[vpn] Update to: Securing 802.11b in W2K environment?

dgillett at deepforest.org dgillett at deepforest.org
Tue Nov 13 09:55:17 EST 2001


On 8 Nov 2001, at 16:36, Kurt Seifried wrote:

> > 2.) It was also suggested that I not allow the access point to broadcast
> > various information, including the SSID and session name.  As above, it
> > doesn't appear the Linksys WAP11 has this functionality.
> 
> I wouldn't rely on SSID either, it's trivial to break in. Use a
> VPN to a secure gateway. 

  SSID is not -- was never! -- intended as a security mechanism.  It 
exists solely to allow a device which is within range of several WAPs 
to figure out which one it is intended to communicate with -- as 
such, it is broadcast in pretty much plain text.

DG




VPN is sponsored by SecurityFocus.com





More information about the VPN mailing list