If on the access point, access is limited to specific mac addresses is it still possible for outsiders to sniff packets? My company is considering implementing a wireless network and we want the network to remain secure.

Thanks

As long as it is encypted, they can still sniff, but all they would get is garbage. Although, the encryption (128-bit) can be hacked in a few hours. So once they crack it they could look at the packets and decode what mac addresses are accepted and then change theirs to match one. There are some cards that you can change the mac. Although I'm not sure if the mac addresses accepted are encrypted, so if that is the case then all they would have to do is decrypt to get the key so they can get onto the network.

So, reset the encryption every hour. :D

No, the MAC addresses are not encrypted (since the initial transmission must be clear text before encryption can begin). As I saw in a demonstration one time, it's VERY easy to spoof a MAC address, so although this is a good measure to implement, don't rely on it as your only means of security.

Eeye (http://www.eeye.com/html/) used to be a security research company, but it was bought & now sells security products. However, they still have a lot of good information about securing wired & wireless networks (see the research link).

NTBugtraq (http://www.ntbugtraq.org/) also has a great mailing list you should subscribe to - go to the 'Mailing Lists' link & subscribe to the NTBUGTRAQ list.