0
freeflir29

Wireless Internet security

By freeflir29, in The Bonfire

Recommended Posts

AlexCrowley    0

AlexCrowley
sorry pBASE, my mistake. You're right that netstumbler is crippled to not see those frametypes. My bad - mixed up my toolsets. There are plenty of passive scanners out there that will display non-broadcasting networks for windows and linux.

Just look around for wardriving tools that'll do frame inspection.

TV's got them images, TV's got them all, nothing's shocking.

Share this post

Link to post
Share on other sites

nate_1979    9

nate_1979
Quote

PGP on the desktop. Nukenabber port scan blocker running on the pc. Desktop firewall running on the PC. Preferably 2 like zonealarm and norton internet security. Those 2 don't interfere with each other.



So excesive... I run, well, nothing.. I sit behind a linux box, no other firewalls, programs, any of that shit.. just a bunch of unnecessary overhead.

FGF #???
I miss the sky...
There are 10 types of people in the world... those who understand binary and those who don't.

Share this post

Link to post
Share on other sites

kelpdiver    2

kelpdiver
Quote

Quote

WEP has and can be easily cracked.



I don't totally agree with that one. It can be cracked sure, just sniff their packets and EVENTUALLY you'll crack their WEP key. But, do you have any idea how long that'd take to do if your talking about sniffing one person, one computer? You have to collect 5-10 million encrypted packets to crack their key. Just for fun I set up a laptop and sniffed my neighbors WEP protected signal. It took me 12 hours to get 5,000 (encrypted) packets. That means it'd take 500 days to get 5 million packets at that rate. And that was when they were using the computer. What about when it's turned off or they're gone for the weekend? No one would wait that long to get it.



I haven't figured out how to use it, but the FBI has demonstrated how to crack 128 bit WEP in 3 minutes. Find the analyzer toolkit if you want to play around with wireless. Sometime when I have more free time I want to see if I can get into all 6 of the neighbor wifi points at my apartment.

WiFi crypto can be broken in 3 mins
WEP, the access-control system for WiFi, is notoriously shit. Now Fed computer scientists have shown an attack that can break a WEP key in three minutes. Gabe sez, "Brilliant approach, using a second computer to re-send the same packet back to the router, thus generating more traffic, thus catching more weak packets, etc."

The FBI team used the deauth feature of void11 to repeatedly disassociate the laptop from the access point. Desired additional traffic was then generated as Windows XP tried to re-associate back to the AP. Note that this is not a particularly stealthy attack, as the laptop user will notice a series of "Wireless Network unavailable" notifications in the taskbar of their desktop screen.

Another attack method the FBI team used is a replay attack. The basic premise of this attack is to capture at least one packet traveling from the victim laptop to victim access point. This packet can then be replayed into the network, causing the target AP to respond and provide more traffic to capture.

Share this post

Link to post
Share on other sites

AlexCrowley    0

AlexCrowley
yup, but my personal feeling is that unless you're unreasonably paranoid there's very little gain in encrypting wireless traffic *if* youre paying attention, the performance hit just isnt worth it.

I view it this way: most of the network traffic I send is cleartext anyway, the stuff I dont want people sniffing is encrypted at the application level.

My feeling is that if you're doing anything you want secure you shouldnt be firing it through the air for anyone to hear. It's also a game of leaf in the forest, just another jumble of bits among many - who cares if someone else is able to see that I'm posting on DZ.com this evening, etc etc.

It would be just as simple to simply tunnel everything via SSH/stunnel if portability is important, I guess.

TV's got them images, TV's got them all, nothing's shocking.

Share this post

Link to post
Share on other sites

pBASEtobe    0

pBASEtobe
Quote

Netstumbler will show networks with SSID broadcasting disabled, it just wont scan for further info.



Damn it why did you have to tell me that? Why couldn't you have just kept it a secret? >:(
I did read Toms guide to cracking WEP. It was very interesting. I'm going to give it a try just for fun!

Thanks...kind of. ;)

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
0
Go To Topic Listing