Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
762
Views
5
Helpful
2
Replies

802.1x/PEAP/EAP-TTLS is Worse Than No Wireless Security

athan1234
Level 3
Level 3

‎05-25-2022 02:13 AM

Hi

These days... I was thinking if there was any way to desencryp the user and password tunnel eap.

I was looking at this article. I would like to know your opinions.

 

https://depthsecurity.com/blog/when-802-1x-peap-eap-ttls-is-worse-than-no-wireless-security

0 Helpful
2 Replies 2

Flavio Miranda
VIP
VIP

‎05-25-2022 02:28 AM - edited ‎05-25-2022 02:35 AM

Hi

 This is an endless discusion. This article was written in 2010, 12 year ago. 

 Every day some guy trying to look  smarter comes with some kind of "end of the world" theory but the Live move on anyway. 

 What can we say? We all know that all system is vulnerable somehow. We saw recently the Log4j vulnerability. Who knows how long it was there and how many others even worst must already been discovered and the industry not even dream they exist. 

 The question is, does this guy who wrote this article let his Wi-Fi network open? I dont think so.

  

 

thomas
Cisco Employee
Cisco Employee

‎05-30-2022 06:47 AM

What problem are you trying to solve?

If you are worried about username+password cracking, use certificates.

That is the article's recommendation in the end.

 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents