Firewall Wizards mailing list archives

Re: Wireless

From: "R. DuFresne" <dufresne () sysinfo com>
Date: Fri, 9 Aug 2002 14:36:49 -0400 (EDT)


There was recent discussion in the pen-test list about this, sparked by
folks looking for tools to do this entirely over the wired realm due to
geographic issues with large, spreadout organizations.  What becoame
profoundly to a head was that there are no tools that can do this totally
from the wired side, that folks need to scan their netwrks from the
wireless side to get a totaly coverage and 'see' all there might be to
see.  There are some new tools for the wireless admins to help monitor the
AP's and such they have in place.  I think one is offered by airdefense,
or that might be the product name.  What was interesting was their claim
to be able to detect passive wireless monitors, like those folks
wardriving with various WAP sniffers.  With MAC address filtering and
such, I suspect it would beable to detect a new laptop that tries to
connect to AP's installed and allowed, so as to allow the admin to
properly address the access of this new paice of equipment, if only to
shut down the built in adapter on those not requireing or needing wireless
access, or to bring it into the folks in a secured manner.

Thanks,

Ron DuFresne

On Fri, 9 Aug 2002, Paul Robertson wrote:

How are people starting to deal with hunting down and killing rogue 
Wireless Access Points (WAPs)[1]?  It seems pretty easy in environments 
where wireless isn't allowed at all, but is anyone dealing with the situation in 
an environment where there are sanctioned wireless networks?

Thanks,

Paul
[1] I'm thinking a lot about the built-in laptop WAPs, people bringing in 
802.11b-enabled hubs, and only slightly about the cleaning folks hiding 
one in the ceiling tiles.
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
proberts () patriot net      which may have no basis whatsoever in fact."
probertson () trusecure com Director of Risk Assessment TruSecure Corporation


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
        admin & senior security consultant:  sysinfo.com
                        http://sysinfo.com

"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
                -- Johnny Hart

testing, only testing, and damn good at it too!

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Wireless Paul Robertson (Aug 09)
- Re: Wireless R. DuFresne (Aug 09)
- Re: Wireless B. Scott Harroff (Aug 09)
- <Possible follow-ups>
- RE: Wireless Scott, Richard (Aug 09)
  - RE: Wireless ejb3 (Aug 09)
    - Re: Wireless Jeff Newton (Aug 09)
    - Re: Wireless R. DuFresne (Aug 09)
    - Re: Wireless Jeff Newton (Aug 09)
    - Re: Wireless John McDermott (Aug 09)
    - Re: Wireless Paul Robertson (Aug 09)
    - Re: Wireless Dave Piscitello (Aug 19)
    - Re: Wireless ejb3 (Aug 09)

(Thread continues...)