Previous Thread
Next Thread
Print Thread
Rate Thread
#15910 06/21/04 04:12 AM
Joined: Jun 2004
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Jun 2004
Posts: 4
So, here is a question for the SysAdmins here:

What are you guys/girls using for security when you are implementing Wireless APs into your LAN/WAN?

Is there anything that will keep these at least modestly secure? On a Windows LAN?

Is WEP/WPA as unstable for you as it is for us? Or am I just doing something seriously wrong?

SP

#15911 06/21/04 04:32 AM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
On my Linksys 802.11GS I have the reverse MAC address feature enabled (if you're not on the list you better learn to spoof) as well as I'm using a 128bit WEP key (I was using TKIP but my wife's PDA wasn't compatable).


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#15912 06/21/04 06:42 AM
Joined: Jun 2004
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Jun 2004
Posts: 4
So someone sniffs the network for a while, WEP is an easy one to crack, gets the mac address and then wouldnt it be as simple as changing their own mac after that? With wireless stuff you can change your mac every minute of the day if you wanted to...

All I think they need is a laptop with Linux and Kismet installed. Unless I am wrong every self respecting script kiddie has access to those...

SP

#15913 06/21/04 07:01 AM
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Offline
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
Wep is easy enough to crack; the mac address filter theid have to find the mac address and then clone it to get in. But other than that you have the point. I much prefer TKIP although it can drop a lot of wireless packets so it can suck smirk


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
#15914 06/21/04 04:29 PM
Joined: Jun 2004
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Jun 2004
Posts: 4
I dunno for sure, but isnt the mac address sent in the packets somewhere?

That would be what I would assume anyway... I will have to look into how to find the mac address I think.

SP

#15915 06/22/04 02:51 AM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
mac's are in the layer two headers, they are part of every frame.

#15916 06/22/04 06:05 PM
Joined: Jun 2004
Posts: 4
S
Junior Member
OP Offline
Junior Member
S
Joined: Jun 2004
Posts: 4
Thanks Infinite for the confirmation.

In any case, this essentially makes wireless utterly insecure (on a windows machine) without going to (what seems to be overboard) a radius server or some other form of encryption/authentication.

My current plan at the moment is to make it invisible (not broadcasting SSID), to which the obvious bypass is kismet (deciphering the presence of a network based on the packets) but then since I know some guy is going to be driving up to the side of our building with a laptop with kismet on it looking for things like this, the next step would be installing linux on a workstation with a wireless card and kismet and scanning/monitoring from there.

I dont know the full extent of Kismets tools base but I am hoping at least for a bit of a heads up to people attempting to or making connection to the network.

Anyways, that is what I am hoping!

Joe

#15917 06/22/04 06:37 PM
Joined: Mar 2002
Posts: 1,041
I
UGN Elite Poster
Offline
UGN Elite Poster
I
Joined: Mar 2002
Posts: 1,041
Kismet alone will not get you into anything. It's merely a wireless network monitoring tool. If you want to break WEP then you need something like snort as well. Snort uses the inherrent weakness in the WEP standard to discover the key. To do so you on average need to collect around 10 million packets. on a 100Mbps network that could possibly take hours.

See the thing you need to really consider is are you really that precious of a target that someone is gonna hang outside of your place, unnoticed, for hours on end just so they can have a chance to get into your [censored]? If you are out there pissing people off this much then I suggest you get yourself some sort of attitude adjustment instead of beefing up your wifi security. Being nicer to people will protect you better in the long run wink

Having said that, things like eap authentication and TKIP can greatly increase your defenses. I've done a lot of wardriving and pen testing of AP's, and have found that, for example, a cisco aironet with LEAP and TKIP enabled is for all intents and purposes inpenetrable (at lest from an 802.11 standpoint).

Also you can look into WPA, the sucessor to WEP. It has as well been proven flawed, but still offers greater security that WEP ever did.

Infinite


Link Copied to Clipboard
Member Spotlight
Posts: 43
Joined: November 2002
Forum Statistics
Forums41
Topics33,840
Posts68,858
Average Daily Posts1
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Where and how do you torrent?
by danni75 - 03/01/24 05:58 AM
Animation,
by JohanKaariainen - 08/15/19 01:18 AM
Blackbeard.....
by Gremelin - 10/03/18 07:02 PM
my old account still exists!
by Crime - 08/10/18 02:47 PM
Okay WTF?
by HenryMiring - 09/27/17 01:45 AM
The History Thread...
by Gremelin - 08/11/17 12:11 PM
My friend NEEDS your HELP!
by Lena01 - 07/21/17 12:06 AM
I'm having fun with this guy.
by gabithompson730 - 07/20/17 01:50 AM
I want to upgrade my phone
by gabithompson730 - 07/20/17 01:49 AM
Doom 3
by Cyrez - 09/11/14 08:58 PM
Amazon Gift Card Generator/KeyGen?te
by Gecko666 - 08/22/14 09:21 AM
AIM scene 99-03
by lavos - 09/02/13 08:06 AM
Planetside 2
by Crime - 03/04/13 07:10 AM
Beta Testers Wanted
by Crime - 03/04/13 06:55 AM
Hello Everyone
by Gremelin - 02/12/12 06:01 PM
Tracfone ESN Generator
by Zanvin Green - 01/18/12 01:31 PM
Python 3 issue
by Testing - 12/17/11 09:28 PM
tracfone airtime
by Drache86 - 07/30/11 03:37 AM
Backdoors and the Infinite
by ZeroCoolStar - 07/10/11 03:52 AM
HackThisZIne #12 Releaseed!
by Pipat2 - 04/28/11 09:20 PM
gang wars? l33t-wars?
by Gremelin - 04/28/11 05:56 AM
Consolidate Forums
by diggin2deep - 04/21/11 10:02 AM
LAN Hacking Noob
by Gremelin - 03/12/11 12:42 AM
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
unreal 1
Crime 1
Ice 1
Dartur 1
Powered by UBB.threads™ PHP Forum Software 7.7.5