Re: Dsniff'ng wireless networks

[Joe Shaw <jshaw () insync net>]

On Fri, 6 Jul 2001, sito wrote:

> Has anyone successfully utilized Dsniff to capture packets on a wireless
> network?  If so can you provide details to how you configured the
> machine.

I've run dsniff in 802.11b environments with no problems using OpenBSD and
an Aironet 4800 PCMCIA card.  The Cisco equivalent works just as well.

Dug Song, dsniff author, did it last year at the USENIX technical
conference in San Diego.  He then presented "Passwords Found on a Wireless
Network" with his findings.  The paper can be found on his homepage in
postscript format at http://www.monkey.org/~dugsong/talks/usenix00.ps.
I'm pretty sure he was using OpenBSD with one of the four 802.11b NIC's
that were supported by OpenBSD at the time.  Of course, the SSID for
the conference was widely published so people attending USENIX could use
the wireless network.  So, that was a known variable.  Still, I've used
dsniff on wireless 802.11b networks with no problems on OpenBSD using
Aironet pcmcia cards and a laptop.

The biggest obstacles would be the SSID and WEP.  If the network uses
access points which broadcast the SSID or they use the same SSID as the
company name, which is common, then it's no big deal.  WEP, of course, can
also be broken, since most people use static WEP keys.  But, most people
don't use WEP anyway.

Regards,
--
Joseph W. Shaw II
Network Security Specialist/CCNA
Unemployed.  Will hack for food.  God Bless.
Apparently I'm overqualified but undereducated to be employed.




--------------------------------------------------------------------------------------

This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service
For more information on SecurityFocus' SIA service which automatically alerts you to 
the latest security vulnerabilities please see:

https://alerts.securityfocus.com/