Security Basics mailing list archives

Re: Wireless Ethereal

From: Markus Schabel <markus.schabel () tgm ac at>
Date: Sun, 21 Mar 2004 20:05:10 +0100

jburzenski () americanhm com wrote:

Has anyone used Ethereal to capture wireless traffic, and if
so, can you point me to any resources documenting wirelessEthereal usage?


Ethereal will display the wireless packet data in much the same way wired
packets are displayed except that you will see more control packets and
such.  Decoding will not be possible unless you are monitoring an
unencrypted network (at which point you are doing IP over 802.11).  The
packet details are mostly self explanatory (web enabled, channel, etc.).


If you're using any spoofing technices you can sniff all traffic on
encrypted wireless networks. If you are in the network and run
arp-spoofing you'll get all packets unencrypted (to be correct:
encrypted with your own key), and I don't see any possibility to deny
this except with static arp tables on the clients - which is a bit
complicated if you have roaming clients...

best regards
Markus

<snip/>
--
          \\\ ||| ///                               _\=/_
           (  @ @  )                                (o o)
+--------oOOo-(_)-oOOo--------------------------oOOo-(_)-oOOo------+
| Markus Schabel      TGM - Die Schule der Technik   www.tgm.ac.at |
| IT-Service          A-1200 Wien, Wexstrasse 19-23  net.tgm.ac.at |
| markus.schabel () tgm ac at                   Tel.: +43(1)33126/316 |
| markus.schabel () members fsf org             Fax.: +43(1)33126/154 |
| FSF Associate Member #597, Linux User #259595 (counter.li.org)   |
|        oOOo        Yet Another Spam Trap:     oOOo               |
|       (    )    oOOo    yast () tgm ac at       (   )     oOOo      |
+--------\  (----(   )--------------------------\ ( -----(   )-----+
          \_)     ) /                            \_)      ) /
                 (_/                                     (_/

Computers are like airconditioners:
  They stop working properly if you open windows.

---------------------------------------------------------------------------

Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 offany course! All of our class sizes are guaranteed to be 10 students or lessto facilitate one-on-one interaction with one of our expert instructors.Attend a course taught by an expert instructor with years of in-the-fieldpen testing experience in our state of the art hacking lab. Master the skillsof an Ethical Hacker to better assess the security of your organization.Visit us at:http://www.infosecinstitute.com/courses/ethical_hacking_training.html

----------------------------------------------------------------------------

Current thread:

Wireless Ethereal Edward Smith (Mar 08)
- Re: Wireless Ethereal Byron Sonne (Mar 09)
- Re: Wireless Ethereal Floyd Hartog (Mar 09)
- <Possible follow-ups>
- RE: Wireless Ethereal jburzenski (Mar 09)
  - RE: Wireless Ethereal Aditya, ALD [Aditya Lalit Deshmukh] (Mar 10)
    - RE: Wireless Ethereal Rusty Chiles (Mar 11)
  - Re: Wireless Ethereal Markus Schabel (Mar 22)
- Re: Wireless Ethereal Tace (Mar 09)
- RE: Wireless Ethereal Rosenhan, David (Mar 11)