Re: Wi-Fi: Essential Checklist

---

• From: John Navas <spamfilter1@xxxxxxxxxxxxxx>
• Date: Sat, 29 Nov 2008 15:22:58 -0800

---

On Sat, 29 Nov 2008 17:11:09 -0600, msg <msg@xxxxxxxxxxxxxxxxx> wrote in
<wvmdnYvABfFnVqzUnZ2dnUVZ_o7inZ2d@xxxxxxxxxxxxxxxxx>:

John Navas wrote:

Simply running a wireless network is an advertisement, and even with
encrypted tunnels your computers are still open to attack unless you
also have wireless to wireless isolation (along with wireless to wired
isolation if you have wired computers as well). You otherwise increase
your vulnerability substantially.

Please elaborate what forms of attack you consider likely here and why
segment isolation is indicated? When the only routes available to
the stranger wireless client are directed to an isolated honeypot

I saw nothing about this in your earlier post. Are you scrambling? ;)
Regardless, how exactly is this set up?

that
serves as an advertisement vehicle (not SSID adverts, but real html, text,
etc. adverts and terms of use statements), and useful routes are only
accessible through the tunnels (IPSec), what attack do you anticipate?

Any of the myriad of possible attacks.

As for 'internal' security, (on the VPN, VLANS, etc), that is a matter
for policy decisions on the internal network and not in the domain of
wireless security

I disagree -- it's all one network.
--
Best regards, FAQ for Wireless Internet: <http://wireless.navas.us>
John Navas FAQ for Wi-Fi: <http://wireless.navas.us/wiki/Wi-Fi>
Wi-Fi How To: <http://wireless.navas.us/wiki/Wi-Fi_HowTo>
Fixes to Wi-Fi Problems: <http://wireless.navas.us/wiki/Wi-Fi_Fixes>
.

---

• Follow-Ups:
  • Re: Wi-Fi: Essential Checklist
    • From: msg
  • Re: Wi-Fi: Essential Checklist
    • From: John Navas
  • Re: Wi-Fi: Essential Checklist
    • From: msg

• References:
  • Wi-Fi: Essential Checklist
    • From: John Navas
  • Re: Wi-Fi: Essential Checklist
    • From: John Mason Jr
  • Re: Wi-Fi: Essential Checklist
    • From: Jeff Liebermann
  • Re: Wi-Fi: Essential Checklist
    • From: Char Jackson
  • Re: Wi-Fi: Essential Checklist
    • From: Jeff Liebermann
  • Re: Wi-Fi: Essential Checklist
    • From: msg
  • Re: Wi-Fi: Essential Checklist
    • From: John Navas
  • Re: Wi-Fi: Essential Checklist
    • From: msg

• Prev by Date: Re: Wi-Fi: Essential Checklist
• Next by Date: Re: Wi-Fi: Essential Checklist
• Previous by thread: Re: Wi-Fi: Essential Checklist
• Next by thread: Re: Wi-Fi: Essential Checklist
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Wi-Fi: Essential Checklist ... also have wireless to wireless isolation (along with wireless to wired ... isolation if you have wired computers as well). ... Please elaborate what forms of attack you consider likely here and why ... (alt.internet.wireless) Re: Wi-Fi: Essential Checklist ... also have wireless to wireless isolation (along with wireless to wired ... isolation if you have wired computers as well). ... what attack do you anticipate? ... applications, database encryption, access ... (alt.internet.wireless) Re: Wi-Fi: Essential Checklist ... encrypted tunnels your computers are still open to attack unless you ... also have wireless to wireless isolation (along with wireless to wired ... isolation if you have wired computers as well). ... (alt.internet.wireless) Re: Two Netgear WGT624 models will not communicate ... |>option to use a wireless PC card. ... The intention is for DSL to go to ... If the wireless connectivity actually works between houses, ... (alt.internet.wireless) Re: What brand of router to buy ... Wireless Cable/DSL Router have 4 ports for wire computers (that can be ... As long as the computers are On you can share all the printers with all ... (microsoft.public.windowsxp.network_web)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

newsgroups.derkeiler.com  > Archive  > Alt  > alt.internet.wireless  > 2008-11