WPA help

[brian]

ok. i am trying to make a secure internet and with wpa-psk and wep both crackable i need something more secure. I know that wpa radius is the most secure and un-hackable. The problem is i dont know where to go. i have freeradius server up but i need some help geting any farther. Can some one who has done this or know how to please help me? thanks

 

[cybereclipse]

ummm actually wpa is easily hackable as i have done both....

there is nothing really "secure" just make sure that there is a wep or a unprotected network next to yours, that way wardrivers will go after those and not yours as wpa does that a while to crack...

 

[brian]

so wpa is still hackable? but isint it much harder with a good certificate? i just want something good enough that they would go else where.

 

[slaphappylinksys]

everything is hackable theres nothing as a uncrackable connection, example, the pentigon isnt unhackable they just have more security than any normal network, of course if i had billions of dollars id have one too ya know

 

[DrCuddles]

Dont you hear the stories or see on the news when people in the UK or USA are arrested due to hacking into NASA or the Whitehouse or some other huge government security system.

Nothing is hackable or secure, and there is no way of stopping that, if you want a more secure network then bin your wireless and use wires as its so damn easy to hack sireless because you only have to be near to the router to be on th network.

 

[slaphappylinksys]

and you have to have the wep encryption, or the wpa password, or know how to hack to find the password or what ever but wireless isnt that bad if you know how to protect yourself and set the right security up and keep nosy people out.

anyway i think its enough on the hacking subject, im sure one of the mods is gonna see it and close it if it keeps going on, and i know the person still needs help on the other subject at hand

 

[brian]

ok all i want is something more secure then wpa-psk. I think wpa radius is but if it is not then i will not waist my time. All i want is something to keep the small- larger hackers at bay. If some one payed 1000$ to hack it go ahead. that is what i want to do . so just say if it is not worth going from wpa-psk to radius...

 

[slaphappylinksys]

? y r you so worried about it, as long as you have security set it will keep the nosy out if someone wants in theres no way to stop them except unplugging the router,

and if you dont already have mac adress filter on, turn it on, it will, either way you set it allow, or deny people you want on or dont want on the network ive used wpa now for a while and not had any problems with people getting on i dont want to, also hide the SSID

 

[brian]

i am not really woried, just its for my job we want to upgrade from wep, and i just want to learn and i would have a fun time making it. it is one of thoughs things where it is like YES i did it... also out of school and am board.

 

[slaphappylinksys]

they dont have an IT specialist or an outside company that takes care of it ive never heard of wpa-psk before, just wpa tkip and wpa aes, if you do find out about it send some info my way i want to try it

 

[brian]

right now... i am the IT. . good at everything but seting up a certificate also yes psk is pre shared key. it is what you said. also i have followed this page http://wiki.freeradius.org/WPA_HOWTO but i get a error with the making of the certificates

 

[brian]

ok i got it, it needed to be in a folder and not just on my desktop. Now i need help with the config. I try to connect and i cant. i think it is beacause my wireless cant connect to it. so on that web page, it says
# bind_address: we need only listen on the wireless subnet.
bind_address = (IP address to listen on)
port = 0
hostname_lookups = no
is that the ip of the radius server or my wireless. and should i keep the port 0/. thanks

 

[Cleric7x9]

dude just use MAC address filtering...

 

[holdenssx]

? y r you so worried about it, as long as you have security set it will keep the nosy out if someone wants in theres no way to stop them except unplugging the router,

and if you dont already have mac adress filter on, turn it on, it will, either way you set it allow, or deny people you want on or dont want on the network

You can still get around MAC address filtering, but if you want a network to be pretty secure, put MAC address filtering on, Don't broadcast the SSID, and put a good WPA passphrase on.

 

[brian]

i said, just want to have a summer project. and braging rights. It is not for the security. knowing me, in 3 mounts i will forget and get mad that i need to make a new cert every year or so that i will go to wep. but i am board now and this gives me somethign to do.

 

[slaphappylinksys]

You can still get around MAC address filtering, but if you want a network to be pretty secure, put MAC address filtering on, Don't broadcast the SSID, and put a good WPA passphrase on.

i never said that it couldnt be gotten around, it just adds more obsticles for any intruder to get around thats all, o i went and got a n router today long story but it had PSK WAP on it, but the router kept screwing with me so i said F&*( it and took it back, and got a g access point, and thats giving me he(( its just not my day for computers

 

[brian]

i feel bad. i finally got it!!!! but i feel bad.... it was the firewall . finally found there is a bug in fc7 with the firewall.