January 2006


Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
"J. Greg Mackinnon" <[log in to unmask]>
Reply To:
Technology Discussion at UVM <[log in to unmask]>
Fri, 20 Jan 2006 10:41:12 -0500
text/plain (36 lines)
That is not a vulnerability that I think anyone needs to waste time 
worrying about per-se.  In order to exploit it, the hacker would need to 
be in an area where they knew that their potential victim's wireless 
network connection would fail.  At that time, the hacker would then have 
succeeded in putting himself on the same wireless network as their 
intended victim.  In other words, it would be the same situation that 
all campus LAN users are in every time they turn on their computers: 
they would be connected to a network with other potentially malicious users.

Being connected to a network is dangerous.  We need to do a better job 
of helping our clients protect their computers when using a network.  
However, this "vulnerability" really presents no threat worse than using 
the Internet to begin with.

-Greg Mackinnon

Stefanie Ploof wrote:
> Microsoft has acknowledged a wi-fi security flaw in their operating
> system, but will not offer a patch until 2007 when Windows XP SP3 is
> released:
> If you follow the chain of ZDNets you'll see that Vista is taking
> priority over XP SP3, hence the delay.
> ----
> Stefanie Ploof
> CIT Client Services
> CALS Information Technology Office
> University of Vermont, Burlington