What is Digg?173 Comments
- andrew522, on 11/07/2007, -3/+299I secured my neighbor's wireless network for them ;)
- Haroldx, on 10/12/2007, -10/+290even the mirror is a little slow, here
-->
Months ago I hijacked my neighbors LinkSys Wireless Router, reconfigured it by calling it my own and blocked all other users from using it except myself.
Am I a hacking genius? Do I have mad skills which allow me to read streams of code on a monitor as we saw in the movie “The Matrix”? Perhaps I am some 14 year old malicious kid pounding away on my keyboard with Cheese Puff stained fingers!
Not quite! What I am is a computer user who went to Best Buy, like you probably did and picked up a new LinkSys Wireless Router because my old one died.
I plugged in the new wireless router and used my wireless XP computer to automatically connect me to the default “linksys” router. Being the security conscience person that I am as soon as I was connected I went ahead and personalized the router.
I started by renaming the router from “linksys” to a more personalized name. I turned off SSID broadcasting and ensured I turned on wireless encryption. I even went to the point where I turned on MAC filtering and personalized the router just for my MAC addresses.
Over the past few months the router would seem to go off and on at odd times but I would say I had 95% uptime with a solid internet connection. As I have 3 wireless computers, a Wireless Tivo and an Xbox 360 all using my personalized wireless connection I never gave my network a second thought.
Early this morning I needed to add a new computer to the network. This time the computer was hardwired via an Ethernet cable directly to my LinkSys router. I literally plugged the computer into the router and right away I had an Internet connection.
What I wanted to do was share-out my drives so the new computer could read data off of other computers on the network but for the life of me I could not figure out why the new computer on the network could not see any of my other computers.
All the other computers could see each other just fine and sharing has never been a problem with me in the past. I checked to see if they were all on the same IP block and that nothing was causing conflict.
Since I only setup MAC Filtering for Wireless I did not think I needed to do anything special with the new computer.
Either way, I decided to log into the LinkSys administrative screen using my existing wireless laptop. With my web browser I typed in the default Gateway IP address (192.168.1.1) that took me to the LinkSys login. I typed in my username and super strength password which then took me to the configuration screens that I had not seen since I setup the router for the first time.
I looked around, clicking away at all the options and I could not see where I was going wrong. Then I started to get a hunch. I clicked my way over to the DHCP Client Table list and took a look at all the IP addresses. It became clear to me my new computer was not on the same network as all the other computers in the house.
So what gives?
Using my new computer I popped open the browser and typed in the default gateway as I had done before. I was taken to the same LinkSys login page but this time when I typed in my username and my super strength password it would not authenticate me.
Just to make sure I was not loosing my mind I reentered the password several times. I even looked at the Ethernet cable on my floor and followed both ends of the wire. I was sure the new computer was plugged into my router.
On my laptop I could log-in to the router using the same IP but with the PC that is hardwired to the router I was getting an authentication screen but could not log in.
It then dawned on me; my Laptops are not wirelessly connected to my router. I must be connecting to another router and if this is the case I must have hijacked someone else’s router and configured it as my own.
To confirm this, I typed in the default username and password that comes with LinkSys using my hardwired PC and I immediately authenticated. It turned out I was right, unintentionally several months ago I had taken over someone else’s router and locked it down.
Considering I had locked this other router down so tight and that there was no way anyone could connect wirelessly I wondered why this person never took the router off line.
Then I realized it was possible he could be connecting using an Ethernet and if he did that it was possible he could see any of my shared files on the network.
I got that panic feeling where I realized I had just left the front door open to all my files for several months. So just to make sure, I went back to the DCHP Client Table on this person’s router and looked for any extra devices apart from my Tivo Wireless, Xbox and laptops.
As it turned out the only devices connected to the network were my own. Phew, what a relief! It appeared I was the only person using that router.
Going back to the question as to why that person never shutdown his router if they could not use it I realized that if I got confused as to whose router I was using, perhaps this person was confused as well.
Using my new computer which is physically connected to my real router I took a look at the DHCP Client Table. It turned out that this person had been using my router.
Hey what a jerk, he’s hijacking my router!
Sine my router has been sitting here pretty much un-configured out of the box, I found that a few of my neighbors took some interest and have been using my wireless router for their wireless internet access as well.
Looking at the DHCP Table, it appeared I was serving up quite a few of my neighbors with free wireless access.
I spent another 30 minutes doing some quick housekeeping work. I released control of his router by setting it back to the default settings. I then regained control of my router and booted everyone off and in the end I was able to view the new computer on my network.
Moral of this story, in a world where we all shop at the same stores and buy the same wireless equipment it is very easy to unintentionally hijack someone’s wireless connection. Thus, peoples files are not as safe as they think they are! - washingtonydc, on 10/12/2007, -3/+130right now I see about a dozen different wireless networks in my apartment building--and more than a handful are default names that come with the router itself. oh people, put at least a semblance of security into your wireless networking!
- drewhenson, on 10/12/2007, -4/+88I see about half a dozen in my dorm. Its a shame no one had changed the default password.
- merreborn, on 10/12/2007, -0/+83"WEP 128bit can be broken in 10 minutes (literaly)."
And a completely unskilled thug can get into your front door in 15 seconds using a bump key.
Locks only keep honest people out. - Takteek, on 10/12/2007, -4/+80@ andrew522
With or without their knowledge? =P - D3koy, on 10/12/2007, -1/+71You're like the network fairy....
- bigd063, on 10/12/2007, -3/+70I help my neighbors out with their security. Every time I see an unencrypted wireless network, I change the network name, channel, and router password. No one ever says thanks though.
- Blandyman, on 10/12/2007, -10/+76h0dg3s:
I guess you're just too ***** stupid to understand what blogspam is. - pixelguru, on 10/12/2007, -1/+67From the living room couch in my townhouse, I see 9 WEP secured wireless routers (including mine) and 6 unsecured, including 3 with default names like linksys and netgear. I can double that number if I go out on the deck.
- panique, on 10/12/2007, -1/+65"I don't know what happened. Suddenly our wireless network stopped working. I called a guy out to fix it, and he asked me for the router password. I'm like 'password, what password'. He said it would cost $100 to reset the password then reconfigure the network so it would work again."
- unknownsoldierX, on 10/12/2007, -3/+63@pixelguru
Those WEP encrypted networks, including yours, can be considered in the "unsecured" category as well.
Do yourslef a favor and switch to WPA2. - herchenroder, on 10/12/2007, -0/+57This is why you should always configure your new router with a hard wire before you turn on wireless networking.
/obvious - andrew522, on 10/12/2007, -4/+52nope.
- euphemizeme, on 10/12/2007, -3/+49How I DDOS'd your webserver: I dugg your article.
- Tenlow, on 10/12/2007, -3/+47I see a bigger glitch. He says he's all security conscious, but he's running an unpatched version of windows.
- ohmar, on 10/12/2007, -2/+46@rocketeerbkw
+digg for the funny idea
-digg for the stupid goatse reference - andrew522, on 10/12/2007, -4/+40OMFG BLOCKED
- SIRBERUS, on 10/12/2007, -20/+56http://www.duggmirror.com
- firefoxman, on 10/12/2007, -4/+39http://duggmirror.com/security/How_I_Hacked_Your_LinkSys_Router_Which_You_Probably_Bought_at_Best_Buy/
- adml_shake, on 10/12/2007, -0/+32You are you new to the internet? Better check your logs....
- __J__, on 10/12/2007, -0/+26"Why go and mess with your neighbors routers and changing their settings, if anything go and tell them in person."
This seems like a nice idea, but you expect people to go door to door asking if they have their wireless secure? There is no way to know which unprotected router belongs to who.... - vraa, on 10/12/2007, -6/+32Linksys WRT54GL - 60$
dd-wrt firmware - five minutes.
Knowing that you've secured your router reasonably well and aren't suspect to default attacks?
I'd say priceless, but it's way too cliche and I can't stress enough how important security is. You don't walk around waving the keys to your car or flash your wallet filled with cash to random strangers on the street, why should your home network be the same way? - inactive, on 10/12/2007, -0/+25There's no use blocking him... he just created that profile today, and will create another one tomorrow (if not, sooner)
- chriskzoo, on 10/12/2007, -3/+28I give mine names like "Child Porn" and "Dirty Sanchez" and that way I know nobody will try to connect.
- inactive, on 10/12/2007, -0/+23Can someone explain to me how where the router was purchased maters at all?
- soogy, on 10/12/2007, -2/+25Sounds like this guy originally set up his network via the wireless connection, rather than through a wired line. That would explain why he accidentally configured someone else's router instead of his own.
The moral of the story: always configure your wireless router through a real ethernet line. - sulf, on 10/12/2007, -5/+28I'm in ur router stealing ur bandwidth...
- vraa, on 10/12/2007, -4/+25The only problem with that is what if someone uses your open network to email spam? Or uses it as a gateway for a botnet or ... the list goes on.
I personally have no problem with folks using my network either, I think it's a nice thing to do, but I have bandwidth locks on it @ 5k/sec each way. That's good enough for webbrowsing, but it should prevent most of the mass attacks. - RocketeerBKW, on 10/12/2007, -16/+36easiest way to let your neighbors know about their vulnerability is to use their shared printer to print out a "your a dumbass" page. Oh, and don't forget the goatse.
- sychodelix, on 10/12/2007, -1/+21The trick is, read the ***** manual and anybody with any sense knows that you ALWAYS configure a router with a direct ethernet connection before you do anything else. If both people would have done this, it wouldn't be an issue.
Never, EVER use a wireless card to first setup the router or this might happen to you. - Haroldx, on 10/12/2007, -4/+24You can configure it wirelessly. I mean, anyone can hack someone's router with just a PSP. Get on the internet browser, point it to the gateway, login with default password/username, and mess with the settings and you're done. Or if you're just really wanting to own them upload a broken firmware
- takeda, on 10/12/2007, -2/+19"From the living room couch in my townhouse, I see 9 WEP secured wireless routers (including mine) and 6 unsecured, including 3 with default names like linksys and netgear. I can double that number if I go out on the deck."
So basically there is 15 unsecured networks?
WEP 128bit can be broken in 10 minutes (literaly).
I'm actually thinking to open my network to others (I know that sometimes it's useful when your internet stops working :) but first I need to put rest of my network behind firewall :))) - WaterDragon, on 10/12/2007, -0/+15.And Digg accidentally killed your server!
- andrew522, on 10/12/2007, -1/+15ok, stop it.
- crossmr, on 10/12/2007, -1/+13it has nothing to do with where you buy it. Whether I get a new linksys from best buy, circuit city, or bob's hardware shack, the default password is always the same. I've got 65 networks I can pick up from my apartment, pretty fun, probably 15-20 are unsecure, but the walls are thick so signals aren't that strong.I can occasionally connect to another one, but there is rarely anything good.
- JaredRR, on 10/12/2007, -3/+14Are you prepared to defend yourself in court when your neighbor is pulling down music on Bittorrent and sharing them back out again on your connection?
If it weren't for those types of legal snafus, I'd probably share my connection as well. - Kemo, on 10/12/2007, -0/+10I wouldn't call that a hack, I'd call it stupidity.
- opensourcemaven, on 10/12/2007, -0/+1019 where i live off-campus from georgia tech, a whopping 7 are "linksys", there are 2 "belkin54g", there's also "Krunk", and then "BtchPls"
- RickLeeFS, on 10/12/2007, -0/+9Once while travelling I was looking for an open router to find Internet access. I saw one called "Virus Server". I figured it was just a ruse to keep people out, but I still didn't connect to it.
- RoflMyWaffle, on 10/12/2007, -1/+10well, i guess im lucky living in dumbasshickcountry, FL where even a scan with a long distance cantenna comes up with no results.
- Dhalgren, on 10/12/2007, -0/+9"Linksys WRT54GL - 60$
dd-wrt firmware - five minutes."
Hear, hear. The dd-wrt firmware is awesome, you can even run that router as a VPN server. Also, it is much more stable than the commercial firmwares. With my old router I would constantly have to restart it at least once or twice a week. No problems once I replaced it with the WRT54GL and dd-wrt. - yugiohdan6, on 10/12/2007, -0/+8it doesn't...
- Blackforge, on 10/12/2007, -2/+10My DD-WRT Site Survey shows a "ButtPirate" nearby, but it seems to be clamped tightly shut....
SSID MAC Address Channel Rssi Noise beacon Open dtim Rate Join Site
ButtPirate XX:XX:XX:XX:XX:XX 6 -78 -90 100 No 0 12(g)
MAC Address censored for prosperity. - undersky, on 10/12/2007, -2/+10I did what the writer of the article did ever since wireless router came out 2~3 years ago....MAC blocking, password, I did them all, this is nothing new. If your router get hacked, you just need to reset it by holding down the reset button while you plug in the AC.
- Matt88, on 10/12/2007, -2/+10I found out that my neighbour has an unsecured wireless network because my son was able to detect it and log in with his Nintendo DS (accidentally, as we were setting up a wireless usb dongle for the DS at the time).
Anyway I told my neighbour that he should secure his network and he said that he would look into it.
Months later I am setting up my own wireless network and find that my neighbour's is still unsecured, but he has changed the default password probably thinking that it was all that he had to do. I better go and help him out to lock down his connection. - Po0py, on 10/12/2007, -2/+10This is not a hack.
Just a big ol' woopsie. - bagpipegoatee, on 10/12/2007, -1/+9Yes and no. You're right with your logic, but it's easy and you might as well.
- MajorOutage, on 10/12/2007, -0/+7Because then that machine would have to be on 24/7 for wireless clients to access anything?
Not to mention how much ICS programs usually suck... - screensnot, on 10/12/2007, -0/+7When I bought my WRT54G, it did not allow wireless access to the config page. It was an option that you specifically had to turn on (over a wired connection).
Maybe Linksys has changed the default setting on this.
Maybe the owner of this router enabled wireless config, but didn't change the SSID or password.
Or maybe this story is pure fiction (this is where my money is at). -
Show 51 - 100 of 168 discussions
Browsing Digg on your phone just got easier with our enhancements to the 
© Digg Inc. 2009
— Content created and posted by Digg users is