[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Cisco LEAP exploit tool...

To: "Email List: Full Disclosure" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Cisco LEAP exploit tool...
From: Paul Schmehl <pauls@xxxxxxxxxxxx>
Date: Wed, 14 Apr 2004 12:41:31 -0500

--On Wednesday, April 14, 2004 09:17:56 AM -0500 Ron DuFresne <dufresne@xxxxxxxxxxxxx> wrote:


All wireless traffic should be treated as unsecured, and pushed through a
DMZ/encryption tunneled setup.  Puttiing wireless AP's directly on the LAN
is a major blunder.

Well, that really depends, doesn't it. We're doing IPSEC using AES for wireless on a test network. It's a good deal more secure than our wired network, which is still plain text.

Or did you just assume that everyone is using WEP?

Paul Schmehl (pauls@xxxxxxxxxxxx)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Cisco LEAP exploit tool...
  - From: Ron DuFresne
- Re: [Full-Disclosure] Cisco LEAP exploit tool...
  - From: Valdis . Kletnieks
- RE: [Full-Disclosure] Cisco LEAP exploit tool...
  - From: Aditya, ALD [Aditya Lalit Deshmukh]

References:
- Re: [Full-Disclosure] Cisco LEAP exploit tool...
  - From: Ron DuFresne

Prev by Date: Re: [Full-Disclosure] The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011
Next by Date: Re: [Full-Disclosure] The new Microsoft math: 1 patch for 14 vulnerabilities, MS04-011
Previous by thread: Re: [Full-Disclosure] Cisco LEAP exploit tool...
Next by thread: Re: [Full-Disclosure] Cisco LEAP exploit tool...
Index(es):
- Date
- Thread