Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SSID cloaking reducing WLAN security

From: Noah <focushacks () gmail com>
Date: Tue, 24 Apr 2007 11:50:57 -0500
We already had this discussion a few times.  Actually, cloaking
decreases the potential of attack in most residential settings, where
there are several nearby access points with even less protection.
Search for "Low-Hanging Fruit" and you'll see what I mean.  Most of
your WiFi abusers aren't sitting there with frequency counters looking
for access points that aren't broadcasting their SSIDs.  Most are
looking for obvious, open access points.

Even when your non-broadcasting AP shows up on their passive scanner,
it shows up initially without the SSID, and it's usually easier to hop
on one that requires less effort.

That said, I advocate using WPA-Personal(PSK) on home networks, on top
of MAC address access control and SSID hiding.  Cloaking your SSID
does not increase your risk of attack, however.

In a business setting, using SSID cloaking as your only line of
defense is goofy and foolhardy.  New encryption systems or a
sandbox-VPN should always be used in those situations.


On 4/21/07, scott <redhowlingwolves () bellsouth net> wrote:

  If some form of unity was involved with the writing,and compatibility of
drivers,at least for most *nix servers....without having to resort to in
house compatibility testing,.....I believe the security of wireless
could be much improved.
Many people I know don't try to secure their wireless networks because
of cmp issues.....ie: no drivers from the NIC device makers that are
useable with the router they happen to be using!

I flipped out when I was told;  "I talked to an IT guy and he said the
depencdenies for...such and such card...are  too hard!!!"!?

Never mind that he could be the one taking advantage of your unsecured
router!    (This was a Windows case,none the less.....)

Wireless,whether your SSID is broadcast or not,is inherently vulnerable
to outsiders.I say inherently,because it uses radio waves,....ask any
ham radio operator how they can manipulate radio waves any way they
choose....!Especially if you happen to be within their range!

Cloaking, just gives the possibility to potential attackers ,that there
could be something worth checking out!

IMHO
                  Regards,
                        Scott








--
http://www.focushacks.com/focushacks-gpg.txt - My GPG encryption key
Previous By Date Next
Previous By Thread Next

Current thread: