Archive

Archive for March, 2010

Humpty Dumpty sat on a wall…

March 16th, 2010

False sense of security

Every now and then we run into network administrators and CSOs that brag about how their organization is not vulnerable to wireless security threats, only to see their rash confidence fizzle out once the results from a wireless vulnerability assessment or penetration test are out.

Today, most are aware that Open WiFi on enterprise network is foolish and using WEP encryption is a bad idea and that WPA2/802.1x is the way to go.  Then where do they go wrong?

Read more…

Wireless scanning, Wireless security

Windows7 Virtual AP – Why is it a big deal now?

March 4th, 2010

Windows7 Virtual AP – Why is it a big deal now?Windows7 Virtual AP

Ever since WiFi radios were available, there have been open source and priced software that allowed users to convert their client cards into APs. While these were available only on Linux based operating systems to start with; ‘Soft AP’ drivers and software has been available for most operating systems for at least a few years now. Also available were USB devices that operate as an AP. In addition; the WiFi interface could always have been put into ad-hoc mode, allowing other clients to connect to it, effectively creating the same vulnerability as a soft AP

So, why is soft AP suddenly a big deal when Windows7 provides this as a built in option in the OS? Read more…

Windows 7 , ,