[VOIPSEC] VOIP for free??
Robert Moskowitz
rgm at icsalabs.com
Tue Apr 12 09:28:02 CDT 2005
At 02:27 PM 4/11/2005, Diana Cionoiu wrote:
>Hello Robert,
>
>Wireless and VoIP is anyway a bad idea.
But it is an expected service. On public wireless footprints (Oakland
County here in Michigan is developing theirs, and I expect to be dragged
into it).
>Wireless with no security is another bad idea.
Even when we do good MACsec, there is still the layer 2.5 attack: ARP
poisions. We have done this on 802.11i protected networks. We have done
this with switches running 802.1X. Those are all layer 2 items.
>Any technology can be used wrong, but that's what people should decide.
99% of the users don't know how do decide and even that they are
deciding. We decide for them. (yeah, I'm good at throwing around WEG
numbers).
>Just think about ActiveX, and still a lot of people are using Internet
>Explorer.
Hey, you need Windows update, you need ActiveX. Wonderful.
Robert Moskowitz
Senior Technical Director
ICSA Labs, a division of Cybertrust, Inc.
W: 248-968-9809
F: 248-968-2824
E: rgm at icsalabs.com
There's no limit to what can be accomplished
if it doesn't matter who gets the credit
More information about the Voipsec
mailing list