Security Basics mailing list archives

RE: proving a wireless router is shared/open

From: "dave kleiman" <dave () isecureu com>
Date: Fri, 13 Feb 2004 23:28:39 -0500

I cannot give more details.


Well maybe you could give a few more specifics.

1.  Do you want o see who is on at a given point in time, or span of time?
For the first you could just scan the IP range at said times, for the latter
you could monitor the gateway with ettercap or ethereal.

2.  Find someone with some experience with the "wireless router" and ask
them to connect to it. I am just spiff-balling here, but I would guess you
have no security on it. (i.e. the ID is broadcasting, it is set to DHCP, and
has no encryption) So I would say it would take about a minute to connect to
it.

I would say both of those would prove it...........

 
_____________________________________
Dave Kleiman, CISSP, MCSE, CISM, CIFI 
www.SecurityBreachResponse.com

"High achievement always takes place in the framework of high expectation."
Jack Kinder

 


-----Original Message-----
From: Steve [mailto:securityfocus () delahunty com] 
Sent: Thursday, February 12, 2004 15:59
To: security-basics () securityfocus com
Subject: proving a wireless router is shared/open


Have an odd situation where we want to prove that a wireless router is being
shared by a bunch of people, that is not restricted in any way, so the ISP
bandwidth is being used by a groupof folks that should not be on the
router/ISP.  I cannot give more details.  But, how would you prove such a
thing if you had to ask someone else to obtain this proof since you yourself
could not just walk up with your laptop and wireless NIC and jump on the
wireless router?



---------------------------------------------------------------------------
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection

Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.astaro.com/php/contact/securityfocus.php
----------------------------------------------------------------------------

Current thread:

iptables Jorge Garcia (Feb 12)
- RE: iptables Joey Peloquin (Feb 12)
  - proving a wireless router is shared/open Steve (Feb 13)
    - Re: proving a wireless router is shared/open JGrimshaw (Feb 13)
    - security architecture Nagy Gergely (Feb 16)
    - Re: security architecture Hollis Johnson (Feb 18)
    - Re: proving a wireless router is shared/open phaseone (Feb 16)
    - RE: proving a wireless router is shared/open dave kleiman (Feb 16)
    - Re: proving a wireless router is shared/open JM (Feb 16)
- Re: iptables dan radom (Feb 12)
- Re: iptables Jon McClintock (Feb 12)
- <Possible follow-ups>
- RE: iptables Mike (Feb 12)
- RE: iptables Shawn Jackson (Feb 13)