[kwlug-disc] More on Firesheep and encrypted wifi

L.D. Paniak ldpaniak at fourpisolutions.com
Thu Nov 11 17:30:49 EST 2010


Here is a short blurb on why having WPA/2-PSK turned on on your wifi
doesn't help solve the problem of people stealing your cookies.

http://www.boingboing.net/2010/11/10/password-doesnt-shea.html

I find it odd that WPA-PSK does not negotiate per-user keys in a more
secure way.  It is so close to having complete credential isolation not
only from people outside the network, but inside as well.

Looks like the only options are VPN back to a trusted network or only do
business with sites that care enough about your credentials to use SSL
for the whole transaction.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: This is a digitally signed message part
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20101111/5b020fb2/attachment.sig>


More information about the kwlug-disc mailing list