Re: [B.A.T.M.A.N.] AHdemo mode

[GUSL <gfjl@ubbi.com>]

El Wednesday 09 April 2008 21:52:50 Marek Lindner escribió:
> Hi,
>
> > I found this post : http://robin.forumup.it/about107-robin.html
> >
> > I like to hear opinions about this possible security issue.
>
> why do the security experts always find the same bug ?  :D
>
> As far as I know the WPA encryption is not supposed to secure _all_ your
> traffic. It is supposed to encrypt the traffic between your notebook and
> your accesspoint.
>
> For meshing you need ad-hoc mode and in this mode you don't have a single
> authority to authenticate against. How should "mesh encryption" work - all
> nodes are "equal" ?
>
> If you want to secure your network traffic, please use the higher security
> layers as SSL or similar technologies. They do _proper_ end to end
> encryption. Even if the WPA would work your traffic is not secure as the
> internet gateway and all stations after it still could sniff your traffic.
>
> I would be very interested to hear from "williamruckman" what kind of
> packets he would inject to "capture all traffic or perform a
> man-in-the-middle attack". I suggest reading the "security considerations"
> section of this document first:
> https://www.open-mesh.net/batman/doc/draft-openmesh-b-a-t-m-a-n-00.txt
>
> Regards,
> Marek
> _______________________________________________
> B.A.T.M.A.N mailing list
> B.A.T.M.A.N@open-mesh.net
> https://list.open-mesh.net/mm/listinfo/b.a.t.m.a.n

Thanks for your reply.
I hope I am not being annoying.

Obviously there are too many "security experts" out there.... :P

Regards,
GUSL