The Notebook Review forums were hosted by TechTarget, who shut down them down on January 31, 2022. This static read-only archive was pulled by NBR forum users between January 20 and January 31, 2022, in an effort to make sure that the valuable technical information that had been posted on the forums is preserved. For current discussions, many NBR forum users moved over to NotebookTalk.net after the shutdown.
Problems? See this thread at archive.org.

    WPA2 Keys

    Discussion in 'Networking and Wireless' started by usapatriot, Jan 29, 2012.

  1. usapatriot

    usapatriot Notebook Nobel Laureate

    Reputations:
    3,266
    Messages:
    7,360
    Likes Received:
    14
    Trophy Points:
    206
    Hey everyone, I have a quick question and survey regarding what length keys you guys use on your wireless networks. I'm currently using a simple 8-character key on my WPA-2 secured network. Reason being I have a lot of guests over who connect to our WiFi and especially mobile devices. There is no easy way to input a complete 63-character key into a phone. However, I'm concerned as to how secure this is? Would this short key pose a significant security risk? If so, what are ways I could go about using a more secure key on the network without the hassle of having to manually enter long keys into mobile devices?
     
    usapatriot, Jan 29, 2012
    #1
  2. downloads

    downloads No, Dee Dee, no! Super Moderator

    Reputations:
    7,729
    Messages:
    8,722
    Likes Received:
    2,230
    Trophy Points:
    331
    Short keys are significantly easier to crack so it's not a good solution.
    WPS where you need to enter PIN (8 chars) is compromised (see sticky)- normally that would be your easy way.

    I keep a txt file on a thumb drive in case I need it. It's easy enough to copy on any computer. It's worse with smart-phones- some of them for some reason do not allow copying-in the password (mine included).

    Another solution is to keep a guest network with wireless isolation on. If it gets compromised whoever does that can access the Internet but not your NAS, shared drives etc.

    Last but not least. You can use a sentence that doesn't make much sense with no spaces between words- like " V8sare betterthan carrotssince 1942because marrysays so"
    It's easy to type in yet really hard to crack.
     
    downloads, Jan 29, 2012
    #2
  3. tijo

    tijo Sacred Blame

    Reputations:
    7,588
    Messages:
    10,023
    Likes Received:
    1,077
    Trophy Points:
    581
    What downloads said, a sentence contains a lot of characters so it is hard to crack, but easy to remember.
     
    tijo, Jan 29, 2012
    #3
  4. hakira

    hakira <3 xkcd

    Reputations:
    957
    Messages:
    1,286
    Likes Received:
    0
    Trophy Points:
    55
    If you have a lot of people that want to connect with their phones, you could also just set up a QR code with the wifi info embedded and have them scan it. There's various apps and websites that let you do this
     
    hakira, Jan 29, 2012
    #4
  5. blue68f100

    blue68f100 Notebook Virtuoso

    Reputations:
    1,020
    Messages:
    3,439
    Likes Received:
    0
    Trophy Points:
    105
    Some of the newer Dual band routers and maybe single band have a guest network you can setup with lower security. And have it isolated from your main network. You could turn this off and on as required. Or take an old wireless router and turn it into a AP for guest.

    The last network I setup I use the strongest possible. > 48 all printable char. Which is next to impossible to enter on a phone. I do not recommend any pass phrases < 20 chr. And nothing that is in dictionaries. So miss spell words on purpose. My boss always told me if someone new it they could never spell it right to gain access. Most of the time spell checkers don't even get close.

    I heard of some teenager for fun would have contest to see who could crack a WEP network the fastest.
     
    blue68f100, Feb 1, 2012
    #5