blogs.zdnet.com — It's been two years since I've wrote "The six dumbest ways to secure a wireless LAN" and it's probably been one of my more successful blog entries ever. Since that time I've written a free electronic book on enterprise wireless LAN security for anyone to use and download from TechRepublic. Since it has been two years, I'm going to update the ..
Mar 26, 2007 View in Crawl 4
Closed AccountMar 26, 2007
I can see the logic in using 802.11a, because no one else does!
Closed AccountMar 26, 2007
by tHePeOPle 5 hours ago + 25 diggs "If you rename your network SSID to "Sarcasm", jpowlus will be confused and disoriented. It works 100% of the time."----------------------------Oh f**k that is funny!
diggnationdevonMar 27, 2007
Oh. I didn't read that he meant by security. That makes sense.
ottoMar 27, 2007
>>>"I still don't see the *harm* "Here's the harm: People who use them as security devices might think they are secure when they are not.Let's say you disable the SSID broadcast. Okay, so your neighbors can't connect to your system (because they don't know how to do it without the handy network list entry). Fine. Great. No problem.Except, do you really know the capabilities of your neighbors? You're totally unprotected. Anybody can run a wireless sniffer program and see everything that goes over your network. Disabling the SSID doesn't stop them from doing anything. You might be thinking: "hey, they still can't steal important stuff like bank information. That's all encrypted by the browser... right?"Think again. If you disabled your SSID broadcast, you're vulnerable to a session hijack. I can come along with special software. I read your SSID, and then I send out SSID broadcasts with that SSID. Then I send a packet forcing you to disconnect. You never notice it, because your system immediately reconnects. Only now it reconnects directly to me, because I'm actually broadcasting the SSID and your router is not. Now you connect to me and I connect to your router. I sit between you two and do a man-in-the-middle thing to a) capture all your traffic and b) capture all your SSL traffic as well. I can run a proxy and have total control over what you see. And since you were unencrypted this whole time, I know exactly what sites you go to and can pre-program my system to handle those sites without any tricky issues.If you're running unencrypted, then you're insecure. Period. These 3 items that everybody thinks they should use are not security devices. They're all easily bypassed. And if you're encrypted, they don't add *anything* to your security. the "layers" idea is fine, but these are not valid layers of security.
koickMar 28, 2007
bury
norapersApr 3, 2007
omg....wi-fi....sux more than i thought.....nobody really needs wi-fi you know? its just a luxury.......o well, sumtimes i use it..... sumtimes i hack other peoples wi-fi.HAHAHAHAHAHFrom logicbomb:"Please ignore this. Apartments are much more fun to connect wirelessly in when you have 20 options to choose from :)"Ah Touche!!!!!!!! Those dumbasses in my apartments are just begging you to waste their money..... And 94% of the time, ITS FREAKIN BROADBAND!!! HA wut suckers. Better than that sh*t dial-up. ignore m crappy eenglish.... Imm at work and im on my diminishing lunch break time.....yea. i need a life BITE ME! HA
darksatApr 27, 2007
Best ways to secure your wireless network.<a class="user" href="http://darksat.x47.net/topic/764.0.html">http://darksat.x47.net/topic/764.0.html</a>
dmitriyvozJun 25, 2007
Yah, this sucks. Too much BS about him. Just give the f**king info. No one cares about your life history on your past blog posts. Also, too much unrelated BS links in the page. The same theme on Russian sites: <a class="user" href="http://pivo.in.ua">http://pivo.in.ua</a> <a class="user" href="http://www.alcogol.kiev.ua">http://www.alcogol.kiev.ua</a>