You are not entirely correct, it is possible to inject the traffic into the wep protected network.
besides, it is even possbile to portscan the machines on the wep protected networks.
e.g.
http://sourceforge.net/projects/wepwedgie/
1. Change default router login password - wise thing to do, but will not help if your windoze box is accessible through the wireless. 2. Enabled firewall - you forgot to mention that it has to be properly configured:) 3. Mac address filtering - takes seconds to bypass, by sniffing the air. 4.AES encryption with non-dictionary 15 charcter passphrase - are we talking about 802.11i ??? 6 Disabled SSID broadcast - NOT TRUE. the SSID is sniffable in the air 5. Updated to latest firmware & 9. Updated to latest wirelss network card drivers - what difference does it make if the flaw is in the standard itself. 7.Disabled remote router login - well, not always works on every router, might still be configurable through SNMP, what stops from owning your windoze through wireless and finally strict source routing might help.
Slashdot Mirror
Joshua has released a tool to "recover" leap passwords a year ago...
http://asleap.sourceforge.net/
You are not entirely correct, it is possible to inject the traffic into the wep protected network. besides, it is even possbile to portscan the machines on the wep protected networks. e.g. http://sourceforge.net/projects/wepwedgie/
1. Change default router login password - wise thing to do, but will not help if your windoze box is accessible through the wireless. :)
;)
2. Enabled firewall - you forgot to mention that it has to be properly configured
3. Mac address filtering - takes seconds to bypass, by sniffing the air.
4.AES encryption with non-dictionary 15 charcter passphrase - are we talking about 802.11i ???
6 Disabled SSID broadcast - NOT TRUE. the SSID is sniffable in the air
5. Updated to latest firmware & 9. Updated to latest wirelss network card drivers - what difference does it make if the flaw is in the standard itself.
7.Disabled remote router login - well, not always works on every router, might still be configurable through SNMP, what stops from owning your windoze through wireless and finally strict source routing might help.
apart from the above, it is a good attempt