By today's standards it is considered fairly weak and a real risk. I have
not tried cracking it myself. However with better technologies such as WPA
it makes sense to use them. The probability of any one user having their WEP
cracked will depend on multiple factors including the value placed on the
target. However if you have someone living next door that does not want to
pay for internet access and is patient enough they may take the time to try
and crack your WEP keys. Dynamic WEP that is used with 802.1X and a
radius/IAS server is still fairly secure if you have the WEP keys changed
often which is automated. --- Steve


<dlwilson@evcom.net> wrote in message
news:1129036447.107547.94400@g14g2000cwa.googlegro ups.com...
> What is the weakness of WEP, and the likelihood that somone will
> actually crack my 128-bit WEP? I ask because several years ago I went
> to the trouble of setting up airsnort on Linux and attempting to crack
> my (at the time) 40- or 64-bit encryption. (details here:
> http://www.davewilson.cc/Wireless/Airsnort.html). I wasn't able to
> crack WEP with my ordinary network traffic; I had to set up four
> simultaneous ping sessions with very large packets, after which it took
> about 50 minutes. In actual use I don't think my network sees enough
> traffic to provide enough interesting packets to Airsnort to crack it.
> And that is with 40-bit. I have not tried it with 128-bit.
>
> Dave
> www.davewilson.cc
>