RE: Wireless access

["Rosado, Rafael (Rafael)" <rarosado () lucent com>]

Paul,

Most wireless access points/routers have the ability to add MAC addresses of
authorized WLAN cards on the wireless router.  And you are right, there are
tools such as SMAC (or client software of some WLAN cards) that allow you to
change your MAC address (and effectively spoof the MAC address of another
card).  The MAC address is sent as part of the header of 802.11 management
packets, and even with WEP, these are not protected (WEP only protects the
data packets, not the 802.11 management packets) so anyone with a WLAN card
and a sniffer such as Ethereal can sniff these packets and pick up the MAC
address of other cards connecting with the WLAN router. WEP in itself has
been proven to be easily "crackable" with open source tools such as
WEPCrack.

Rafael Rosado, CISSP, CISA
Network Security Manager
Lucent Technologies
IT Infrastructure - Network Design
2400 SW 145th Avenue 
Miramar, Florida 33027 
Office: 954-885-2176 
Facsimile: 954-885-3861 
Email: rarosado () lucent com 

This electronic mail message contains information belonging to Lucent
Technologies, which may be confidential and/or legal privileged. The
information is intended only for the use of the individual or entity named
above. If you are not the intended recipient, you are hereby notified that
any disclosure, printing, copying, distribution, or the taking of any action
in reliance on the contents of this electronically mailed information is
strictly prohibited. If you receive this message in error, please
immediately notify us by electronic mail and delete this message.

-----Original Message-----
From: Paul John Summers [mailto:paul_john_summers () hotmail com] 
Sent: Thursday, March 25, 2004 2:27 PM
To: security-basics () securityfocus com
Subject: RE: Wireless access

And addendum to that question, do any wireless routers contain tools so that
you can block all but specific hardware addresses? That is, my home wireless
router would block all but my hardware address, much like hard-wired
networks often require registration of hardware addresses before allowing a
new system to access it. I do believe there are methods of spoofing hardware
addresses but that aside, do wireless routers have capabilities for this
sort of thing that a home user could easily administer to better secure
their home network?

Disclaimer: I'm also a newbie so please forgive any misconceptions or false
assumptions!


From: "Bruyere, Michel" <mbruyere () ezemcanada com>
To: security-basics () securityfocus com
Subject: Wireless access
Date: Thu, 25 Mar 2004 08:36:05 -0500

Hi,
        I have a user who uses a wireless network at home. He just asked me
(it's a director) to find a way to avoid his laptop (Toshiba tecra running
XP Pro) connecting on the neighbor's router instead of his. He has a D-Link
614+, I don't know this model at all so I'm asking you guys if you know a
way to restrict his laptop to only HIS router.

As you can see, I'm not very familiar with Wireless :/

Thanks for any inputs

M.Bruyere
Network/systems administrator
CompTIA A+, Network+


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the 
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

_________________________________________________________________
Get rid of annoying pop-up ads with the new MSN Toolbar - FREE! 
http://toolbar.msn.com/go/onm00200414ave/direct/01/


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------