tag:blogger.com,1999:blog-5880036417091759998.post627253150348417878..comments2023-03-29T06:24:20.391-07:00Comments on Freakquency: Personal PSKs (Wi-Fi Masterminds)Bruce Hubberthttp://www.blogger.com/profile/08340537883829712230noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-5880036417091759998.post-62498271969803636592009-05-28T12:40:05.191-07:002009-05-28T12:40:05.191-07:00Agreed! Maybe, "It was fast and secure" is a sligh...Agreed! Maybe, "It was fast and secure" is a slight bit overstated. There are still vulnerabilities, however, some authentication and encryption better than none, IMHO.<br /><br />How do you feel about Personal PSK's?Bruce Hubberthttps://www.blogger.com/profile/08340537883829712230noreply@blogger.comtag:blogger.com,1999:blog-5880036417091759998.post-47282855825891431502009-05-28T10:28:43.831-07:002009-05-28T10:28:43.831-07:00A mild disagreement with your point about security...A mild disagreement with your point about security at hotspot locations. T-Mobile did offer the tmobile-dot1x SSID using TTLS and WPA authentication, but I fail to see the advantage of this. Yes, if you used this service you would not have your traffic sent in plaintext over the air like those on the "tmobile" SSID, but you traffic is still exposed to anyone else on the same network. As an attacker, if I can also connect to the hotspot provider's AP, I can capture your plaintext traffic by manipulating ARP tables at layer 2 (for example).<br /><br />What is the real benefit of using security in a hotspot? If the admission criteria for the hotspot is that anyone with physical proximity or a credit card can access the same layer 2 network as you, then WPA encryption provides no significant benefit.<br /><br />I will credit you this however: captive-portal authentication (used in SSID: "tmobile") is a travesty and a hack, and provides very little security. It is trivial to dupe legitimate users into turning over their authentication credentials (and potentially CC numbers) when captive portal is used for authentication on an open network. TTLS is a big improvement over captive portal authentication.<br /><br />Nice write-up. :)<br /><br />-JoshJoshua Wrighthttp://www.willhackforsushi.comnoreply@blogger.com