RE: Walmart using WEP

["terry" <tvernon24 () comcast net>]

In my local super walmart, the wifi router is perched above the doors in the
garden center. Maybe it's a signal boosting unit but there's a wired router
next to it, looks like a linksys 24 port. I haven't wardriven walmart yet to
see what's up but the police station 3 blocks away has an unsecured wifi
running. (these cops couldn't run a speedtrap nor less a wardriver trap)

-terry

-----Original Message-----
From: Phil Frederick [mailto:flosofl () gmail com] 
Sent: Wednesday, July 26, 2006 11:59 AM
To: pen-test () securityfocus com
Subject: Re: Walmart using WEP

The coupon kiosks in Jewel (US grocery chain) are running FC 4.  I
actually saw one of them crash and recover and run through a Fedora
boot screen.  I'm not sure if they are self contained or simply thin
clients.  They scan in the bar code on your savings card and generate
a customized coupon list.  I am unaware of what the back-end is
running (i.e. Oracle, MySQL, etc...)

On 7/25/06, M. Shirk <shirkdog_list () hotmail com> wrote:
> Same deal with a local supermarket.  They even have the higher gain
antennas
> for Linksys, with the wireless router sitting right out on the Service
Desk.
> Shirkdog
> http://www.shirkdog.us
>
>
>
>
> > From: cracked () walmart com
> > To: pen-test () securityfocus com
> > Subject: Walmart using WEP
> > Date: 12 Jul 2006 22:54:34 -0000
> >
> > Walmart is using standard web encryption for their symbol barcode
scanners.
> >  This means that it's possible to sniff the network traffic and crack
the
> > encryption.  Once the WEP key has been discovered, false inventory and
> > sales information can be submitted to the Walmart databases.
>
> ---------------------------------------------------------------------------
---
> > This List Sponsored by: Cenzic
> >
> > Concerned about Web Application Security?
> > Why not go with the #1 solution - Cenzic, the only one to win the
Analyst's
> > Choice Award from eWeek. As attacks through web applications continue to
> > rise,
> > you need to proactively protect your applications from hackers. Cenzic
has
> > the
> > most comprehensive solutions to meet your application security
penetration
> > testing and vulnerability management needs. You have an option to go with
a
> > managed service (Cenzic ClickToSecure) or an enterprise software
> > (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
> > help you: http://www.cenzic.com/news_events/wpappsec.php
> > And, now for a limited time we can do a FREE audit for you to confirm
your
> > results from other product. Contact us at request () cenzic com for details.
>
> ---------------------------------------------------------------------------
---
> >
>
> _________________________________________________________________
> Express yourself instantly with MSN Messenger! Download today - it's FREE!
> http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
----------------------------------------------------------------------------
--
> This List Sponsored by: Cenzic
>
> Concerned about Web Application Security?
> Why not go with the #1 solution - Cenzic, the only one to win the
Analyst's
> Choice Award from eWeek. As attacks through web applications continue to
rise,
> you need to proactively protect your applications from hackers. Cenzic has
the
> most comprehensive solutions to meet your application security penetration
> testing and vulnerability management needs. You have an option to go with
a
> managed service (Cenzic ClickToSecure) or an enterprise software
> (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
> help you: http://www.cenzic.com/news_events/wpappsec.php
> And, now for a limited time we can do a FREE audit for you to confirm your
> results from other product. Contact us at request () cenzic com for details.
----------------------------------------------------------------------------
--
>

----------------------------------------------------------------------------
--
This List Sponsored by: Cenzic

Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to
rise, 
you need to proactively protect your applications from hackers. Cenzic has
the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request () cenzic com for details.
----------------------------------------------------------------------------
--


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to rise, 
you need to proactively protect your applications from hackers. Cenzic has the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------