From: Tim (tim-pentest@sentinelchicken.org)
Date: Tue Jan 01 2008 - 10:16:17 EST
Hello Josh,
> Since the PSK is
> shared among all stations on the wireless network, every user with a
> workstation that has the PSK could conceivably know the PSK and share it
> with anyone else. Further, a stolen device could disclose the PSK for
> the network, compromising all later data exchanges.
And all earlier data exchanged, yes? My memory of the protocol is
fuzzy, but WPA-PSK doesn't provide perfect forward secrecy, does it?
thanks,
tim
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:18 EDT