Recent Forum Posts
From categories:

Personally i found the wiki quiet difficult to use and get around due to the poor navigation facilities. It would be a great help if it had an help icon or some form of user guide available.This would make user's want to create a wiki.

When using the wiki myself for the first time i found it confusing and complicated to use so it put me off. However once i pondered and messed about with it, i started becoming familiar with its functions.

I think the wiki should be made easier to use especially for those who are not computer literate this way everyone has a chance to be able to create a wiki. The reason i say this is because like ourselfs computer literate students, we found it hard to use.

Mike, you bring up a good point about the use of Backtrack and its ability to crack WEP networks. However, my take on this is that if it were really that easy and convenient for people to simply make use of a Linux Distro to crack/bypass a network key, everyone would be doing it.

To address your point about scanning the area and finding the majority of networks to be unsecured. I'm afraid I'd have to disagree. With the amount of news/campaigning going on these days, promoting wireless security and educating users of the benefits of using a network key; there has been a sudden increase in the amount of networks showing up as 'secured'. Certainly so since the time I first got wireless until now.

Again, I'd have to disagree with your statement about someone 'building an array of 20 machines to spend a week cracking a personal wifi network'. That may have been the case 5 years ago, but not now. With the possibility to make use of Nvidia and ATI GPUs along with apps which carry out dictionary brute-force attacks, there comes an extremely effective WPA/WPA2 cracking solution.

Still not convinced? Well here's a statistic to maybe sway your mind. It has been tested and proven that a Tesla S1070 can crack 52400 passwords a second. You have to admit, that's pretty impressive.

My point was not that any average Joe will be attempting to hack his neighbours Wifi, but that it is becoming increasingly easier as more tools and methods become available, for someone with malicious intent to penetrate the networks we deem as being 'secure'.

Re: WPA Security breach by abid_dinabid_din, 24 Jan 2009 20:31

WPA2 is an interoperability testing certification from the Wi-Fi Alliance that was developed after approval of the first WPA specification. It is based on the Robust Security Network (RSN) mechanism, which provided support for all of the mechanisms available in WPA and more. Features included strong encryption and authentication support for both infrastructure and ad-hoc networks, whilst WPA was only limited to infrastructure networks. WPA2 also provides a reduced overhead in key derivation whilst exchanging information through a wireless LAN, and reducing overhead between access points while roaming. WPA2 replaced WPA’s protocol, TKIP (Temporal Key Integrity Protocol), with CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol). WPA2 certification became mandatory, by 2006, for all new equipment by Wi-Fi Alliance ensuring all modern hardware support both WPA and WPA2.

Re: WPA by AfifiAfifi, 22 Jan 2009 15:06

I agree with your view Steve, that wired networks fundamentally being more stable and secure in comparison to wireless networks. There are ways in which to ensure that you dont make it easy for the attackers by making sure your key/password is a lot of characters including upper/lower class characaters, symbols, digits. However, it's inevitable, I dont think wireless networks will ever really be 100% secure. As technology advances it's only a matter of time when certain people with dedication find ways to crack them. I mean it happens all the time, with operating systems and programs such as Adobe Photoshop and Dreamweaver. How many of us can say we use a legit paid for version? If people can crack operating systems like Windows Vista who knows they could crack WPA? Theres people out there who have the extreme knowledge to be able to hack into wireless networks even with WPA2. How many of them are out there, will be limited. So the chances of us being on edge or feeling vunerable to having someone stealing our internet I think is slim.
The vast majority of people are still using WEP as there wireless encryption, therefore as 'mdtreibe' said, these will initally be the users which will be targeted. With video tutorials (packet flooding as Abid mentioned) describing how to crack WEP it seems pointless for anyone to want to spend so much money in trying to crack a WPA2 key.

Re: WPA Security breach by zah1dzah1d, 30 Dec 2008 18:53

As much as there are possibilities of future ability to crack wireless encryption such as WPA and WPA2 you have to consider that for every person that uses an up to date security scheme on their wireless (ideally WPA2) if you scan the area you are just as likely to find several surrounding networks that are not encrypted at all or are still using WEP. Short of someone being specifically targeted, the likelihood that someone will make the effort to build an array of 20 machines to spend a week cracking a personal wifi network is ridiculous. Why not just spend 5 min in Backtack 3 and get access to the next persons WEP network. I understand the principle behind questioning the security of WPA but in a practical sense I do not see a reason to feel unsecured for quite some time. Are we ever really secure? Not if you consider that for every, say, 1000 programmers you have designing a new encryption scheme, you probably have an online community of well over 1 million working against you.

Re: WPA Security breach by mdtreibemdtreibe, 15 Dec 2008 16:03

Let me first start by saying, it is called a 'Wiki' not a 'Wikidot'. Wikidot just happens to be the name of this site, which allows users to create their very own Wiki's.

Ok now back to the original question. How easy (or hard, depending on which way you look at it) did I find 'Wikidot' to understand?

In my opinion, it's not to do with understanding; as I feel the problem lies with poorly designed UI and navigation more than anything. I can see how Wikidot.com could be daunting for the average computer user but I guess their target demographic would be slightly more advanced users anyway.

I did find that I had to do a bit of digging to find my way into the sections I was looking for and feel the admin panel could have been laid out in a simpler manner too. If I was to rate the difficulty level on a scale of 1-10, i'd probably say 5.

I have heard of ways to crack WPA keys via packet flooding (Daniela seems to have touched on this issue in her thread). This method could potentially be a lot more efficient than a brute force method too. There are articles which show how to do this that aren't very hard to find which is a bit worrying.

My point is, with evidence available which suggests that Wireless 'security' really isn't as secure as we are led to think, what can be done to further protect ourselves from intrusion to our networks? Will we ever really be 'secure'?

Re: WPA Security breach by abid_dinabid_din, 13 Dec 2008 19:17

For those who do not know WPA I will shortly describe what it means. WPA stands for Wi-Fi Protected Access and is a certification program to make wireless computer networks more secure. WPA follows the program WEP (Wired Equivalent Privacy) which was developed in the 1990s and had the same target but several weaknesses and that for soon after the development hackers broke its encryption key. But as mentioned also WPA is under threat. As I have read in an article two security researchers have developed a way to crack WPA. They have cracked the encryption key by discovering a way to trick a WPA router into sending them large amounts of data which makes cracking the key easier.

However there is already a new version called WPA2 which should be resistant against this danger but we will see for how long.

Read more about it
http://www.itworld.com/security/57285/once-thought-safe-wpa-wi-fi-encryption-cracked

WPA by Daniela PfeifferDaniela Pfeiffer, 09 Dec 2008 12:17

I have often maintained that wired networks are fundamentally more secure than Wireless, purely because anyone can intercept wireless broadcast so your only line of defense is the encryption key. WPA is without doubt a more secure way to go wireless but a recent article on Slashdot.com shows that even this is under threat. The high processing capacity of some graphics cards has made brute force attacks on WPA keys a real possibility. The bottom line as I see it is that WPA is not yet broken, but make sure you have longs keys and secure pass phrases

http://securityandthe.net/2008/10/12/russian-researchers-achieve-100-fold-increase-in-wpa2-cracking-speed/

WPA Security breach by ssmethurstssmethurst, 09 Dec 2008 00:25

I personally found Wikidot initially difficult to navigate via the Site manager and my site itself as I was unsure where I supposed to be going for different aspects of building the Wikidot. For example, I wanted to change the navigation format, which is set as Example Menu 1 as default. It took me a while to try work out how to change this, for help I resulted having to Google it. *I had to put nav:top after my Wikidot URL and press edit to change the navigation*
At first I didn't like Wikidot as I found it's not user friendly nor was the usability simple in the slightest but as I understood the main features the idea of having a Wikidot grew. Now having understood the feature and ways to building and maintaining a Wikidot I can say it's not so bad.
Back to the point of the thread though, I didnt find it easy to understand the Wikidot, it took time to get my head around it. I'd personally vote it 7/10 (Where 10 being extremely difficult and 1 being easy)
It'd be interesting to hear your views on your experience of Wikidot thus far?

Zahid

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License