On 7 Aug 2006 11:18:07 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1154974687.851858.9830@n13g2000cwa.googlegroups.c om>:
>John Navas wrote:
>> I misspoke -- that actually refers to a password made up of two (and
>> only two) diceware words joined by a special character, which could even
>> be as short as only 3 characters, on average about 9 characters, and
>> might have to be truncated to 8 characters, since that's a not uncommon
>> limit. Such short passwords are vulnerable to brute force attack, and
>> should only be used if the system limits the number of bad
>> authentication attempts. Otherwise the password should be longer and/or
>> more random.
>
>I kind of though oyu emant for the psw made up of two dice words joined
>by a special character. If I put a speical character in my own psw,
>would it be the same as using 2 dice words?
In general, adding a special character will significantly improve a
password, but how good it will get depends of how good it was in the
first place. For example, "amanda$" isn't a good password. ;)
>Of cousre, I will get the
>other type ..in time.
Why not just start using Password Safe now?
>> (b) Use a hotspot-type router with different security zones, putting
>> him in a guest zone. Unfortunately, commercial hotspot routers are
>> typically much more expensive than commodity routers, which is why
>> I recommended the alternative of running third-party firmware in a
>> Linksys WRT54GL.
>
>So I'll need a new router?
You could sell your old one on eBay, but this all depends on how you
feel about security. You might feel that securing your LAN is
sufficient. He will, after all, have physical access.
>> (c) Use external RADIUS authentication on your WLAN. Radiuz
>> <http://radiuz.net> is a free service that I haven't used myself but
>> reportedly works well. You can give create a special account for your
>> guest, and delete it when he leaves. This also works well with 1(b)
>> above.
>
>He is causing me more work. He needs to leave:)-
Men tend to do that. ;)
>> (a) Secure your LAN. What to do is covered in the How To wiki below.
>> This is the least you should do.
>
>god, lots of work. Thanks though. I will do it in time. For now, I'll
>tell him to access the neighbor's weirless network. I have so many
>other things to be doing:)-
Other options:
* Let him cable to your broadband from time to time with your LAN
disconnected.
* Let him use a guest account on your computer to browse the Internet,
check email, etc.
* His own wireless Internet access from his cellular carrier.
>> (b) Use a hotspot-type router with different security zones, putting
>> him in a guest zone that can only access the Internet. See 1(b) above.
>
>This seems the easiest or fastest or least amount of work, right?
Pretty much, and it's also the most secure.
>Btw,
>if I give access key or no security on my wireless router, he can see
>my hard drive, right?
He can see it if and only if you have file sharing enabled. Verifying
that file sharing is either off or secured is one of the key steps in
securing your LAN. Likewise personal firewall.
To make sure file sharing is completely off:
Start -> Control Panel -> Network Connection -> right-click on network
adapter -> select Properties -> UNcheck item File and Printer Sharing
for Microsoft Networks -> click OK. Follow steps again to check it.
>That's what I understood but when I asked him a
>while back, he said "No". Did he lie?
You may have file sharing turned off.
>> It is supported in some models, but poorly or not at all in other
>> models.
>
>How do I find out whether mine is supported or not? Only by downloadign
>ther sw and putting it?
Check your Linksys version against the list of supported products.
Which version do you have? See the index at
<http://en.wikipedia.org/wiki/WRT54G#Hardware_revisions>.
>> >What "L"
>> >stands for in WRT-54GL.
>>
>> "L" is presumed to stand for Linux, the free open source operating
>> system used in some models of the WRT54G.
>
>I see. So without "L" in the model, if I have a PC with Linux, I won't
>be a able to go online via the Linux box, do I? If so, I am "p***ed"
>because the guy who suggested me to buy this router 2 years ago knew
>that I was planning toput linux on the PC I was building - with minmum
>stuff - but I put XP instead and gave it to my sister's to keep as a
>spare visiting family members.
Not to worry. The "L" just means the Linksys box is running a version
of Linux (likewise used in third-party firmware). That has nothing to
do with computers connecting to the box. They can be Windows, Linux,
Mac, whatever.
The good news is that your router is so old that it's likely to be able
to run third-party firmware.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 11:27:03 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1154975223.217008.151090@m79g2000cwm.googlegroups .com>:
>John Navas wrote:
>[.]
>
>> There are two different security issues:
>>
>> 1. Wireless security. His laptop might well have high security, but
>> when you give him your key, there's a risk that he might inadvertently
>> give it to someone else. There are a number of ways to deal with this:
>>
>> (a) Change your passphrase after he leaves. This is the least you
>> should do.
>
>BTW, what I'll type it in for him instead of giving it to him. ...
OK, but it will still be saved on his computer, and a malware keystroke
logger could capture it in the clear as you typed it in. These are some
of the reasons that a single shared password isn't a good idea. If your
Linksys supports WPA Enterprise, consider switching to Radiuz, which is
pretty simple and easy. That way you can give him a unique password
that you can expire when he leaves.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
John Navas wrote:
> On 7 Aug 2006 11:27:03 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
> <1154975223.217008.151090@m79g2000cwm.googlegroups .com>:
>
> >John Navas wrote:
> >[.]
> >
> >> There are two different security issues:
> >>
> >> 1. Wireless security. His laptop might well have high security, but
> >> when you give him your key, there's a risk that he might inadvertently
> >> give it to someone else. There are a number of ways to deal with this:
> >>
> >> (a) Change your passphrase after he leaves. This is the least you
> >> should do.
> >
> >BTW, what I'll type it in for him instead of giving it to him. ...
>
> OK, but it will still be saved on his computer, and a malware keystroke
> logger could capture it in the clear as you typed it in. These are some
> of the reasons that a single shared password isn't a good idea. If your
> Linksys supports WPA Enterprise, consider switching to Radiuz,
I have WPA RADIUS option. Is that the same thing as what you are
saying?
After I saided that if put the psw, I thought of another idea. If he
asks, I'll just give him the modem, and let him connect directly to it.
I don't even care if he feels offended because he has made me mad about
something.
> which is
> pretty simple and easy. That way you can give him a unique password
> that you can expire when he leaves.
>
> --
> Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
> John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
> Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
> Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
John Navas wrote:
> On 7 Aug 2006 11:18:07 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
> <1154974687.851858.9830@n13g2000cwa.googlegroups.c om>:
>
> >John Navas wrote:
>
> >> I misspoke -- that actually refers to a password made up of two (and
> >> only two) diceware words joined by a special character, which could even
> >> be as short as only 3 characters, on average about 9 characters, and
> >> might have to be truncated to 8 characters, since that's a not uncommon
> >> limit. Such short passwords are vulnerable to brute force attack, and
> >> should only be used if the system limits the number of bad
> >> authentication attempts. Otherwise the password should be longer and/or
> >> more random.
> >
> >I kind of though oyu emant for the psw made up of two dice words joined
> >by a special character. If I put a speical character in my own psw,
> >would it be the same as using 2 dice words?
>
> In general, adding a special character will significantly improve a
> password, but how good it will get depends of how good it was in the
> first place. For example, "amanda$" isn't a good password. ;)
I never use my name. I use words from my native langauge combined
with digits.
>
> >Of cousre, I will get the
> >other type ..in time.
>
> Why not just start using Password Safe now?
Plan to.
>
> >> (b) Use a hotspot-type router with different security zones, putting
> >> him in a guest zone. Unfortunately, commercial hotspot routers are
> >> typically much more expensive than commodity routers, which is why
> >> I recommended the alternative of running third-party firmware in a
> >> Linksys WRT54GL.
> >
> >So I'll need a new router?
>
> You could sell your old one on eBay, but this all depends on how you
> feel about security. You might feel that securing your LAN is
> sufficient. He will, after all, have physical access.
I am not worried about security with him but sm ocncern baout virus.
>
> >> (c) Use external RADIUS authentication on your WLAN. Radiuz
> >> <http://radiuz.net> is a free service that I haven't used myself but
> >> reportedly works well. You can give create a special account for your
> >> guest, and delete it when he leaves. This also works well with 1(b)
> >> above.
> >
> >He is causing me more work. He needs to leave:)-
>
> Men tend to do that. ;)
But he is not my bf.
>
> >> (a) Secure your LAN. What to do is covered in the How To wiki below.
> >> This is the least you should do.
> >
> >god, lots of work. Thanks though. I will do it in time. For now, I'll
> >tell him to access the neighbor's weirless network. I have so many
> >other things to be doing:)-
>
> Other options:
>
> * Let him cable to your broadband from time to time with your LAN
> disconnected.
Yup.
>
> * Let him use a guest account on your computer to browse the Internet,
> check email, etc.
I think he just check his work mail. He is here only sleep and his time
is up after tomorrow night since a friend of mine is visiting me.
>
> * His own wireless Internet access from his cellular carrier.
Hey, he does have that. He should use that.
>
> >> (b) Use a hotspot-type router with different security zones, putting
> >> him in a guest zone that can only access the Internet. See 1(b) above.
> >
> >This seems the easiest or fastest or least amount of work, right?
>
> Pretty much, and it's also the most secure.
Glad to hear that.
>
> >Btw,
> >if I give access key or no security on my wireless router, he can see
> >my hard drive, right?
>
> He can see it if and only if you have file sharing enabled.
I don't have it enabled.
> Verifying that file sharing is either off or secured is one of the key steps in
> securing your LAN. Likewise personal firewall.
>
> To make sure file sharing is completely off:
Thanks.
> Start -> Control Panel -> Network Connection -> right-click on network
> adapter -> select Properties -> UNcheck item File and Printer Sharing
> for Microsoft Networks -> click OK. Follow steps again to check it.
>
> >That's what I understood but when I asked him a
> >while back, he said "No". Did he lie?
>
> You may have file sharing turned off.
More like never turned on.
>
> >> It is supported in some models, but poorly or not at all in other
> >> models.
> >
> >How do I find out whether mine is supported or not? Only by downloadign
> >ther sw and putting it?
>
> Check your Linksys version against the list of supported products.
> Which version do you have? See the index at
> <http://en.wikipedia.org/wiki/WRT54G#Hardware_revisions>.
2.2
>
> >> >What "L"
> >> >stands for in WRT-54GL.
> >>
> >> "L" is presumed to stand for Linux, the free open source operating
> >> system used in some models of the WRT54G.
> >
> >I see. So without "L" in the model, if I have a PC with Linux, I won't
> >be a able to go online via the Linux box, do I? If so, I am "p***ed"
> >because the guy who suggested me to buy this router 2 years ago knew
> >that I was planning toput linux on the PC I was building - with minmum
> >stuff - but I put XP instead and gave it to my sister's to keep as a
> >spare visiting family members.
>
> Not to worry. The "L" just means the Linksys box is running a version
> of Linux (likewise used in third-party firmware). That has nothing to
> do with computers connecting to the box. They can be Windows, Linux,
> Mac, whatever.
>
> The good news is that your router is so old that it's likely to be able
> to run third-party firmware.
Great.
>
> --
> Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
> John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
> Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
> Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 15:12:20 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1154988740.830267.6920@p79g2000cwp.googlegroups.c om>:
>John Navas wrote:
>> >He is causing me more work. He needs to leave:)-
>>
>> Men tend to do that. ;)
>
>But he is not my bf.
So no offsetting benefits. Bummer. :)
>> * His own wireless Internet access from his cellular carrier.
>
>Hey, he does have that. He should use that.
Well, there you go!
>> Check your Linksys version against the list of supported products.
>> Which version do you have? See the index at
>> <http://en.wikipedia.org/wiki/WRT54G#Hardware_revisions>.
>
>2.2
Lucky you: fully supported by third-party firmware.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 14:58:54 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1154987934.446201.50610@75g2000cwc.googlegroups.c om>:
>John Navas wrote:
>> OK, but it will still be saved on his computer, and a malware keystroke
>> logger could capture it in the clear as you typed it in. These are some
>> of the reasons that a single shared password isn't a good idea. If your
>> Linksys supports WPA Enterprise, consider switching to Radiuz,
>
>I have WPA RADIUS option. Is that the same thing as what you are
>saying?
Yep. Just:
1. Register a free Radiuz account
2. Get email and validate the account.
3. Follow the instructions to configure your router.
4. Follow the instructions to configure your own computer.
5. Have your guest register with Radiuz.
6. Use Radiuz website to invite your guest.
7. Use Radiuz website to monitor his usage.
8. Use Radiuz website to cancel your guest when he's left.
>After I saided that if put the psw, I thought of another idea. If he
>asks, I'll just give him the modem, and let him connect directly to it.
>I don't even care if he feels offended because he has made me mad about
>something.
"Hell hath no fury..." :)
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
John Navas wrote:
> On 7 Aug 2006 14:58:54 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
> <1154987934.446201.50610@75g2000cwc.googlegroups.c om>:
>
> >John Navas wrote:
>
> >> OK, but it will still be saved on his computer, and a malware keystroke
> >> logger could capture it in the clear as you typed it in. These are some
> >> of the reasons that a single shared password isn't a good idea. If your
> >> Linksys supports WPA Enterprise, consider switching to Radiuz,
> >
> >I have WPA RADIUS option. Is that the same thing as what you are
> >saying?
>
> Yep. Just:
> 1. Register a free Radiuz account
> 2. Get email and validate the account.
> 3. Follow the instructions to configure your router.
> 4. Follow the instructions to configure your own computer.
> 5. Have your guest register with Radiuz.
> 6. Use Radiuz website to invite your guest.
> 7. Use Radiuz website to monitor his usage.
> 8. Use Radiuz website to cancel your guest when he's left.
Lots of wokr but good learning. Great! I'll do it on my PC - needs to
put a new hard drive first but been busy.
Btw, what will happen if the guest account ifs left open so that future
guest can use it. I am thinking for my oldest sister. She won't learn
to monitor and all that and I can't be doing that for her but I can set
open guest accounts for her. Well only when I have time. Oh, wait,
her router is Motorola SGB 940 from Star stream ISP.
>
> >After I saided that if put the psw, I thought of another idea. If he
> >asks, I'll just give him the modem, and let him connect directly to it.
> >I don't even care if he feels offended because he has made me mad about
> >something.
>
> "Hell hath no fury..." :)
Nah, what made me mad was that he asked me to say for a week between
moving but now, he is acting like he wants to stay longer such that he
wants to come back after my other friend leaves - he asked me how long
my friend will stay. I got my friend postponed his trip for a few days
already visiting me so that he gets his 1 week and now that I told him
that my friend is from Bay Area, he poped the question as if he can
stay here for more days.
The thing is his son with down-syndrome will be wih him soon - the boy
is with the mother and other siblings in Bay Area for the summer - and
he needs to get a place ready instead of putting me in a position where
I will have to keep the son too because he doesn't have a place ready.
I know that my house is big and nice for his son but it's not right for
him to be taking advantage on me. He needs to be diligent about getting
an apartment. After all, he said "one week" and one week is up. So
it' s not my fury. I am a very reasonable person:)- he is going to use
internet form his cellular phone carrier cus I am not going open a
guest account for him judt for 2 days. I will open and keep one handy
so that in the future, if any friend who visits me want to access
internet, I'll let them use that one.
Thanks for all the help. Btw, what would be the best approach for
non-technical person (non IT person) to learn to be able to do this
type of security thing on their laptop at their private workplace, a
jewelry store. Is that possible at all for people who only knows how
to use internet and not much more?
>
> --
> Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
> John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
> Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
> Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
John Navas wrote:
> On 7 Aug 2006 15:12:20 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
> <1154988740.830267.6920@p79g2000cwp.googlegroups.c om>:
>
> >John Navas wrote:
>
> >> >He is causing me more work. He needs to leave:)-
> >>
> >> Men tend to do that. ;)
> >
> >But he is not my bf.
>
> So no offsetting benefits. Bummer. :)
He's being selfish taking advanatge on my kindess. See my other posts
why I feel like it's *work*.
>
> >> * His own wireless Internet access from his cellular carrier.
> >
> >Hey, he does have that. He should use that.
>
> Well, there you go!
>
> >> Check your Linksys version against the list of supported products.
> >> Which version do you have? See the index at
> >> <http://en.wikipedia.org/wiki/WRT54G#Hardware_revisions>.
> >
> >2.2
>
> Lucky you: fully supported by third-party firmware.
Great.
>
> --
> Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
> John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
> Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
> Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 18:19:29 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1154999969.777451.296150@i3g2000cwc.googlegroups. com>:
>John Navas wrote:
>> 1. Register a free Radiuz account
>> 2. Get email and validate the account.
>> 3. Follow the instructions to configure your router.
>> 4. Follow the instructions to configure your own computer.
>> 5. Have your guest register with Radiuz.
>> 6. Use Radiuz website to invite your guest.
>> 7. Use Radiuz website to monitor his usage.
>> 8. Use Radiuz website to cancel your guest when he's left.
>
>Lots of wokr but good learning. Great! I'll do it on my PC - needs to
>put a new hard drive first but been busy.
>
>Btw, what will happen if the guest account ifs left open so that future
>guest can use it. ...
Poor security practice -- each machine should have its own account -- so
better to delete his account, and create a new account.
>... I will open and keep one handy
>so that in the future, if any friend who visits me want to access
>internet, I'll let them use that one.
Better to create them as you need them.
>Thanks for all the help. Btw, what would be the best approach for
>non-technical person (non IT person) to learn to be able to do this
>type of security thing on their laptop at their private workplace, a
>jewelry store. Is that possible at all for people who only knows how
>to use internet and not much more?
There are lots of guides, but really learning security is hard.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 17:44:33 GMT, phil-news-nospam@ipal.net wrote:
: On Sun, 06 Aug 2006 20:49:49 GMT Duane Arnold <"Do forget about it"@pleaedo.bet> wrote:
: | Robert Coe wrote:
: |> To those of us of a certain age, "WPA" stands for "Works Progress
: |> Administration", the makework program set up by Franklin Roosevelt
: |
: | You shouldn't put the word *us* in there. You may be the only one.
:
: Some of *us* were actually awake and paying attention in history class.
Thanks, Phil! ;^) In the interest of full disclosure, though, I have to admit
that I do remember when Franklin Roosevelt was president. But the WPA was a
couple of years before my time! :^)
John Navas wrote:
> On 7 Aug 2006 18:19:29 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
> <1154999969.777451.296150@i3g2000cwc.googlegroups. com>:
>
> >John Navas wrote:
>
> >> 1. Register a free Radiuz account
> >> 2. Get email and validate the account.
> >> 3. Follow the instructions to configure your router.
> >> 4. Follow the instructions to configure your own computer.
> >> 5. Have your guest register with Radiuz.
> >> 6. Use Radiuz website to invite your guest.
> >> 7. Use Radiuz website to monitor his usage.
> >> 8. Use Radiuz website to cancel your guest when he's left.
> >
> >Lots of wokr but good learning. Great! I'll do it on my PC - needs to
> >put a new hard drive first but been busy.
> >
> >Btw, what will happen if the guest account ifs left open so that future
> >guest can use it. ...
>
> Poor security practice -- each machine should have its own account -- so
> better to delete his account, and create a new account.
Okay.
>
> >... I will open and keep one handy
> >so that in the future, if any friend who visits me want to access
> >internet, I'll let them use that one.
>
> Better to create them as you need them.
Right.
> >Thanks for all the help. Btw, what would be the best approach for
> >non-technical person (non IT person) to learn to be able to do this
> >type of security thing on their laptop at their private workplace, a
> >jewelry store. Is that possible at all for people who only knows how
> >to use internet and not much more?
>
> There are lots of guides, but really learning security is hard.
Riight.
Thanks for all the help. I should have been in this ng a long time ago
and learning. Well, life's not always rosy:)-
>
> --
> Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
> John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
> Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
> Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On 7 Aug 2006 23:29:46 -0700, "Amanda" <amanda772008@yahoo.com> wrote in
<1155018586.567658.165820@n13g2000cwa.googlegroups .com>:
>Thanks for all the help. I should have been in this ng a long time ago
>and learning. Well, life's not always rosy:)-
You're very welcome. Best of luck with your boarders.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On Mon, 07 Aug 2006 19:01:52 GMT John Navas <spamfilter0@navasgroup.com> wrote:
| On 7 Aug 2006 17:38:23 GMT, phil-news-nospam@ipal.net wrote in
| <eb7tqf1ga2@news4.newsguy.com>:
|
|>On Sun, 06 Aug 2006 08:28:30 GMT John Navas <spamfilter0@navasgroup.com> wrote:
|>
|>| I recommend diceware words (link in wikis below):
|>
|>Which link?
|
| Click Search on any of the wiki pages.
|
|>Oh wait, you're one of those people that likes to send people on wild
|>goose chases.
|
| Oh wait, you childishly presume to tell other people what to do even
| when they spend a great deal of time and energy helping others instead
| of doing so yourself.
There's a class of people that like to tell people to go to specific web
sites for the answer, but only send them to the main page. There's a
class of people that like to tell people to google for the answer without
saying what the best keywords would be. It's the same class. You know,
maybe you are not as helpful as you think you are.
--
|---------------------------------------/----------------------------------|
| Phil Howard KA9WGN (ka9wgn.ham.org) / Do not send to the address below |
| first name lower case at ipal.net / spamtrap-2006-08-08-0933@ipal.net |
|------------------------------------/-------------------------------------|
>On Mon, 07 Aug 2006 19:01:52 GMT John Navas <spamfilter0@navasgroup.com> wrote:
>| On 7 Aug 2006 17:38:23 GMT, phil-news-nospam@ipal.net wrote in
>| <eb7tqf1ga2@news4.newsguy.com>:
>|
>|>On Sun, 06 Aug 2006 08:28:30 GMT John Navas <spamfilter0@navasgroup.com> wrote:
>|>
>|>| I recommend diceware words (link in wikis below):
>|>
>|>Which link?
>|
>| Click Search on any of the wiki pages.
>|
>|>Oh wait, you're one of those people that likes to send people on wild
>|>goose chases.
>|
>| Oh wait, you childishly presume to tell other people what to do even
>| when they spend a great deal of time and energy helping others instead
>| of doing so yourself.
>
>There's a class of people that like to tell people to go to specific web
>sites for the answer, but only send them to the main page. There's a
>class of people that like to tell people to google for the answer without
>saying what the best keywords would be. It's the same class. You know,
>maybe you are not as helpful as you think you are.
Ditto. Have a nice day.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
>On Sun, 06 Aug 2006 02:05:59 -0700 Jeff Liebermann <jeffl@comix.santa-cruz.ca.us> wrote:
>| A "strong passphrase" is one that you can't remember.
>I have a 27 character mixed case passphrase memorized. Does this mean
>it is not strong?
Correct. It's not strong. That's because most people will either
scribble the long pass phrase somewhere, or inscribe it in a file
somewhere. Most often on a post-it note under the keyboard or
attached to the router. Some plaster it on the monitor. I read in
some mailing list that one admin did a walk through on a weekend and
found something like half the users desks had at least one password
inscribed somewhere that could easily be found. I recently horrified
a customer when I handed them a large number of passwords that I
surreptitiously extracted from their PDA phone.
The more complex the pass phrase, the greater the tendency to inscribe
it somewhere. Were I to attempt a breakin, it would not be by
sniffing traffic and decryption. It would be by social engineering
and scanning your computer for the pass phrase. I really like Google
Desktop Search, which is much quicker than Windoze Search. I try
various buzzwords such as WPA, passwd, password, router, etc and
usually find something. Of course some users (like me) encrypt their
password files, but that's usually with a trivial key or something far
less secure.
In my highly biased and occasionally humble opinion, the right answer
is to avoid passwords in any form. Use a RADIUS server or service,
which issues one time unique WPA keys and be done with it. I've
previously ranted on the subject of why I detest passwords in detail
(and don't wanna do it again).
Want real password security? Then ban Post-it notes.
Incidentally, one of the jokes I was thinking of trying is to make a
scratch pad with:
System Login Password
columns on it. I'm sure quite a few people would use it. If I make
the paper an easily recognizable color, it should be easy to find in
any office.
On Tue, 08 Aug 2006 08:59:36 -0700, Jeff Liebermann
<jeffl@comix.santa-cruz.ca.us> wrote in
<v8chd259dho4q73g9dragj17drpa1drpvk@4ax.com>:
>In my highly biased and occasionally humble opinion, the right answer
>is to avoid passwords in any form. Use a RADIUS server or service,
>which issues one time unique WPA keys and be done with it. I've
>previously ranted on the subject of why I detest passwords in detail
>(and don't wanna do it again).
Unfortunately, that won't solve the problem in and of itself, since most
RADIUS authentication is based on [drum roll] passwords. It does
eliminate the risk of Pre-Shared Key, but by swapping it for the risk of
passwords, which can be a poor tradeoff IMnsHO. Authentication is a
bitch.
--
Best regards, FAQ for Wireless Internet: <http://Wireless.wikia.com>
John Navas FAQ for Wi-Fi: <http://wireless.wikia.com/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.wikia.com/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.wikia.com/wiki/Wi-Fi_Fixes>
On Tue, 08 Aug 2006 08:59:36 -0700, in alt.internet.wireless , Jeff
Liebermann <jeffl@comix.santa-cruz.ca.us> wrote:
>phil-news-nospam@ipal.net hath wroth:
>
>>On Sun, 06 Aug 2006 02:05:59 -0700 Jeff Liebermann <jeffl@comix.santa-cruz.ca.us> wrote:
>>| A "strong passphrase" is one that you can't remember.
>
>>I have a 27 character mixed case passphrase memorized. Does this mean
>>it is not strong?
>
>Correct. It's not strong.
PMFBI but Incorrect. In the given context it /is/ strong.
>That's because most people will either
>scribble the long pass phrase somewhere,
Thats a different issue. The pwd is unlikely to be guessed, which,
since its owner has memorised it and doesn't therefore need to write
it down, is the pertinent sense.
>Want real password security? Then ban Post-it notes.
Graphite pencils work well on the underside of keyboards... :-(
--
Mark McIntyre
Re: Linksys home network problems 
Linear Mode
