asleap

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

PPTP VPN authentication protocol proven very susceptible to attack

Later today, Joshua Wright will release an upgraded version of his ultra-high speed password cracking tool called ASLEAP . For those of you already familiar with ASLEAP, you might be wondering what this has to do with Microsoft's PPTP VPN protocol since ASLEAP is a LEAP authentication dictionary attack tool....

Tags: PPTP, password, ASLEAP

Blog posts 2004-12-17

Additional Resources

Why VPN can't replace Wi-Fi security

Every time the subject of wireless LAN security comes up, people ask me about VPN as a solution for securing Wi-Fi (Wi-Fi is the common marketing name for 802.11 wireless LANs). Ive always told people that VPN security shouldnt be a substitute for good Wi-Fi security and I even...

Tags: Wireless LANs, Wireless security, VPNs, Network security, WIRELESS, Wi-Fi, VPN, Wi-Fi security, WPA, WEP

Blog posts 2007-05-12

How long does a WPA key need to be?

How long does a WPA key need to be?Incorrect CalculationIt looks like you forgot to divide by 60 again when converting minutes to hours. You will want to update your article.Simple mistake - I did it a lot in Electromagnetic Theory... just ask my prof!-JordanCould this be overly optimistic?A few...

Tags: Network security, Firewalls, Wi-Fi, WIRELESS, SECURITY, Network technology, NETWORKING, case letter, WPA, attacker

Discussion threads 2005-11-11

Is Oracle in denial about security?

With more than 100 security vulnerabilities plaguing Oracle within the last year and potentially hundreds more yet to be patched, a new report on Oracle's weak authentication scheme by Joshua Wright deputy director of training at the SANS institute and Carlos Cid couldn't have come at a worse time. ...

Tags: Oracle Corp.

Blog posts 2005-10-31

PPTP VPN authentication protocol proven very susceptible to attack

PPTP VPN authentication protocol proven very susceptible to attackThis is a frightening blog entryI hope that the right people read it.Stephenlong time has gone but have people really get thisalthough such a long time has passed since the vulnerabilities of pptp in combination with ms-chapv2 have been revealed, there...

Tags: VPNs, Network security, SECURITY, TELECOMMUNICATIONS, authentication, vpn server, PPTP, VPN, VPN client, ISAKMP, attacker

Discussion threads 2005-01-11

New generation of hacking tools puts many more Wireless LANs at risk

This week, Michael Ossmann of SecurityFocus released an alarming article on the recent advancements in wireless LAN encryption cracking that put manyWLAN networks once thought to be secure at risk. Even though the WPA standard brought us TKIP encryption in 2003 and the 802.11i standard brought us AES encryption this...

Tags: WEP

Blog posts 2004-12-16

WPA PSK Cracking, a case for strong authentication

Last week, you may have read the headline "WPA Cracked!" or something to that effect. Just to clear things up now, it is not the overall standard that has been "cracked" but the simpler implementation of WPA called WPA PSK (Pre-Shared Keys). This really wasn't a surprise to the security...

Tags: WPA, TinyPEAP

Blog posts 2004-11-12