From: "Lewis G Rosenthal" Received: from [192.168.100.201] (account lgrosenthal HELO [192.168.100.20]) by 2rosenthals.com (CommuniGate Pro SMTP 5.1.16) with ESMTPSA id 2327836 for os2-wireless_users@2rosenthals.com; Sat, 21 Feb 2009 18:04:46 -0500 Message-ID: <49A08871.6040407@2rosenthals.com> Date: Sat, 21 Feb 2009 18:04:17 -0500 Organization: Rosenthal & Rosenthal, LLC User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; en-US; rv:1.8.1.18) Gecko/20081113 MultiZilla/1.8.3.5g SeaMonkey/1.1.13 (PmW) MIME-Version: 1.0 To: OS/2 Wireless Users Mailing List Subject: Re: [OS2Wireless] Router security References: In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit On 02/20/09 01:23 pm, Ray Davison thus wrote : > My current router has: > > WPA Personal > WPA Enterprise > WPA2 Personal > WPA2 Enterprise > RADIUS > WEP 64 > WEP 128 > > eCS RC6 shows: > > WEP 64 > WEP 128 > WPA PSK > WPA2 PSK > > From a long time ago I have been using WEP 64. Any suggestions on > which I should be using? > If at all possible, you want to use WPA2. You need to find the lowest common denominator between them. It is common for WPA2 to not match up between client and AP in all cases, so having to fall back to WPA is typical. You will likely have a choice between TKIP or AES (or both, on the AP side). I usually select both at the AP, as this will allow for connections from clients running either. AES provides the strongest encryption, however (256-bit). TKIP simply rotates the keys at pre-determined intervals (the intervals are decided upon between the AP and the client). "Enterprise" implies that there is a back end server providing authentication (part of the 802.11i spec). "Personal" implies "Pre-Shared Key," or "PSK." WEP64 (which is really 48-bit encryption) is so weak that it is not even worth using. An easier approach would be to use MAC address filtering, as this will keep innocent wanderers off of your WLAN. The RC-4 encryption is weak enough, and at 48 bits, can be picked in seconds. Don't even bother. HTH -- Lewis ------------------------------------------------------------- Lewis G Rosenthal, CNA, CLP, CLE Rosenthal & Rosenthal, LLC www.2rosenthals.com Need a managed Wi-Fi hotspot? www.hautspot.com Treasurer, Warpstock Corporation www.warpstock.org -------------------------------------------------------------