be by opportunistic amateurs.
Mr Mephisto