RE: About War Driving ..

[Murad Talukdar <talukdar_m () subway com>]

Don't use WEP mate-too easy to break these days(which could be why you've
got this problem-or could be someone giving out details of your network to
friends etc).
As for 'catching' him- I wouldn't count on it. I don't know if there are
tools to find the end point of a wireless connection. You can find AP's in
your building using NetStumbler(with GPS) and Kismet. 
You could also do a physical scan around the building-you never know-there
might be someone sitting in a car with a laptop! Or it could be an
unauthorized AP that someone has setup. Change the SSID and don't broadcast
it. Use at least WPA and look at Radius and use a long key.(I could be wrong
but I think certain tools can still crack long keys given time-Asleap for
instance).

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of gaurav saha
Sent: Thursday, November 30, 2006 3:17 AM
To: security-basics () securityfocus com
Subject: About War Driving ..

Hi , 
I was wondering if it is possible to locate and catch
a guy who is connecting to our wep wireless network
and downloading stuff from torrents and using up our
bandwidth .. 
I checked up with arp scan and found 2 unknown IPs 
192.168.1.246 and 247 
Is there anyway of locating the guy in a building of 7
floors and how to stop this ..I have tried changing
the Wep keys so . he is cracking the wep key.
Any Suggestion People ?
---gaurav


 
____________________________________________________________________________
________
Do you Yahoo!?
Everyone is raving about the all-new Yahoo! Mail beta.
http://new.mail.yahoo.com