RE: Hardening WIFI

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MPLUG-discuss at <-
MEd at ->
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ image001.png (image/png)
+ image002.png (image/png)
+ image003.png (image/png)
+ image004.jpg (image/jpeg)
+ (text/plain)
Delete this message
Reply to this message
Author: Carruth, Rusty
Date:  
To: Main PLUG discussion list
Subject: RE: Hardening WIFI
ONLY 32? Aren’t you allowed 128?

Yeah, for the longest time mine was 128 chars long. VERY nasty when entering new devices…  My family finally forced me to make it a little shorter! ;-)

[SMART_HRS_RGB]

Rusty Carruth | Customer Support | <mailto:rusty.carruth@smarth.com> | http://www.smarth.com<http://www.smarth.com/>

      [linkedin] <https://www.linkedin.com/company/12955027/>    [twitter] <https://twitter.com/@MilSSD> See the new M4[cid:]<http://www.marketwired.com/press-release/smart-high-reliability-solutions-announces-availability-its-new-highly-ruggedized-highly-2235071.htm>

See us on Storage Search    http://www.storagesearch.com/smart2.html

510-624-5391   | Fax: 480-926-5579   | 1325 N. Fiesta Blvd.  Suite 101 Gilbert, Az. 85233

This email message (and any attachments) is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.

From: PLUG-discuss [mailto:plug-discuss-bounces@lists.phxlinux.org] On Behalf Of 
Sent: Saturday, December 09, 2017 1:02 PM
To: Main PLUG discussion list
Subject: Re: Hardening WIFI




Appreciate your help and advice!!




On 2017-11-23 15:52, Michael Butash wrote:
Ensure you're only using wpa2-aes (no tkip, or mix wpa1-2), and use a very long psk string.  Ensure your clients aren't vulnerable to the blueborne and other wifi ota exploits.  Not much else you can do really unless you want to run a radius and/or cert pki in-house to do eap-tls, or peap.  You can crack against wpa2, but unless using an easy string, it's not easy or assured they will figure out your string.

I use a 32char random string, special characters, really annoying when adding new devices, but I don't worry about someone cracking it.

-mb


On Thu, Nov 23, 2017 at 2:58 PM, <<mailto:techlists@phpcoderusa.com>> wrote:



Hi,

I would like to "Harden" my WIFI and am not sure where to start.  I seem to recall past discussions on replacing the standard equipment provided by our ISP.

I would like to make it very difficult to hack my WIFI and I would like a firewall.  And I would like this to be "Plug and Play" as much as is possible.  In other words I would like to stay away from installing a Linux firewall on an extra PC and then having to maintain it.

Please feel free to let me know if my expectations are not valid.

Thanks in advance!!

Keith



---------------------------------------------------
PLUG-discuss mailing list - <mailto:PLUG-discuss@lists.phxlinux.org>
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss

---------------------------------------------------
PLUG-discuss mailing list - <mailto:PLUG-discuss@lists.phxlinux.org>
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss





---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss
This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: American Airlines sysadmin openingPLUG's end of year party this Thursday!->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)