Re: Wireless Security

["Yousef Syed" <yousef.syed () gmail com>]

Well, the main reason that triggered my sending this question was
getting shocked at what I could see of other people just by browsing
"Network Neighborhood"! Some people have waaaaaay too much
visible/readable. Fortunately, my own two Laptops aren't permitting
any incomming connections, but that still doesn't protect me from any
dedicated hacker, or my data flow.
Anyway, I fly home this weekend so I'll setup an IPCop Firewall VPN at
home (http://thinkhole.org/wp/2006/03/28/ipcop-openvpn-howto/) - I've
been wanting to do that for sometime just to access my home network,
but now this makes the need even greater and more serious. Also means
I can access UK-only websites directly.
If it doesn't workout the way I want, then I'll just continue to use
Hot Spot Shield and just put up with their ads...

Thanks to all,
ys


On 06/02/2008, steve menard <nospam () dranem org> wrote:
> UMM
>  I would have used wireshark
> it would see it as if it was ethernet
> It also worked at a hotel I was wiring up
> there was a conference of educators at the same time
> I could see the data they were trafficking in ;-0
> since they were not using VPN nor https
>
> wireshark didn;t care which eth device I was using
> I will admit some of thewireless cards I used would not go into passive mode
>  ;-(  I didn't keep track of that though
>
> Steve
>
>
>
>
> richmh58 () optonline net wrote:
> > are there freeware wireless packet capture tools? wireshark doesn't do
> > it as far as I know.
> >
> > ----- Original Message -----
> > From: steve menard
> > Date: Tuesday, February 5, 2008 8:37 pm
> > Subject: Re: Wireless Security
> > To: Security Basics
> > Cc: Yousef Syed
> >
> > > Do you have a machine outside you could setup a ssh tunnel to?
> > >
> > > NO? then anyone watching the wireless stream WILL see ALL Traffic
> > > ;-(
> > >
> > > I went to a mall with a restaurant serving non encrypted wireless
> > > using a ethernet snoop I saw every non encrypted traffic
> > > everyone was
> > > using in almost clear text ;
> > > well clear protocol ; totally easy to trace and decode ;-P
> > >
> > > except for their encrypted sessions ; I saw the traffic but they
> > > were
> > > encrypted
> > > I would have needed to do extra to get them ;-)
> > >
> > > Steve
> > >
> > >
> > > Yousef Syed wrote:
> > > > I need some advice.
> > > > I'm currently staying in an apartment complex that provides free
> > > > wireless Internet access.
> > > > The access has zero crypto - not even WEP.
> > > >
> > > > What can I do on my own Laptops (Mac OS X and Windows XP Pro)
> > > to make
> > > > my browsing/internet usage more secure? I also want to ensure
> > > that no
> > > > one else on the network is entering my systems.
> > > >
> > > > The Windows Laptop already has Kaspersky Internet Security and
> > > various> spyware/adware checkers etc
> > > > Thanks,
> > > > ys



-- 
Yousef Syed
CISSP

http://www.linkedin.com/in/musashi