Security Basics mailing list archives
Re: Security issue? Free Public WiFi Ad Hoc network broadcast
From: "Diarmaid McManus" <diarmaidmcmanus () gmail com>
Date: Wed, 9 Aug 2006 00:47:04 +0100
Hi Ken, What it looks like to me is someone is either [*] being nice and giving your users free wireless somehow or [*] someone trying to get laptops to automatically choose this access point to connect through and hopefully check emails, or log onto corporate members only web, etc. through which they can sniff passwords. I'd say you should look more towards a physical intrusion rather than a network based intrusion. That said, you should look into both, as to serve the wireless the attacker would have to be able to connect to your(or someone else's) wired network, or bridge a wireless network. Seeing as the MACs are spoofed, next time you come accross this laptop broadcasting, lock down access to the building(if you can) insofar as requiring everyone with a laptop to be stopped on their way out and have it checked for either the MAC or some other software that may be incriminating (i.e dsniff, etheral or what have you) for the next few days. While it can still be slipped out, it would cause a headache for the attacker. That said, it may cause too much hassle and cost a lot of manpower. Just my 0.02c for now ~Diarmaid On 08/08/06, Ken S <ken.securitylist () gmail com> wrote:
FYI. After looking at the MACs more closely, it looks like they are bogus (prefixes of FA:AD:4D and 2A:9E:1F). --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Security issue? Free Public WiFi Ad Hoc network broadcast Ken S (Aug 08)
- Re: Security issue? Free Public WiFi Ad Hoc network broadcast Ken S (Aug 08)
- Re: Security issue? Free Public WiFi Ad Hoc network broadcast Diarmaid McManus (Aug 09)
- RE: Security issue? Free Public WiFi Ad Hoc network broadcast Murda Mcloud (Aug 09)
- RE: Security issue? Free Public WiFi Ad Hoc network broadcast David Gillett (Aug 09)
- Re: Security issue? Free Public WiFi Ad Hoc network broadcast Ken S (Aug 08)