Security Basics mailing list archives
RE: Wireless access
From: "Rosado, Rafael (Rafael)" <rarosado () lucent com>
Date: Fri, 26 Mar 2004 07:12:09 -0700
Paul, Most wireless access points/routers have the ability to add MAC addresses of authorized WLAN cards on the wireless router. And you are right, there are tools such as SMAC (or client software of some WLAN cards) that allow you to change your MAC address (and effectively spoof the MAC address of another card). The MAC address is sent as part of the header of 802.11 management packets, and even with WEP, these are not protected (WEP only protects the data packets, not the 802.11 management packets) so anyone with a WLAN card and a sniffer such as Ethereal can sniff these packets and pick up the MAC address of other cards connecting with the WLAN router. WEP in itself has been proven to be easily "crackable" with open source tools such as WEPCrack. Rafael Rosado, CISSP, CISA Network Security Manager Lucent Technologies IT Infrastructure - Network Design 2400 SW 145th Avenue Miramar, Florida 33027 Office: 954-885-2176 Facsimile: 954-885-3861 Email: rarosado () lucent com This electronic mail message contains information belonging to Lucent Technologies, which may be confidential and/or legal privileged. The information is intended only for the use of the individual or entity named above. If you are not the intended recipient, you are hereby notified that any disclosure, printing, copying, distribution, or the taking of any action in reliance on the contents of this electronically mailed information is strictly prohibited. If you receive this message in error, please immediately notify us by electronic mail and delete this message. -----Original Message----- From: Paul John Summers [mailto:paul_john_summers () hotmail com] Sent: Thursday, March 25, 2004 2:27 PM To: security-basics () securityfocus com Subject: RE: Wireless access And addendum to that question, do any wireless routers contain tools so that you can block all but specific hardware addresses? That is, my home wireless router would block all but my hardware address, much like hard-wired networks often require registration of hardware addresses before allowing a new system to access it. I do believe there are methods of spoofing hardware addresses but that aside, do wireless routers have capabilities for this sort of thing that a home user could easily administer to better secure their home network? Disclaimer: I'm also a newbie so please forgive any misconceptions or false assumptions! From: "Bruyere, Michel" <mbruyere () ezemcanada com> To: security-basics () securityfocus com Subject: Wireless access Date: Thu, 25 Mar 2004 08:36:05 -0500 Hi, I have a user who uses a wireless network at home. He just asked me (it's a director) to find a way to avoid his laptop (Toshiba tecra running XP Pro) connecting on the neighbor's router instead of his. He has a D-Link 614+, I don't know this model at all so I'm asking you guys if you know a way to restrict his laptop to only HIS router. As you can see, I'm not very familiar with Wireless :/ Thanks for any inputs M.Bruyere Network/systems administrator CompTIA A+, Network+ --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------------- _________________________________________________________________ Get rid of annoying pop-up ads with the new MSN Toolbar - FREE! http://toolbar.msn.com/go/onm00200414ave/direct/01/ --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ---------------------------------------------------------------------------- --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- RE: Wireless access, (continued)
- RE: Wireless access Dante Mercurio (Mar 26)
- RE: Wireless access Peter Martin (Mar 26)
- RE: Wireless access Thomas F. Szabo (Mar 26)
- RE: Wireless access Jordan, Jason D. "Dallas" (Mar 26)
- RE: Wireless access Robert Mezzone (Mar 26)
- Re: Wireless access John S . Whitford (Mar 26)
- Re: Wireless access John S . Whitford (Mar 29)
- RE: Wireless access David (Mar 29)
- RE: Wireless access Kenton Smith (Mar 29)
- RE: Wireless access Joe Thompson (Mar 30)
- RE: Wireless access Rosado, Rafael (Rafael) (Mar 26)
- RE: Wireless access William D. Menzie (Mar 26)
- RE: Wireless access Rosado, Rafael (Rafael) (Mar 26)
- RE: Wireless access Judie Ayoola (Mar 26)
- RE: Wireless access Eric Brown (Mar 26)
- What Are These Shares(Remote Admin/Remote IPC)? Mark Sargent (Mar 29)
- Re: What Are These Shares(Remote Admin/Remote IPC)? Alex Lomas (Mar 30)
- What Are These Shares(Remote Admin/Remote IPC)? Mark Sargent (Mar 29)
- RE: Wireless access Rosado, Rafael (Rafael) (Mar 29)
- RE: Wireless access Dante Mercurio (Mar 29)
- Re: Wireless access dries (Mar 30)
- RE: Wireless access Keith T. Morgan (Mar 29)
(Thread continues...)