this post was submitted on 27 Aug 2024
17 points (87.0% liked)

Cybersecurity

7904 readers
130 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago
MODERATORS
 

It seems i have the option but i have a vague memory of someone telling me not to bother with it unless i had a good reason

all 16 comments
sorted by: hot top controversial new old
[–] zurohki@aussie.zone 21 points 11 months ago (1 children)

If your devices all support WPA3, go for it. There's a good chance older things won't.

[–] BigFatNips@sh.itjust.works 6 points 11 months ago (2 children)

Most routers include backwards compatibility with WPA2 as a fallback, while newer devices will use WPA3. Should be relatively seamless

[–] vzq@lemmy.blahaj.zone 13 points 11 months ago (1 children)

The drawback is that evildoers can still attack the WPA2 handshakes and can force devices to downgrade, so you’re still getting effectively WPA2 level security until you actually turn off WPA2.

But if it doesn’t cost you anything, you can just turn it on and make their life just s little bit harder.

[–] Mountain_Mike_420@lemmy.ml 6 points 11 months ago (1 children)

Maybe vlan or DMZ a wpa2 network and use wpa3 with no fallback to wpa2 on the main/lan network?

[–] weker01@sh.itjust.works 1 points 11 months ago (1 children)

In my case that would mean that over 70% would be in the DMZ... It would be the main network

[–] Mountain_Mike_420@lemmy.ml 1 points 11 months ago

Yeah but as long as important data is not able to be accessed via the wpa2 network then you are all good.

[–] femtech@midwest.social 2 points 11 months ago (1 children)

When I put my network on wpa3/2 mode my Xbox would not longer connect.

[–] BigFatNips@sh.itjust.works 1 points 11 months ago (1 children)

Use Ethernet it'll connect no matter what wireless security you have enabled

[–] femtech@midwest.social 2 points 11 months ago (1 children)

Yeah, it's on my list to run some Ethernet from my basement to the attic. Right now I have one wire running up the outside of the wall to the AP.

[–] BigFatNips@sh.itjust.works 3 points 11 months ago

Don't be afraid to add extra APs or switches if necessary

[–] TedZanzibar@feddit.uk 5 points 11 months ago

Admittedly it was a few years ago since I last tried, but even in WPA2 compatibility mode I had no end of trouble either getting things to join in the first place or weird stability issues afterwards.

Maybe things have improved now, but when 2 "just works" and is good enough for most use cases I've been reluctant to try 3 again.

[–] jelloeater85@lemmy.world 2 points 11 months ago (1 children)

WPA2 is just fine TBH. Use what works with all the devices you own heh heh

[–] kernelle@lemmy.world 3 points 11 months ago (1 children)

I'm not so sure about this, KRACK was way back in '17

[–] BigDanishGuy@sh.itjust.works 5 points 11 months ago* (last edited 11 months ago) (1 children)

It sorta depends on your physical security. If you live in a town, then sure, you can't know who's eavesdropping. But if you park in my yard, several hundred meters from the nearest public road, then I think we'd notice before you could do any damage.

[–] kernelle@lemmy.world 1 points 11 months ago

Yeah thats full answer for OP, since nobody mentioned it thought I'd chime in