1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

1.11, wpa2 and Vista problems

Discussion in 'Tomato Firmware' started by jsmiddleton4, Nov 28, 2007.

  1. jsmiddleton4

    jsmiddleton4 Network Guru Member

    Have Buffalo HP 54. Use several different laptops, one with Vista. Vista laptop will "see" router but not get IP address when using WPA2 Personal AES/TKIP. Works fine when using WPA or no security. When set to WPA2, I use a XP laptop and watch device listing and the Vista based laptop MAC address shows up, tries to get IP, router won't cough one up.

    Laptop has been updated, etc., to all current drivers/Vista updates.

    Any one else?

    Jim
     
  2. jsmiddleton4

    jsmiddleton4 Network Guru Member

    I turned off "reduce packet size" in dhcp settings and that seemed to fix it. Went back to wpa2 and the Vista laptop is connecting.
     
  3. Macskeeball

    Macskeeball LI Guru Member

    WPA itself has not been cracked. There is software out there that can perform an offline brute force attack (read, automated guess and check) against the PSK (Personal) form, but that is also the case for WPA2-PSK. The solution is to use strong passwords (both very long and very random), such as those offered securely on Steve Gibson's site: ( https://grc.com/passwords ), and let your devices worry about remembering them.

    Since neither WPA nor WPA2 have been cracked, I suggest going with the least computationally intensive form if possible, and that would be WPA (version one) PSK with TKIP. This would save laptop battery life and system resources, without lowering your defenses.
     
  4. roadkill

    roadkill Super Moderator Staff Member Member

  5. kripz

    kripz LI Guru Member

    I think he means the WPA/WPA2 algorithms, the link you provided is cracking the password.

    He also mentioned a strong password, the video you provided had the password Isabelle, a common name if using dictionary brute forcing and only 8 characters long if brute forcing.
     
  6. Macskeeball

    Macskeeball LI Guru Member

    Exactly. I mentioned such brute force attacks in my post (quoted below). Weak passwords are easy to crack. That's the fault of the user, not a flaw in the encryption itself. This is different from the situation with the very badly broken WEP.

    Also, it helps to have a custom SSID, as rainbow tables depend on common SSIDs being used.
     
  7. jsmiddleton4

    jsmiddleton4 Network Guru Member

    I always use a combination of letters and numbers. Its as safe as I need it to be. But what does any of that have to do with reduced packet size in dhcp settings and Vista not playing well together?
     
  8. Macskeeball

    Macskeeball LI Guru Member

    My posts were about WPA vs. WPA2 in general, and how the more computationally burdensome WPA2 is not yet needed, because the first WPA (which is more efficient) has not been broken. Whether you use WPA or use WPA2 is entirely up to you, but using WPA would save you battery life on your laptops without reducing security.

    The stuff about password strength was not my main point, but because there is so much misinformation out there about wireless security I had to put it in there. Some people mistakenly think that WPA itself has been cracked, and I was trying to shoot that down in advance. It's not WPA that has been cracked, just weak passwords; strong passwords stop that. Furthermore, WPA2 changes nothing about that.

    In short, use a strong password whether you go with WPA or WPA2, but keep in mind that neither has been broken and that WPA is more efficient (which saves laptop battery life). WPA PSK with TKIP is both lightweight and secure, so I recommend using that instead of WPA2 if possible.
     
  9. jsmiddleton4

    jsmiddleton4 Network Guru Member

    So just use wpa cause its good enough and uses less power for the laptop. Ok.
     
  10. Macskeeball

    Macskeeball LI Guru Member

    Exactly.
     

Share This Page