Sacurtis
join:2004-02-25
Prosper, TX | WPA Crack
So this basically means that someone can't sniff my data but they can get on my network....Correct? |
|
TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
 ·Sprint Mobile Broa..
 ·Comcast
1 edit | said by Sacurtis  :So this basically means that someone can't sniff my data but they can get on my network....Correct? Not exactly. They can see the data that is going TO the PC from the wireless router. They just can't see the data flowing FROM the PC back thru the router to the web host.
--
My BLOG .. .. Internet News .. .. My Web Page
Ask yourself one question: 'Do I feel lucky?' Well, do ya punk? |
|
danza
Premium
join:2002-08-23 | reply to Sacurtis
Seems like it.
They didn't mention AES at all in the article though. |
|
swhitney2003
I can't drive 55.
Premium
join:2003-06-13
NH
clubs:  | WPA2
Soon enough WPA will be the new WEP. Thank goodness for another change of style, AES. Is there any word on a WPA3 (or whatever the next gen might be). |
|
TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
·Sprint Mobile Broa..
·Comcast
1 edit | reply to danza
Re: WPA Crack
said by danza :Seems like it. They didn't mention AES at all in the article though. Read comments to the news item from PCWorld:
»www.pcworld.com/article/153396/
A thread in the Security forum discusses this:
»New method found to crack WPA - but not WPA2
--
My BLOG .. .. Internet News .. .. My Web Page
Ask yourself one question: 'Do I feel lucky?' Well, do ya punk? |
|
tmh
@qwest.net
| Not news
TKIP has its foundations in WEP. The main improvement being that a new key was generated every X minutes. It looks like someone's figured out a faster way to break WEP?
True? 
Looks like AES is still secure. |
|
Kearnstd
Elf Wizard
Premium
join:2002-01-22
Mullica Hill, NJ
| reply to Sacurtis
Re: WPA Crack
so they cracked it but it is still more secure then WEP. id still compair WPA-TKIP to a deadbolt on your door and no windows in reach of ground level. someone can get in but they have to work at it.
WPA2-AES is more like a motion sensing machinegun on the roof.
--
[65 Arcanist]Filan(High Elf) Zone: Broadband Reports |
|
swhitney2003
I can't drive 55.
Premium
join:2003-06-13
NH
clubs: | What is no wireless then (only a hardwired lan)? :-P |
|
TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
·Sprint Mobile Broa..
·Comcast
| reply to tmh
Re: Not news
said by tmh :TKIP has its foundations in WEP. The main improvement being that a new key was generated every X minutes. It looks like someone's figured out a faster way to break WEP? True? Looks like AES is still secure. Even if you are using WPA/TKIP, you can still better your odds by changing the "Key Renewal interval" in the wireless router from the usually default 3600 secs(60 mins) down to say 600 secs(10 mins). That should bring it under the time needed to crack the key. By the time they crack the key, it would already be changed.
--
My BLOG .. .. Internet News .. .. My Web Page
Ask yourself one question: 'Do I feel lucky?' Well, do ya punk? |
|
BIGMIKE
Premium
join:2002-06-07
Westminster, CA
| reply to Sacurtis
Re: WPA Crack
Hacking Wireless Network is old news
Apr 05, 2005
Feds Hack Wireless Network in 3 Minutes
»hardware.slashdot.org/article.pl···from=rss
Turbo-charged wireless hacks threaten networks
Graphics cards encryption skulduggery
By John Leyden • Get more from this author
Posted in Enterprise Security, 10th October 2008 12:25 GMT
»www.theregister.co.uk/2008/10/10···hacking/
The latest graphics cards have been used to break Wi-Fi encryption far quicker than was previously possible. Some security consultants are already suggesting the development blows Wi-Fi security out of the water and that corporations ought to apply tighter VPN controls, or abandon wireless networks altogether, in response |
|
tmh
@qwest.net
 from:
TKJunkMail
| reply to TKJunkMail
Re: Not news
said by TKJunkMail : Even if you are using WPA/TKIP, you can still better your odds by changing the "Key Renewal interval" in the wireless router from the usually default 3600 secs(60 mins) down to say 600 secs(10 mins). That should bring it under the time needed to crack the key. By the time they crack the key, it would already be changed. Tis funny you mentioned that. 5 years ago when I was running TKIP routers, I switched the key interval to 300 seconds. It wasn't adversely performance, so I figured "why not?".
tmh |
|
battleop
join:2005-09-28
00000 | reply to BIGMIKE
Re: WPA Crack
Your first example is about cracking WEP which is old news. This article is talking about cracking WPA, so they are not related.
You second example is not really cracking the WPA key, it's just a faster brute force attack. |
|
cooperaaaron
join:2004-04-10
Joliet, IL | reply to BIGMIKE
Let's say I had a computer with two graphics cards, why can't someone come up with a way to use one of the graphics cards ( or some card that could be installed in a slot ) when it is idle or lightly used, to encrypt data ? |
|
ftthz
If love can kill hate can also save
join:2005-10-17 | .
intersting... means people have to upgrade to wpa2 |
|
BloodRoses
Gods lend wings to tainted hearts
Premium
join:2003-03-17
clubs:
·Cox HSI
 ·Verizon Online DSL
| reply to cooperaaaron
Re: WPA Crack
Apple is doing something very similar to what you describe, or at least they're making it possible.
»en.wikipedia.org/wiki/OpenCL
--
Faerie Blessings,
Stephanie - www.GlitterFaerie.com |
|
scooby
Premium
join:2001-05-01
Schaumburg, IL
| Everything is crackable...
Like I have said for years now. If it is human made, a human can crack it. It is just a matter of time.
Obviously the amount of time depends on the level of interest.
R.I.P. CSS - 1999
R.I.P. WEP - 2001
R.I.P. AACS - 2007
R.I.P. BD+ - 2008
AACS and BD+ cracked for sure? Who knows but there are lots of programs out there to let you get around it. That is close enough in my book. |
|
jca2050
Premium
join:2002-02-04
Lewisville, TX
 ·Verizon FIOS
| WPA
WPA is still very secure if you have a complicated and long pass code. If you make your pass code something like ">SADFJL#()@!)OFKasfjksF2390SATf923()!%#%>", that's pretty much a guarantee that no one will crack it unless they have rainbow tables and a lot of time on their hands.
WPA has been crackable for a long time, it just requires you to deauth a client, capture the 4-way handshake when they reconnect and crack it with aircrack. If the pass code is something easy like "password" then you can run a standard dictionary attack on it and crack it in a matter of minutes. Although this method only works on WPA-PSK (pre-shared key) if I recall correctly, but just about every WPA protected AP I've seen uses WPA-PSK. |
|
TheMG
join:2007-09-04
Edmonton, AB
·TELUS
1 edit | reply to Kearnstd
Re: WPA Crack
said by Kearnstd :id still compair WPA-TKIP to a deadbolt on your door and no windows in reach of ground level. Well, I'm not sure if I'd compare it to a deadbolt. I can pick the lock on a standard deadbolt in just a couple minutes using makeshift tools. I'm no locksmith either.
And this WPA cracking isn't quite available to the masses either, unlike WEP cracking.
Unless of course the key is a weak one, in which case it can be brute forced within a reasonable time frame. Good luck brute forcing a WPA key of 63 random characters (I think that's what the max is). |
|
BosstonesOwn
join:2002-12-15
Everett, MA
clubs:
·Comcast
| reply to swhitney2003
said by swhitney2003 :What is no wireless then (only a hardwired lan)? :-P Smart ?
--
"It's always funny until someone gets hurt......and then it's absolutely friggin' hysterical!" |
|
fireflier
Coffee. . .Need Coffee
Premium
join:2001-05-25
Limbo
 ·Skype
1 edit | reply to swhitney2003
said by swhitney2003 :What is no wireless then (only a hardwired lan)? :-P Pissed off midget with a flamethrower. |
|
