As far as VoIP goes...for some reason I treat the phone like most people treat email.... I've always heard: "never email something you wouldn't want to show up on the front page of the paper"...and I abide by that on the phone, but expect email to be more secure (knowing full well its not).... so to that end, I have my VoIP server relatively unsecured. I do have a pretty secure e-mail solution but I know as soon as it traverses my network its wide open...

PM me if you are interested, I'll share the program that can do VoIP man-in-the-middle attacks...its FREAKY...it runs, captures MP3s of the calls and no one is the wiser...

As far as WiFi goes...I'm really nuts...I have 3 totally independent subnets....one is a wifi network with no encryption...it does force users to go to a captive portal, but thats just to (hopefully) protect me through a EULA...on my LAN I have wifi access points- but they use 64 bit wpa2 keys...and I dont share them. Besides Mrs. SpaceBass and myself, I cannot see why anyone else would need access to our lan. And if they don't have WiFi, I have a wired jack in the guest room that also diverts to the same subnet that has the captive portal.... and that subnet has no access (except for voip) to my lan.

Anyway, karthik, I guess my point is: I totally agree...its wpa/wpa2 or nothing...wep (lets forget about ssid hiding/ mac filtering) is worthless!

I bet someone has a Trojan on my domain controller or router and is dieing laughing at everything I type about security...