Aces High Bulletin Board
General Forums => The O' Club => Topic started by: Hawklore on May 12, 2006, 10:08:16 AM
-
Ok, I'm trying to find out a few things about a Wireless network.
First off,
How safe is it? How easily hacked can it be?
Also, can I have two computers on wired connections and still have a wireless connection going out for one or two laptops and that Nintendo DS?
We tried that damn wi-fi usb thing but it froze up our computers.
-
we are running 4 computers off of a wireless router that plugs into a cable modem, every once and a wile a computer will drop off the web and we have to reset the modem and router, other than that no problems.
you can set the router to secure network.
-
It is safe enough if you encrypt it Hawklore.
I have 7 computers connected to my WIFI router and there are no problems in general. May have to reset it a couple of times a month but that takes a few seconds to do.
-
If you want to use a router, especially wireless, there are 3 things you need to do.
First, change the default admin password to something unique.
Second, change the SSID to something unique. Disabling SSID broadcast does nothing, but changing it to something other than the default can help.
Third, enable encryption. WPA or WPA2 is best, but even WEP will keep the casual **** from hopping onto your lan.
If you do those three things, then you're probably ok using a wireless router. In fact, I strongly recommend that everyone with broadband use a router of some sort, wireless or not. If it's wireless, do the three steps. If not wireless, then you at least need to change the default password.
So use a router of some sort, but follow the 3 rules above and you'll be ok.
As for having both wired and wireless, yes it's possible but you really need some sort of encryption otherwise everyone nearby can hop onto your lan and use/abuse your computers including snooping for passwords, browsing your files, etc.
-
Originally posted by Nilsen
It is safe enough if you encrypt it Hawklore.
I have 7 computers connected to my WIFI router and there are no problems in general. May have to reset it a couple of times a month but that takes a few seconds to do.
Hmm... Maybe you just don't know there are problems?
I just printed out a WiFi "hacking guide" in Russian. Some things to study, some things to modify in their setup, i just need some practice.
WEP looks quite vulnerable. Don't know about WEP2 tho...
Edit: sorry mixed WEP and WPA :(
I absolutely love this one: http://www.remote-exploit.org/index.php/Hotspotter
All this stuff looks very interesting. And most of the home users here in Msk don't use any additional settings, they just plug the access point out of the box and use it to surf the net sitting in the bathroom.
Wolfala told me that "cantenna" design really works, so I spent $4 on connectors, another $4 on a 1L can of beer (Danish brand FAXE), and made a directional antenna. It's amazing, at home it seems to me that I sometimes catch SSIDs from stations that are across the river from my house 3km maybe, or reflections from at least 2 buildings... My neighbours always thought that I am insane, now they are sure: imagine a long-haired bearded guy sticking out of the window with a beer can in his hand at 03:00AM...
At some places I catch up to 3 non-secure stations that connect immediately at 54Mbps with DHCP working... Plug and play :D The more expensive the neighbourhood is - the less aware people are...
We installed our first WiFi AP here in IBCP about a month ago, and now i read all this stuff and don't know what to do. Thank god we have thick concrete walls :(
-
:rofl Boroda
As has been stated, the wireless will die every so often but it takes only a few seconds to reset. And yeah, encryption is a necesity.
-
Boroda.. wireless is _safe enough_ for 99,999% of the population.
Fore sertain businesses and individuals with extremly sensitive info on their networks they may not but this is hardly the case here.
-
Well at the momeny we're on a wired router..
I'd like to be able to use the Nintendo DS on the internet.
But it's USB WiFI think sucks bellybutton and freezes up a computer.
Any other way to get the DS on the internet without eating at McDonalds?
-
MAC address filtering <- easily bypassed
SSID Hiding <- easily detected
WEP <- easily hacked
WPA <- a little hard to hack, but still doable with 'offtheshelf tools' kids could use
WPA2 <- pretty much OK for now. You need to make sure all points are WPA2 compatible, many aren't
A good secure setup usually involves putting the wireless network into an untrusted zone, ie treating as if its the 'internet' and totally firewalled off, and making using connect to the network via an IPSEL or SSL VPN client.
And as eagl said, its not just an issue of people hopping onto your network and using bandwidth, the smart ones don't, they sniff traffic, read your emails, watch where you browse etc.
-
Originally posted by john9001
............. every once and a wile a computer will drop off the web and we have to reset the modem and router, other than that no problems.
i have dsl and same problem with droping connection
is any way to prevent that?
its mostly happend when somone use full bandwich (downloading something large or form fast source
-
Vulcan - I'm curious - how do you bypass MAC filtering (general principles not detail).
??
-
Originally posted by Sparks
Vulcan - I'm curious - how do you bypass MAC filtering (general principles not detail).
??
Thats what I was wondering. I use MAC address filtering, only thing I have on wireless is my laptop. wireless security is really a none issue where I live as its 3-4 miles to the closest neighbor anyway. But still curious as to how its easily bypassed.
-
i think you can change the mac adress on your pc to match that of the pc that has access...
dunno how to do it myself, but its supposed to be easy
-
Its easy. First you do not have to associate with a wireless network to sniff it. Just monitor the network for traffic when its being used and you have a legit MAC address. It used to be a special utility and type of wireless card was required to change your wireless cards MAC address, now many wireless cards support changing the MAC address in the driver.
Sniff -> Copy -> Paste and its done. I'm sure my current laptops builtin intel wireless does it.
And do forget, if all you're doing is MAC address filtering someone can just monitor traffic without needing to associate, read your emails,sniff for passwords, see what websites you go to, capture IM sessions - all with easy to get copies of commercial tools (or more difficult to use freeware stuff).