WEP+SLL just as safe as WPA?

Just wondering as to the security aspect of using WEP vs WPA when using
SSL. I realize that WPA is much more secure and WEP can be easily cracked,
if enough packets are captured. How about stuff like SSL over a WEP
wireless link? How safe is that? If I were using just regular wired
access, then that (SSL) would be the only encryption used but then again,
wireless is much easier to tap in to than your neighbour's wired access. I
am mostly concerned with stuff like on-line banking and making purchases
on-line with my credit card, both on which I would only do on an SSL
(https) connection anyway. Am I ok using SSL over WEP or do I need to be
concerned and planning an upgrade to WPA? Thanks.

WPA only encrypts the traffic between your wireless card and the access
point. It's very good at doing that and keeping other people out of your
access point. It's also very important if you run a LAN. SSL encrypts
traffic between your computer and the other computer, which is important
since you have no idea where your packets might go on the internet and who
might be listening (or who might be inserting data). If SSL is being used,
WPA (or even WEP) would provide little additional benefit. However, WPA
should still be used to prevent people in your area from listening in on
your non-SSL secured communications, to prevent people in your area from
using your access point, and to prevent people in your area from accessing
your LAN.

-Yves

"Press Ctrl-Alt-Del Now" <(E-Mail Removed)> wrote in message
news:Xns94A25EC02E10A3fingermssolutionreb@140.99.9 9.130...
> Just wondering as to the security aspect of using WEP vs WPA when using
> SSL. I realize that WPA is much more secure and WEP can be easily
cracked,
> if enough packets are captured. How about stuff like SSL over a WEP
> wireless link? How safe is that? If I were using just regular wired
> access, then that (SSL) would be the only encryption used but then again,
> wireless is much easier to tap in to than your neighbour's wired access.
I
> am mostly concerned with stuff like on-line banking and making purchases
> on-line with my credit card, both on which I would only do on an SSL
> (https) connection anyway. Am I ok using SSL over WEP or do I need to be
> concerned and planning an upgrade to WPA? Thanks.

On Thu, 04 Mar 2004 17:18:51 +0000, Press Ctrl-Alt-Del Now wrote:

> Just wondering as to the security aspect of using WEP vs WPA when using
> SSL. I realize that WPA is much more secure and WEP can be easily cracked,
> if enough packets are captured. How about stuff like SSL over a WEP
> wireless link? How safe is that?

SSL is enough on its own, provided you use a reasonable key length (which
just about every implementation released in the last few years does).

Mark

Just be aware, as someone else pointed out, that SSL is
endpoint-to-endpoint. Without WEP or WPA, your router's AP is wide open.
Unless your ISP itself requires SSL for all net transactions, anyone else
can connect to the router and use your ISP. The only thing SSL protects is
the privacy of your own transactions.

"Mark Dixon" <(E-Mail Removed)> wrote in message
news(E-Mail Removed)...
> On Thu, 04 Mar 2004 17:18:51 +0000, Press Ctrl-Alt-Del Now wrote:
>
> > Just wondering as to the security aspect of using WEP vs WPA when using
> > SSL. I realize that WPA is much more secure and WEP can be easily
cracked,
> > if enough packets are captured. How about stuff like SSL over a WEP
> > wireless link? How safe is that?
>
> SSL is enough on its own, provided you use a reasonable key length (which
> just about every implementation released in the last few years does).
>
> Mark