NASA Overcomes 802.11b Wireless Security Flaws 111
4mn0t1337 writes: "Looks like the people at NASA came up with a "solution" to the weak secrutity in 802.11: Bypass it. From the article: "The team also assumed that all information on the network would be subject to eavesdropping, and that no identification information built into 802.11b could be trusted." So they chose to disable it, and set up an 'off-the-shelf PC running the OpenBSD operating system, an Apache web server, the Internet Software Consortium DHCP server, the IPF firewall software' and just depend on the security in protocols the services use. Moral of the story: Ignore the 802.11 security and just tunnel into our access points ..."
NASA bypasses 902.11b flaws (Score:3, Insightful)
That's a pretty sad response (Score:5, Insightful)
The solution is to *fix* 802.11b's security, which shouldn't be that hard. I believe that simply running the crypto algorithm through a few start cycles, before transmitting, is sufficient to stop the published attacks.
Whether the fix requires buying new hardware, or flashing old hardware, or just changing drivers, is another question.
Why did it take this long for people to get it? (Score:4, Insightful)
How secure is TCP/IP over wire? Not much. (Score:3, Insightful)
Major league insecure (Score:3, Insightful)
Re: Bluetooth (Score:2, Insightful)