DaemonForums  

Go Back   DaemonForums > Miscellaneous > General software and network

General software and network General OS-independent software and network questions, X11, MTA, routing, etc.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 7th July 2008
Sunnz's Avatar
Sunnz Sunnz is offline
Real Name: I don't have real time
Just a computer user...
 
Join Date: May 2008
Location: See Google Maps
Posts: 101
Thanked 1 Time in 1 Post
Default WPA2, crackable?

A quota from another recent Wifi thread:

Quote:
Are you planning to implement some type of encryption such as WEP, WPA, or WPA2? I'd recommend WPA2 but it's still hackable. If you're looking into added security, you may need to implement some type of vpn.
I guess this is kind of a different topic so I made a new thread... but is WPA2 really crackable?

From what I understand, the only known way to crack WPA-PSK is by brute force, so if you use a long complicated random passphrase, say you generate a string of random ascii characters of length more than 40, it is already infeasible to brute force it, it just takes millions of centuries (or something along those lines) to brute force the WPA key.

With WEP, you are use the maximum length supported by WEP, and it is still crackable, because you don't need to brute force it, the design WEP is flawed such that the key can be work out by capturing enough WEP traffic.

Well, that's pretty much how I understood the situation... am I terribly wrong? Or have there actually new flaws or techniques to uncover a WPA key?

I do use OpenVPN myself instead of utilising WPA, pretty much just because... but how does VPN really compares to WPA? OpenVPN by default uses blowfish-128 for its encryption, whereas WPA may use AES-128... but then OpenVPN can use AES-256 instead, but they are suppose to be adequent anyway?

And yea I do have a few things that don't support any kind of VPN, Wii, my Phone, PSP, etc... I have been considering using a separate WPA router for these things...
__________________
She sells C shells by the seashore.
Reply With Quote
  #2   (View Single Post)  
Old 7th July 2008
Oko's Avatar
Oko Oko is offline
Fsck Surgeon
 
Join Date: May 2008
Location: Kosovo, Serbia
Posts: 758
Thanked 36 Times in 32 Posts
Default

Quote:
Originally Posted by Sunnz View Post
A quota from another recent Wifi thread:



I guess this is kind of a different topic so I made a new thread... but is WPA2 really crackable?



And yea I do have a few things that don't support any kind of VPN, Wii, my Phone, PSP, etc... I have been considering using a separate WPA router for these things...
Yes WPA is crackable. It takes little bit longer to crack it than WEP though. OpenVPN is lousy Linux implementation of VPN. OpenVPN is not fully complaint with couple RFCs. Consider using IPSec.
Reply With Quote
  #3   (View Single Post)  
Old 7th July 2008
TerryP's Avatar
TerryP TerryP is offline
Arp Constable
 
Join Date: May 2008
Location: USofA
Posts: 1,547
Thanked 112 Times in 104 Posts
Default

Anything is crackable.


Even if it takes the likes of Deep Thought to do it, it will fail eventually.


The question I've always asked myself when dealing with encryption, can they crack it before I change it and how much effort is worth while.
__________________
My Journal

Thou shalt check the array bounds of all strings (indeed, all arrays), for surely where thou typest ``foo'' someone someday shall type ``supercalifragilisticexpialidocious''.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Dual ath cards with WPA2 in hostapd? Malinda FreeBSD Security 4 8th June 2008 08:34 PM


All times are GMT. The time now is 11:02 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick