[Slugnet] Student Jailed for Wardriving
Kelvin Quee
kq at kquee.com
Mon Nov 13 11:55:55 SGT 2006
> Please, use WPA/WPA2 instead of basic WEP. WEP never changes the
> key and can be cracked with modern tools within a few seconds.
> WPA/WPA2 at least negotiate a new session key every hours or so.
I would like to see someone in Singapore do that in front of me.
Seriously, I think the pseudo-weakness of WEP is a big campaign by
hardware manufacturers and Security "Experts" to push more people to buy
their latest access points and employ "harderning" services.
--
Kelvin Quee
kq at kquee.com
+65 9177 3635
Weblog About Marketing,
Communications and Technology:
http://blog.kquee.com
Edwin Lee wrote:
> My bad! i still havent got into the habit of changing the recipient to slugnet
> when replying to a post on the list. Too used to yahoogroups where i just hit
> "Reply" and fire away! :-p
>
>
>
> Regards,
> Edwin
>
>
>
> --- Mathias Koerber <mathias at koerber.org> wrote:
>
>> Edwin Lee said the following on 13/11/2006 10:49:
>>
>> any reason you didn't send this to slugnet but just to me?
>> [ feel free to quote my answer to slugnet if you want.. ]
>>
>>> Yup, agree... i always tell my friends to do a few things with a wireless
>>> router.
>>>
>>> 1. Change the default administration console username / password.
>>>
>>> 2. Change the default SSID and network name.
>>>
>>> 3. Enable whitelist MAC address filtering.
>> Correct. This alone is not sufficient though. The MAC is always
>> transmitted in clear. So to break into a system which has
>> MAC access control, you watch the network for a while,
>> record all uses MACs, then wait for one of them to go quiet.
>> You then reprogram your client with that MAC and you are in!
>> This worls with encrypted networks too, but to really get in you
>> now also need to know the encryption key.
>>
>>> 4. Enable WEP encryption.
>> Please, use WPA/WPA2 instead of basic WEP. WEP never changes the
>> key and can be cracked with modern tools within a few seconds.
>> WPA/WPA2 at least negotiate a new session key every hours or so.
>> (I believe there are better systems than that now too, but if you
>> muct support a range of clients, WPA seems to still be the best
>> at this time) If you are Kiasu, reduce the key-negotiation interval
>> to something less that 1h.
>>
>>> 5. Disable network advertising.
>> Ack, although that doesn't prevent the network from being seen
>> when there is traffic..
>>
>>
>> 6. Use SSH/SSL across your wireless network wherever possible
>> anyway. Just to protect your private data!
>>
>> M
>
>
>
>
>
>
>
> __________________________________
> What is the internet to you?
> Contribute to the Yahoo! Time Capsule and be a part of internet history.
> http://timecapsule.yahoo.com/capsule.php?intl=sg
>
> _______________________________________________
> Slugnet mailing list
> Slugnet at lugs.org.sg
> http://www.lugs.org.sg/mailman/listinfo/slugnet
>
More information about the Slugnet
mailing list