On Tue, 2008-05-20 at 11:43 +0930, Tim wrote: > On Mon, 2008-05-19 at 10:14 -0400, Daniel Y. Zhang wrote: > > The funny thing is in my DLINK router, there is a check box to hide > > the SSID which seems an illusion to the users that hidding SSID is > > safer. > > Somewhere along the line some dingbat thought hiding it was a security > measure, and started a cargo cult mentality. Monkey see, monkey do... > > > I alway avoid using wireless connection for important online > > transactions such as banking, ecommerce etc. I do it on my wired > > machines. > > Similarly, I distrust wireless networking. I've not read of WPA being > cracked yet, but I'm sure it's on the cards. Though it's far from being > the only risky sort of networking. e.g. Users on cable internet > commonly will share a WAN between houses on the same street. Secure online apps are end-to-end. You could have some box in the middle copying every bit in both directions and not lose anything. In fact you do: it's called your ISP. Wireless connections are no less secure than wired in this sense because they only affect the local link. Using WPA protects you from intruders piggybacking on your bandwidth or injections into local trusted networks, and of course general snooping, but any serious online application with security requirements is going to use application-level end-to-end security. The dangers in this case aren't from snoopers, they're from careless app design, poor admin practice on the server end, weak passwords and poor host security in the client, etc. WPA doesn't solve any of these issues and using a wired connection doesn't either. poc -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
