[nsp] Cisco Aironet

Bruce Pinsky bep at whack.org
Sat Nov 15 19:24:55 EST 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Bradley Dunn wrote:

| Rainer Borromeo wrote:
|
|> How secure is Aironet using LEAP?
|
|
| It's more secure than no security or static WEP, but it's vulnerable to
| dictionary attacks. See:
| http://home.jwu.edu/jwright/presentations/asleap-defcon.pdf
|
| Cisco will tell you the solution is a "strong password policy", but the
| real solution is to use a better EAP type.
|

And OTP's could certainly help...

=========
bep

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)

iD8DBQE/tsPXE1XcgMgrtyYRAsJwAKDmJ1jdCqJJPLUYy39MAn5Pvu95ngCeJ1f5
IMB1CrbFHrGBqNuFJEk70gs=
=Dhvk
-----END PGP SIGNATURE-----



More information about the cisco-nsp mailing list