<div dir="ltr"><div class="gmail_default" style="font-family:trebuchet ms,sans-serif">this really is about all that's left in our current wifi protocols now. <br></div></div><div class="gmail_extra"><br><div class="gmail_quote">On Sun, Dec 10, 2017 at 10:57 PM, Ed <span dir="ltr"><<a href="mailto:plug@0x1b.com" target="_blank">plug@0x1b.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">If you want security and Wifi, do the security outside the context of<br>
Wifi - like, require all Wifi traffic to be done through a vpn.<br>
<span class=""><br>
On Sun, Dec 10, 2017 at 4:28 PM, Carruth, Rusty<br>
<<a href="mailto:Rusty.Carruth@smartm.com">Rusty.Carruth@smartm.com</a>> wrote:<br>
><br>
> ONLY 32? Aren’t you allowed 128?<br>
><br>
><br>
><br>
> Yeah, for the longest time mine was 128 chars long. VERY nasty when entering new devices… My family finally forced me to make it a little shorter! ;-)<br>
><br>
><br>
><br>
><br>
><br>
</span><span class="">> Rusty Carruth | Customer Support | <a href="mailto:rusty.carruth@smarth.com">rusty.carruth@smarth.com</a> | <a href="http://www.smarth.com" rel="noreferrer" target="_blank">http://www.smarth.com</a><br>
><br>
><br>
><br>
</span>> See the new M4<br>
<div class="HOEnZb"><div class="h5">><br>
><br>
><br>
> See us on Storage Search <a href="http://www.storagesearch.com/smart2.html" rel="noreferrer" target="_blank">http://www.storagesearch.com/<wbr>smart2.html</a><br>
><br>
><br>
><br>
> <a href="tel:510-624-5391" value="+15106245391">510-624-5391</a> | Fax: <a href="tel:480-926-5579" value="+14809265579">480-926-5579</a> | 1325 N. Fiesta Blvd. Suite 101 Gilbert, Az. 85233<br>
><br>
><br>
><br>
> This email message (and any attachments) is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.<br>
><br>
><br>
><br>
> From: PLUG-discuss [mailto:<a href="mailto:plug-discuss-bounces@lists.phxlinux.org">plug-discuss-bounces@<wbr>lists.phxlinux.org</a>] On Behalf Of <a href="mailto:techlists@phpcoderusa.com">techlists@phpcoderusa.com</a><br>
> Sent: Saturday, December 09, 2017 1:02 PM<br>
> To: Main PLUG discussion list<br>
> Subject: Re: Hardening WIFI<br>
><br>
><br>
><br>
><br>
><br>
> Appreciate your help and advice!!<br>
><br>
><br>
><br>
><br>
><br>
> On 2017-11-23 15:52, Michael Butash wrote:<br>
><br>
> Ensure you're only using wpa2-aes (no tkip, or mix wpa1-2), and use a very long psk string. Ensure your clients aren't vulnerable to the blueborne and other wifi ota exploits. Not much else you can do really unless you want to run a radius and/or cert pki in-house to do eap-tls, or peap. You can crack against wpa2, but unless using an easy string, it's not easy or assured they will figure out your string.<br>
><br>
><br>
><br>
> I use a 32char random string, special characters, really annoying when adding new devices, but I don't worry about someone cracking it.<br>
><br>
><br>
><br>
> -mb<br>
><br>
><br>
><br>
><br>
><br>
> On Thu, Nov 23, 2017 at 2:58 PM, <<a href="mailto:techlists@phpcoderusa.com">techlists@phpcoderusa.com</a>> wrote:<br>
><br>
><br>
><br>
> Hi,<br>
><br>
> I would like to "Harden" my WIFI and am not sure where to start. I seem to recall past discussions on replacing the standard equipment provided by our ISP.<br>
><br>
> I would like to make it very difficult to hack my WIFI and I would like a firewall. And I would like this to be "Plug and Play" as much as is possible. In other words I would like to stay away from installing a Linux firewall on an extra PC and then having to maintain it.<br>
><br>
> Please feel free to let me know if my expectations are not valid.<br>
><br>
> Thanks in advance!!<br>
><br>
> Keith<br>
><br>
><br>
><br>
><br>
> ------------------------------<wbr>---------------------<br>
> PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.phxlinux.org">PLUG-discuss@lists.phxlinux.<wbr>org</a><br>
> To subscribe, unsubscribe, or to change your mail settings:<br>
> <a href="http://lists.phxlinux.org/mailman/listinfo/plug-discuss" rel="noreferrer" target="_blank">http://lists.phxlinux.org/<wbr>mailman/listinfo/plug-discuss</a><br>
><br>
><br>
><br>
> ------------------------------<wbr>---------------------<br>
> PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.phxlinux.org">PLUG-discuss@lists.phxlinux.<wbr>org</a><br>
> To subscribe, unsubscribe, or to change your mail settings:<br>
> <a href="http://lists.phxlinux.org/mailman/listinfo/plug-discuss" rel="noreferrer" target="_blank">http://lists.phxlinux.org/<wbr>mailman/listinfo/plug-discuss</a><br>
><br>
><br>
> ------------------------------<wbr>---------------------<br>
> PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.phxlinux.org">PLUG-discuss@lists.phxlinux.<wbr>org</a><br>
> To subscribe, unsubscribe, or to change your mail settings:<br>
> <a href="http://lists.phxlinux.org/mailman/listinfo/plug-discuss" rel="noreferrer" target="_blank">http://lists.phxlinux.org/<wbr>mailman/listinfo/plug-discuss</a><br>
------------------------------<wbr>---------------------<br>
PLUG-discuss mailing list - <a href="mailto:PLUG-discuss@lists.phxlinux.org">PLUG-discuss@lists.phxlinux.<wbr>org</a><br>
To subscribe, unsubscribe, or to change your mail settings:<br>
<a href="http://lists.phxlinux.org/mailman/listinfo/plug-discuss" rel="noreferrer" target="_blank">http://lists.phxlinux.org/<wbr>mailman/listinfo/plug-discuss</a></div></div></blockquote></div><br><br clear="all"><br>-- <br><div class="gmail_signature" data-smartmail="gmail_signature">A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button.<br><br>Stephen<br><br></div>
</div>