Ron, The latest version is at http://www.iss.net/wireless. It's at version 1.5. It has also been posted on some of the security Usenet newsgroups if you want an ASCII version. Here's recently added info to the FAQ: Version 1.5 Added all of Netgear's default WEP keys. Added Pringles Can and Waveguide Antenna Info. Added hybrid threats, next-gen virus/worm spread by wireless. Added Parasitic Grids. Free anonymous access for intruders. Added SNMP vulnerabilities. Added 802.1X Security, and its flaws. Added MiniStumbler, Wireless Scanner, BlackICE PC Protection. Added info on Broadcast pings. Version 1.3 Added Section 1.7 regarding internal antenna. Added link to Cigital regarding ArpSpoofing. Cigital put together a nice diagram of the attack. Added Default WEP key for NetGear AP. Added link to BSD version of AirSnort. -----Original Message----- From: R. DuFresne [mailto:dufresneat_private] Sent: Sunday, April 28, 2002 1:52 PM To: Klaus, Chris (ISSAtlanta) Cc: 'pen-testat_private' Subject: Re: WLAN Security FAQ Chris, Where is this FAQ maintained online? Thanks, Ron DuFresne -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ admin & senior security consultant: sysinfo.com http://sysinfo.com "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart testing, only testing, and damn good at it too! ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Sun May 05 2002 - 09:06:39 PDT