| From: David Collier-Brown via talk <talk@gtalug.org> | I'm still looking for a scheme that doesn't fail an evil-twin attack (;-)) | | I have an apparent neighbor who uses my connection. The use I don't mind much, | the degree to which my work is public I do mind. Evil Twin is just a variant of man-in-the-middle, right? An "active", rather than "passive" MITM. Surely WPA is secure against MITM, including active MITM. All one needs to prevent MITM is a competent protocol and at least one end authenticated. Your strong-enough password provides such authentication. (WPS does or did have a weakness if I remember correctly. My brute force solution has been to disable WPS. There may have been fixes.) Ohh. KRACK. WPA2 isn't competent. I forgot. <https://en.wikipedia.org/wiki/KRACK>