Security Basics mailing list archives

Re: About War Driving ..

From: Gouki <Gouki () GoukiHQ org>
Date: Sat, 02 Dec 2006 04:06:27 +0000

"using a portal capture system that requires you to authenticate before
being able to connected to anything but the portal"

These 'portals' are often very easy to bypass. Most of them only filters
HTML traffic, so, by tunneling the traffic to ICMP (which is often a
forgotten protocol) you can use that Access Point (ptunnel, for
instances). 

With the amount of good text-based applications (which are more easy to
use with a tunnel) you can use IRC, BitTorrent, IM and even browser (if
you like Lynx (= ).

My point being... WPA with authentication on a Radius server is probably
the best choice.

Regards,

Tiago 

On Fri, 2006-12-01 at 00:28 -0800, Larry Offley wrote:

I suggest switching to WPA or using a portal capture system that 
requires you to authenticate before being able to connected to anything 
but the portal. If your equipment can't use WPA and you can't afford to 
replace them, maybe setting up IPSEC for the clients using the wireless 
and configure your network to drop all non-IPSEC traffic coming from the 
wireless router.  Trying to track him down is going to be a waste of 
your time. What you really need to do is secure your network.

Larry Offley
www.offley.ca


gaurav saha wrote:

Hi , 
I was wondering if it is possible to locate and catch
a guy who is connecting to our wep wireless network
and downloading stuff from torrents and using up our
bandwidth .. 
I checked up with arp scan and found 2 unknown IPs 
192.168.1.246 and 247 
Is there anyway of locating the guy in a building of 7
floors and how to stop this ..I have tried changing
the Wep keys so . he is cracking the wep key.
Any Suggestion People ?
---gaurav


 
____________________________________________________________________________________
Do you Yahoo!?
Everyone is raving about the all-new Yahoo! Mail beta.
http://new.mail.yahoo.com

-- 
*//=================================================================
  .-. Fingerprint: 4B36 0BC2 82CE 6858 4893 7132 BC98 A7E4 3482 BA17
  /v\  Size / Type: 1024/DSA
 // \\  Availability: MIT's PKS - pgp.mit.edu
/(   )\  Homepage: GoukiHQ.org
 ^^-^^    |PHEAR THE PENGUIN|
*//=================================================================

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Re: About War Driving .., (continued)
- - - Re: About War Driving .. Kelly Martin (Dec 08)
    - Re: About War Driving .. pryorda pryor (Dec 12)
    - RE: About War Driving .. Alan Greig (Dec 06)
  - RE: About War Driving .. Andrew Aris (Dec 06)
- Re: About War Driving .. RS (Dec 01)
- RE: About War Driving .. Murad Talukdar (Dec 01)
- Re: About War Driving .. kjpang_nospam (Dec 01)
- Re: About War Driving .. joetech691 (Dec 01)
- Re: About War Driving .. Colin Copley (Dec 01)
- Re: About War Driving .. Larry Offley (Dec 01)
  - Re: About War Driving .. Gouki (Dec 04)
- Re: About War Driving .. bucklerk (Dec 01)
- Re: About War Driving .. Roman Shirokov (Dec 01)
  - Re: About War Driving .. Francois Yang (Dec 04)
- Re: Re: About War Driving .. s (Dec 04)
- Re: RE: About War Driving .. nratkevicius (Dec 04)
  - Re: RE: About War Driving .. Francois Yang (Dec 06)
  - RE: About War Driving .. David Gillett (Dec 06)
- Re: About War Driving .. Paul daSilva (Dec 04)
- Re: Re: About War Driving .. giles (Dec 04)
- RE: About War Driving .. Dan Bogda (Dec 04)

(Thread continues...)