From: "Ray Davison" <os2-wireless_users@2rosenthals.com>
Received: from [192.168.100.201] (HELO mail.2rosenthals.com)
  by 2rosenthals.com (CommuniGate Pro SMTP 5.1.16)
  with ESMTP id 2341723 for os2-wireless_users@2rosenthals.com; Sat, 28 Feb 2009 20:18:53 -0500
Received: from static-71-171-102-26.clppva.fios.verizon.net ([71.171.102.26] helo=mail2.2rosenthals.com)
	by secmgr-ny.randr with esmtps (TLSv1:AES256-SHA:256)
	(Exim 4.43)
	id 1LdaKQ-0007z2-Ta
	for os2-wireless_users@2rosenthals.com; Sat, 28 Feb 2009 20:18:53 -0500
Received: from mta31.charter.net ([216.33.127.82]:60804)
	by mail2.2rosenthals.com with esmtp (Exim 4.69)
	(envelope-from <raydav@charter.net>)
	id 1LdaKL-0000xQ-2s
	for os2-wireless_users@2rosenthals.com; Sat, 28 Feb 2009 20:18:46 -0500
Received: from imp11 ([10.20.200.11]) by mta31.charter.net
          (InterMail vM.7.09.01.00 201-2219-108-20080618) with ESMTP
          id <20090301011840.ZMZO21772.mta31.charter.net@imp11>
          for <os2-wireless_users@2rosenthals.com>;
          Sat, 28 Feb 2009 20:18:40 -0500
Received: from [192.168.1.100] ([71.9.77.235])
	by imp11 with charter.net
	id MdJg1b00454cMmn05dJgkP; Sat, 28 Feb 2009 20:18:40 -0500
X-CTCH-RefID: str=0001.0A010206.49A9E276.003C,ss=2,fgs=0
Message-ID: <49A9E2DA.30801@charter.net>
Date: Sat, 28 Feb 2009 17:20:26 -0800
User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; en-US; rv:1.8.1.19) Gecko/20081212 SeaMonkey/1.1.14 (PmW)
MIME-Version: 1.0
To: OS/2 Wireless Users Mailing List <os2-wireless_users@2rosenthals.com>
Subject: Re: [OS2Wireless] Router security
References: <list-2327837@2rosenthals.com>
In-Reply-To: <list-2327837@2rosenthals.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Spam-Score: 1.9 (+)
X-Spam-Report: 	0.5 DNS_FROM_RFC_ABUSE     RBL: Envelope sender in abuse.rfc-ignorant.org
	 1.4 DNS_FROM_RFC_POST      RBL: Envelope sender in
	                            postmaster.rfc-ignorant.org

Lewis G Rosenthal wrote:

> WEP64 (which is really 48-bit encryption) is so weak that it is not even 
> worth using. An easier approach would be to use MAC address filtering, 
> as this will keep innocent wanderers off of your WLAN. The RC-4 
> encryption is weak enough, and at 48 bits, can be picked in seconds. 
> Don't even bother.

Will you please elaborate on the "innocent wanderers"?  I have a had
WRT54G for at least a couple years.  It has been set to WEP64 for no
good reason, might have been default.  Is it possible for someone to be
able to access the WEB thru someone else's router but not access their
computers?  That seems to be the case here.  My wife was issued an XP
pro laptop.  She claims she brought it home, opened IE, and it connected
to the WEB.  Is this reasonable?

I just changed the router to WPA2 TKIP+AES, and she can no longer connect.

I just got a replacement XP pro laptop.  At first it did not connect.  I
copied the WPA key from the router and it connected to the WEB.  Does
this all seem proper?

I have only setup W2K and XP home before, and pro seems to be different
enough that I have not been able to get to see the workgroup computers.

Before I commit major disruption to my new laptop by installing a couple
more OSs I would like to see what a stock Win box can do with my LAN.

Ray