Re: [gentoo-user] new wireless IP address on my LAN
On Saturday 05 March 2005 23:27, Chris Cox wrote: > On Saturday 05 March 2005 11:49 am, Chris Cox wrote: > > On Saturday 05 March 2005 11:34 am, Ralph Slooten wrote: > > > Yes Chris, as well as MAC address filtering (not bulletproof, but > > > helps). Also you should not advertise your SSID (turn it off). > > > > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup > > MAC address filtering but I'll look into it. I guess I just never > > expected anyone to connect to my wireless network besides me. > > MAC address filtering is also enabled. Does that mean nobody can come in > my Wireless network now? No, it means it is more difficult for them. Uwe -- Alternative phrasing of the First Law of Thermodynamics: If you eat it, and you don't burn it off, you'll sit on it. http://www.uwix.iway.na (last updated: 20.06.2004) -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 2005-03-05 at 16:11 -0500, A. Khattri wrote: > On Sat, 5 Mar 2005, Chris Cox wrote: > > > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup MAC > > address filtering but I'll look into it. > > Usually this can be setup in the web page for your access point. > > > I guess I just never expected > > anyone to connect to my wireless network besides me. > > I live in a loft in New York and because of the density of buildings and > people, there are 7 access points I can see from the front of the loft! Im > now thinking of investing in a booster antenna because its easier for me > to log onto my neighbors access point than my own (which in the front over > 40 feet away). Most people have no clue how to secure their computers, let > alone their network equipment I wish i could do that and get rid of the 50$ internet bill every month. > . > -- Douglas James Dunn cell: (724) 316-8266 Indiana University of Pennsylvania () The ASCII Ribbon Campaign - against HTML Email, /\ vCards, and proprietary formats. . .vir.d$b .d$$b..cd$$b. .d$$b. d$$$b .d$$b. .d$$b. ( )$$$b d$$$()$$$. d$$$b Q$$$P$$$P.$$$b. .$$$b. Q$$BP" d$$$PQb. . .$$$P' `$$$ .$$$P' `$$$ "$$$P Q$$$b d$$$P Qb b b..d$$$ b..d$$$ d$$P" " Q$$$ Q $ `Q$$$P `Q$$$P $$$P `" """" Q$$$P "Q$$$P" "Q$$$P" `Q$$P" """ signature.asc Description: This is a digitally signed message part
Re: [gentoo-user] new wireless IP address on my LAN
Ralph Slooten ([EMAIL PROTECTED]) scribbled: > A. Khattri wrote: > > Yes and no. While it will block most people, MAC addresses can be spoofed > > anyway. > > Any idea how they could get your MAC address, or the only one the AP > accepts? I don't think they would use brute force, but still don't know > if it's possible to get too. When wep is enabled, any machine in the vicinity with a wifi card in promiscuous mode can still see the bssid, source mac, and dest mac of traffic flowing through the AP. Thus, they have the mac addresses that are permitted. They wait till you shut off that machine, and they have access. Assuming they have the wep key, which is trivial to retrieve. Take a look at WPA authentication, not used much yet, so there are fewer tools available for hacking it. Plus, the tools are dictionary attacks, which limits their effectiveness. Honestly, if you are that concerned about it, switch to a wired network. hth, Cooper. -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 5 Mar 2005 14:43:18 -0700, Collins Richey wrote: > You're safer now, but it has been reported that sniffers can decode > WEP if they scarf up enough data (it seems like a few weeks is > enough). Probably a good idea (tm) not to leave your wireless powered > on 24x7. Or change your WEP key every week. -- Neil Bothwick Where do you think you're going today? pgpyGEqH8Dx6Q.pgp Description: PGP signature
Re: [gentoo-user] new wireless IP address on my LAN
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 A. Khattri wrote: > Yes and no. While it will block most people, MAC addresses can be spoofed > anyway. Any idea how they could get your MAC address, or the only one the AP accepts? I don't think they would use brute force, but still don't know if it's possible to get too. -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFCKi2jAWKxH5yWMT8RAg49AJ9+NybuUadeH6j3qO87Fk4XoVadoQCeNpmA 1uFEXW3G8K+LOOthlw+xtP8= =9fuG -END PGP SIGNATURE- -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 5 Mar 2005, Chris Cox wrote: > MAC address filtering is also enabled. Does that mean nobody can come in my > Wireless network now? Yes and no. While it will block most people, MAC addresses can be spoofed anyway. -- AK -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 5 Mar 2005 15:27:00 -0600, Chris Cox <[EMAIL PROTECTED]> wrote: > On Saturday 05 March 2005 11:49 am, Chris Cox wrote: > > On Saturday 05 March 2005 11:34 am, Ralph Slooten wrote: > > > Yes Chris, as well as MAC address filtering (not bulletproof, but > > > helps). Also you should not advertise your SSID (turn it off). > > > > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup > > MAC address filtering but I'll look into it. I guess I just never expected > > anyone to connect to my wireless network besides me. > > MAC address filtering is also enabled. Does that mean nobody can come in my > Wireless network now? > You're safer now, but it has been reported that sniffers can decode WEP if they scarf up enough data (it seems like a few weeks is enough). Probably a good idea (tm) not to leave your wireless powered on 24x7. -- Collins -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 5 Mar 2005, Chris Cox wrote: > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup MAC > address filtering but I'll look into it. Usually this can be setup in the web page for your access point. > I guess I just never expected > anyone to connect to my wireless network besides me. I live in a loft in New York and because of the density of buildings and people, there are 7 access points I can see from the front of the loft! Im now thinking of investing in a booster antenna because its easier for me to log onto my neighbors access point than my own (which in the front over 40 feet away). Most people have no clue how to secure their computers, let alone their network equipment. -- AK -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Saturday 05 March 2005 11:49 am, Chris Cox wrote: > On Saturday 05 March 2005 11:34 am, Ralph Slooten wrote: > > Yes Chris, as well as MAC address filtering (not bulletproof, but > > helps). Also you should not advertise your SSID (turn it off). > > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup > MAC address filtering but I'll look into it. I guess I just never expected > anyone to connect to my wireless network besides me. MAC address filtering is also enabled. Does that mean nobody can come in my Wireless network now? -- Chris Linux 2.6.10-gentoo-r7 i686 AMD Athlon(tm) XP 15:25:37 up 2:21, 2 users, load average: 0.13, 0.08, 0.15 -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
Chris Cox wrote: On Saturday 05 March 2005 11:34 am, Ralph Slooten wrote: Yes Chris, as well as MAC address filtering (not bulletproof, but helps). Also you should not advertise your SSID (turn it off). Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup MAC address filtering but I'll look into it. I guess I just never expected anyone to connect to my wireless network besides me. Chris, A good thumbrule for security is this: if it can be done, regardless of why, it will be done. Keep that in mind anytime you set something up and you'll be far better off :) James -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Saturday 05 March 2005 11:34 am, Ralph Slooten wrote: > Yes Chris, as well as MAC address filtering (not bulletproof, but > helps). Also you should not advertise your SSID (turn it off). > Ok I disabled SSID Broadcast and enabled WEP. I'm not sure how to setup MAC address filtering but I'll look into it. I guess I just never expected anyone to connect to my wireless network besides me. -- Chris Linux 2.6.10-gentoo-r7 i686 AMD Athlon(tm) XP 11:44:51 up 3 days, 14:28, 13 users, load average: 1.68, 1.93, 1.53 -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
On Sat, 5 Mar 2005 10:59:22 -0600 Chris Cox <[EMAIL PROTECTED]> wrote: > ... > someone in the area was using my bandwidth/ broadband connection. So my next > question is how should I prevent this in the furture? Should turning on WEP > on my router fix this? Yes, but do it *soon*. There is no reason not to use WEP. It does not reduce bandwidth and should not consume additional CPU time. Regards -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] new wireless IP address on my LAN
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Yes Chris, as well as MAC address filtering (not bulletproof, but helps). Also you should not advertise your SSID (turn it off). But please excuse my ignorance, if you run a "public" access point to which no control is done, do you really expect people not to log in when they discover it? It's like people running public ftp servers where anyone can upload / download... not the smartest thing in the world to do. Basically they are using your network, and are IN your network (bye bye firewall rules and certain things specific to internal interaction aswell). If you run an smtp server too in your network, you had better pray he's not a spammer (unlikely, but still the risk is there). Nice computer by the way ... Oh, I just let myself into your house ~ the front door was unlocked and open, with a big sign above the door telling me that ;-) Greetings Ralph Chris Cox wrote: > Last night I just happen to connect to http://192.168.1.1/DHCP.htm and > noticed > something odd that I haven't seen before. There was a 2nd Wireless IP > address on my local LAN. But I only have 1 wireless card connected on a > Windows 2k machine. This one had a different Hostname on it so I'm thinking > someone in the area was using my bandwidth/ broadband connection. So my next > question is how should I prevent this in the furture? Should turning on WEP > on my router fix this? > -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) iD8DBQFCKe2YAWKxH5yWMT8RAtGAAJ4oJoQOTDU7olUkQ2P2+W3ugQMuaQCfWQgA zl6w/olXG+nGOclHtpmB7cc= =LTIk -END PGP SIGNATURE- -- gentoo-user@gentoo.org mailing list