Is wpa3 reccomended on a home network?
from yokonzo@lemmy.world to cybersecurity@sh.itjust.works on 27 Aug 2024 03:52
https://lemmy.world/post/19095601

It seems i have the option but i have a vague memory of someone telling me not to bother with it unless i had a good reason

#cybersecurity

threaded - newest

jelloeater85@lemmy.world on 27 Aug 2024 04:03 next collapse

WPA2 is just fine TBH. Use what works with all the devices you own heh heh

kernelle@lemmy.world on 27 Aug 2024 13:52 collapse

I’m not so sure about this, KRACK was way back in '17

BigDanishGuy@sh.itjust.works on 27 Aug 2024 21:37 collapse

It sorta depends on your physical security. If you live in a town, then sure, you can’t know who’s eavesdropping. But if you park in my yard, several hundred meters from the nearest public road, then I think we’d notice before you could do any damage.

kernelle@lemmy.world on 27 Aug 2024 23:36 collapse

Yeah thats full answer for OP, since nobody mentioned it thought I’d chime in

zurohki@aussie.zone on 27 Aug 2024 04:17 next collapse

If your devices all support WPA3, go for it. There’s a good chance older things won’t.

BigFatNips@sh.itjust.works on 27 Aug 2024 04:26 collapse

Most routers include backwards compatibility with WPA2 as a fallback, while newer devices will use WPA3. Should be relatively seamless

vzq@lemmy.blahaj.zone on 27 Aug 2024 05:43 next collapse

The drawback is that evildoers can still attack the WPA2 handshakes and can force devices to downgrade, so you’re still getting effectively WPA2 level security until you actually turn off WPA2.

But if it doesn’t cost you anything, you can just turn it on and make their life just s little bit harder.

Mountain_Mike_420@lemmy.ml on 27 Aug 2024 06:20 collapse

Maybe vlan or DMZ a wpa2 network and use wpa3 with no fallback to wpa2 on the main/lan network?

weker01@sh.itjust.works on 27 Aug 2024 22:53 collapse

In my case that would mean that over 70% would be in the DMZ… It would be the main network

Mountain_Mike_420@lemmy.ml on 28 Aug 2024 22:01 collapse

Yeah but as long as important data is not able to be accessed via the wpa2 network then you are all good.

femtech@midwest.social on 28 Aug 2024 00:15 collapse

When I put my network on wpa3/2 mode my Xbox would not longer connect.

BigFatNips@sh.itjust.works on 28 Aug 2024 00:40 collapse

Use Ethernet it’ll connect no matter what wireless security you have enabled

femtech@midwest.social on 28 Aug 2024 00:52 collapse

Yeah, it’s on my list to run some Ethernet from my basement to the attic. Right now I have one wire running up the outside of the wall to the AP.

BigFatNips@sh.itjust.works on 28 Aug 2024 00:54 collapse

Don’t be afraid to add extra APs or switches if necessary

TedZanzibar@feddit.uk on 27 Aug 2024 07:35 next collapse

Admittedly it was a few years ago since I last tried, but even in WPA2 compatibility mode I had no end of trouble either getting things to join in the first place or weird stability issues afterwards.

Maybe things have improved now, but when 2 “just works” and is good enough for most use cases I’ve been reluctant to try 3 again.

jecht360@lemmy.world on 27 Aug 2024 23:12 collapse

Technically, the “best” option would be to VLAN the WiFi network separately from a wired network where all the important devices are connected.

But honestly, for normal people, that’s over the top. Try WPA3 first and see if you have any devices that won’t work over it. If you run into issues, swap over to WPA2. I generally say start stricter and loosen the metaphorical belt only as necessary.