|
FYI, WEP, even "128-bit" is trivial to break. It's no security at all.
The best security measure you can take with the current crop of consumer level access points is to manually manage the MAC address table of nodes allowed access to the wireless network.
If you hardcode your Axim's MAC address to your access point, you are preventing any other wireless node from attaching to it. If a wireless node can't attach to the access point, the access point won't send it any traffic. No traffic means no WEP session key.
With anywhere from 1-5 GB of data, it is trivial to break a WEP session key with commonly available tools. A cracker can't get that data, though, if his wireless node can't attach to the access point.
For the home user, this is no big deal...you just add the MAC address of your wireless card to the access point and you are done. If friends come over, you add them. That's what I did when ComputerNinja came over with his...I added the MAC address to my access point, and we were both good to go, and the access point will keep his MAC address until I delete it, which means that with future visits, we won't have to go through the process.
For the ultimately paranoid, the best WiFi security you can have is to have a Linux machine with a WiFi PCCard act as your access point and router, and use an SSH client to encrypt and forward all traffic from your PDA to the Linux box, and let it decrypt and forward the traffic over the wire to the other hosts on your LAN.
JT$
__________________
Co-Author, Apache Tomcat Security Handbook
ISBN: 1861008309 Buy two, a brother needs his royalties
|
