thinkpads.com Support Community Forum Index Bill Morrow's thinkpads.com Open Forum - The Original Thinkpad Support Forum
Follow ThinkpadsForum on Twitter
 Support this forum, shop at newmodeus.com
 Support the forum, shop at newmodeus.com
System backups occur about 7:00 am EDT and last about 10 minutes. This will slow performance. RSS feeds have been added to the forum.
Donate if you wish to:
bill at thinkpads dot com

It is currently Wed Apr 23, 2014 12:00 pm

All times are UTC - 5 hours




Post new topic Reply to topic  [ 16 posts ] 
Author Message
 Post subject: WEP versus WPA security
PostPosted: Wed Aug 18, 2010 5:45 pm 
Offline
Sophomore Member

Joined: Fri Sep 29, 2006 6:49 am
Posts: 189
Location: new york (duhh)
I have a T30 and have been using a WEP key for security. I have learned that this does not afford much security and that WPA is better. I tried unsuccessfully to make this switch with my Linux Network Security software. Does anyone have any suggestions for me? Is the T30 in fact not capable of using this protocol? How can I determine if my hardware will support it? Thanks.

_________________

T61: 6460-08U
T30: 2366-96U
T30: 2367-RU7
T30: 2366-JCU
T30: 2366-QU5
T23: 2647-8U8


Top
 Profile  
 
PostPosted: Wed Aug 18, 2010 6:21 pm 
Offline
Moderator Emeritus
Moderator Emeritus

Joined: Thu Apr 12, 2007 8:23 am
Posts: 13228
Location: Upstate New York
What WiFI card is in the T30? Device manager should tell you. If it's an old 802.11b card chances are it doesn't support WPA. You can install an Intel Pro Wireless 2200bg or 2915bg and it will support WPA.


Top
 Profile  
 
PostPosted: Wed Aug 18, 2010 6:34 pm 
Offline
Junior Member
Junior Member

Joined: Mon Apr 24, 2006 12:06 pm
Posts: 343
Location: USA
I got WPA working on my T30. Access Connections has a provision to permit "Windows to Configure Wireless Network". Someone else had suggested that you need WINXP SP3 installed to make that work. I'm not sure how it all came together, and it took a lot of attempts to get it to work, but I was forced to do it as all the other machines on the network are WPA or WPA2.

_________________
T30 2366-85U
T43 2668-4DU
R60e 0657-3ZU
T61 7663-2EU
T420 4178-6VU
E420 1141-BTU
G570 4334-4QU
Acer Aspire 1430
Gateway Solo9300


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 4:01 am 
Offline
Sophomore Member

Joined: Sun Aug 20, 2006 10:49 am
Posts: 127
Location: Berlin, Germany
You need a WiFi card with drivers that support WPA.

If you want to use WPA2 (highly recommended, as WPA security is slowly eroding) and have Windows XP without SP3 you need this hotfix.

_________________
IBM ThinkPad R61 | IBM ThinkPad X60 | IBM ThinkPad X32 | IBM ThinkPad T23


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 4:21 am 
Offline
Contributing Member
Contributing Member

Joined: Sun Apr 13, 2008 7:11 pm
Posts: 1418
Location: RTP, North Carolina
Food for thought:
On the street that I live on, there are about 40 houses. 10 of those houses use encryption of some type. The rest use wide open WAPs.

Having any type of encryption in this day and age, is probably enough of a determinate to accomplish what your after.
Dont sweat it.

Ron

_________________
I see in my son's eyes, each day, the wonders I have squandered fortunes to possess and have sought my entire lifetime to attain. jrr 09/2011

X30 x 2
X31 x 2
T30 (down to one, the rest donated)
Z61t (my NEW primary)
Z61m (wife's new daily driver)


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 8:53 am 
Offline
Senior ThinkPadder
Senior ThinkPadder

Joined: Wed May 20, 2009 9:54 am
Posts: 2342
Location: near RTP, NC
WEP takes about 2 minutes to compromise with modern, freely-available tools.

Don't use it.

WPA+AES (*not* WPA+TKIP) is reasonably safe from all but determined attackers.

Your best option is WPA2+AES, assuming you have (or can find) hardware that supports it.

_________________
Need help with Linux or FreeBSD? Catch me on IRC: I'm ThinkRob on FreeNode and EFnet.
Code:
Current laptop: X200s/X201 hybrid
Current workstation: none


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 9:20 am 
Offline
Sophomore Member

Joined: Fri Sep 29, 2006 6:49 am
Posts: 189
Location: new york (duhh)
ThinkRob wrote:
WEP takes about 2 minutes to compromise with modern, freely-available tools.

Don't use it.

WPA+AES (*not* WPA+TKIP) is reasonably safe from all but determined attackers.

Your best option is WPA2+AES, assuming you have (or can find) hardware that supports it.

Thanks for your help Rob.
Here's my hardware specs (from lspci): Ethernet controller: Intel Corporation 82801CAM (ICH3) PRO/100 VE (LOM) Ethernet Controller (rev 42)
Is there any way can I tell if this is compatible with the WPA2 protocol?

_________________

T61: 6460-08U
T30: 2366-96U
T30: 2367-RU7
T30: 2366-JCU
T30: 2366-QU5
T23: 2647-8U8


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 10:15 am 
Offline
Moderator Emeritus
Moderator Emeritus

Joined: Thu Apr 12, 2007 8:23 am
Posts: 13228
Location: Upstate New York
Intel PRO/100 VE Ethernet - Does not support WPA


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 10:23 am 
Offline
Senior ThinkPadder
Senior ThinkPadder

Joined: Sat Oct 29, 2005 6:20 am
Posts: 5319
Location: Israel
That's not even a wireless card. It's a wired network card. :?

_________________
Current: X220 4291-4BG, T410 2537-R46, T60 1952-F76, T60 2007-QPG, T42 2373-F7G, X61 7673-V2V
Collectibles: X32 w/ IPS Screen, A31p w/ Ultrabay Numpad
Past: Z61t 9440-A23, T60 2623-D3U, X32 2884-M5U


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 11:18 am 
Offline
Senior ThinkPadder
Senior ThinkPadder

Joined: Wed May 20, 2009 9:54 am
Posts: 2342
Location: near RTP, NC
newyorkpaulie wrote:
Here's my hardware specs (from lspci): Ethernet controller: Intel Corporation 82801CAM (ICH3) PRO/100 VE (LOM) Ethernet Controller (rev 42)


It does not.

Although from what I can tell, this is due to the fact that it's not a wireless network card, and is instead a wired NIC. ;)

_________________
Need help with Linux or FreeBSD? Catch me on IRC: I'm ThinkRob on FreeNode and EFnet.
Code:
Current laptop: X200s/X201 hybrid
Current workstation: none


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 2:59 pm 
Offline
ThinkPadder
ThinkPadder

Joined: Sat Apr 22, 2006 4:26 pm
Posts: 1498
Location: TX, USA & Bombay, India
ThinkRob wrote:
WEP takes about 2 minutes to compromise with modern, freely-available tools.

Don't use it.

WPA+AES (*not* WPA+TKIP) is reasonably safe from all but determined attackers.

Your best option is WPA2+AES, assuming you have (or can find) hardware that supports it.


I agree. I was reading WiFi WEP hack research papers from SANS back in 2003. Which recent toolkits are you referring to ThinkRob. I might want to do a Self-test on my secondary "old" network which is 802.11 b ONLY!... running WEP for an OLD laptop with a PCMCIA card.

_________________
T61 8892-02U: 14.1"SXGA+/2.2C2D/4G/XP|Adv Mini Dock|30" Gateway XHD3000 WQXGA via Dual-link DVI
X61T 7767-96U: 12.1"SXGA+/1.6C2D/3G/Vista|Ultrabase
W510 4319-2PU: 15.6"FHD/i7-720QM/4G/Win7Pro64 (for dad)
T43 1875-DLU: 14.1"XGA/1.7PM-740/1G/XP (Old)


Top
 Profile  
 
PostPosted: Thu Aug 19, 2010 3:10 pm 
Offline
Junior Member
Junior Member

Joined: Tue Jun 23, 2009 9:37 pm
Posts: 446
Location: Youngstown, OH
WEP is fine if you are just using an old laptop to browse the web or IRC. I turn on the wireless on my router when I want to IRC with an old laptop in the back yard under the shade trees, and then off when I am in the house (everything is hard wired to a huge switch). If you are doing banking online, ebay or paypal you should be using a direct line and not wireless.

_________________
Collection: 310ED, 350C, 360C, 365C, 365XD, 380D, 380XD, 380Z, 390E, 390X, 560X, 600, 600E, 701C, 750CS, 755C, 755CD, 760C, 760CD, 760ED, 760EL, 760XD, 760XL, 765L, 765D, 770, 770E, 770Z, T21, T22, T23, T30, A20P, A21P, A22M, A30, A31, A31P, T40, T42, T43P, T60


Top
 Profile  
 
PostPosted: Sat Aug 21, 2010 3:49 am 
Offline

Joined: Sat Oct 14, 2006 3:06 pm
Posts: 33
Location: Central Michigan
Quote:
If you are doing banking online, ebay or paypal you should be using a direct line and not wireless.


If your bank is not communicating with your browser via ssl, you ought to dump that bank. What makes you think the worst baddies are huddled within 100m of your wireless router? Here in the UK the big ISPs actively snoop on their clients' online activities and market it as a service (I am sure they do this in the US, too). As a result, I use ssh to set-up an encrypted tunnel between my home network and a trusted server. This is not as complete a solution as end-to-end encryption, but it does mean that prying eyes in my neighbourhood up to my ISP see nothing useful, i.e. it is as safe, if not safer than, using a wired connection and my ISP's servers. And it also means that I can use open networks at cafes, work, etc. without fiddling or worrying.

Personally, I run WPA2 and access controls on my wireless router but this is for the same reason I lock my door when I leave my flat: to persuade other basically honest people not to help themselves to my stuff when I am not around.

Incidentally, FSF has developed a Firefox plugin that allows you to interact with several large search services over an encrypted connection.

_________________
t43 320gb ultra-bay sata drive, 2gb ram
retired:
t22-2647-lcu - 20gb hdd/384mb ram/mint 8 (linux)
t23-2467 - 120gb hdd/2x256mb ram/wg511t pcmcia wifi card/debian lenny


Top
 Profile  
 
PostPosted: Sat Aug 21, 2010 5:02 pm 
Offline
Senior ThinkPadder
Senior ThinkPadder

Joined: Wed May 20, 2009 9:54 am
Posts: 2342
Location: near RTP, NC
Unknown_K wrote:
WEP is fine if you are just using an old laptop to browse the web or IRC.


Things like cache poisoning, update mechanism hijacking, etc. would make me hesitant to *ever* use WEP.

Without regurgitating the talk by the kismet authors at this year's HOPE, suffice it to say connecting to an insecure network and performing even simple tasks like browsing or IRC can result in a compromise with lasting effects.

Quote:
I was reading WiFi WEP hack research papers from SANS back in 2003. Which recent toolkits are you referring to ThinkRob.


Nothing fancy, just the usual suspects: kismet, aircrack, metasploit, etc.

_________________
Need help with Linux or FreeBSD? Catch me on IRC: I'm ThinkRob on FreeNode and EFnet.
Code:
Current laptop: X200s/X201 hybrid
Current workstation: none


Top
 Profile  
 
PostPosted: Thu Oct 28, 2010 4:36 pm 
Offline
Junior Member
Junior Member

Joined: Mon Feb 28, 2005 4:13 pm
Posts: 252
I can see this thread is two months old, but for what it's worth, I have a T30 with the "High Rate Wireless LAN Mini-PCI Adapter with Modem II". This is one of the older adapters of it's type, I think, and for years I thought it was only capable of WEP, not WPA. I was running Windows 2000. Then I upgraded to XP SP3 and the latest drivers available from Lenovo. It will now do WPA, but not WPA2/AES with my router. Probably only TKIP, still better than WEP.


Top
 Profile  
 
PostPosted: Thu Jan 20, 2011 11:19 am 
Offline

Joined: Sun Mar 16, 2008 4:52 am
Posts: 46
Location: Schaan, Liechtenstein
Here is some T30 encryption info»
viewtopic.php?f=28&t=60575


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 16 posts ] 

All times are UTC - 5 hours


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group