Wifi Warning

Quote:

Originally Posted by Tomcat

oooooooooh, mis-understood, from the title thought you had just let off

There's always one...

Quote:

Originally Posted by netsurfer

As proof it could be done, after a conversation with a neighbour (quite a good friend), I cracked his 128bit WEP key, logged onto his network, changed his favourites, gained access to his amazon account and ordered a book on network security (could have deleted vital system files if id been that way inclined)

Needless to say he now is using WPA and VPN

Pete

How long did it take you to hack it?

[Viney]

Quote:

Originally Posted by netsurfer

As proof it could be done, after a conversation with a neighbour (quite a good friend), I cracked his 128bit WEP key, logged onto his network, changed his favourites, gained access to his amazon account and ordered a book on network security (could have deleted vital system files if id been that way inclined)

Needless to say he now is using WPA and VPN

Pete

Did you keep the book?

Wireless in general is weak as someone with a Linux box and the right software can still detect the hidden SSID / Network name, MAC address used on the network. Spoofing a MAC address is simple as well.

Dictionary attacks on WEP keys can break the keys in seconds, fastest I ever broke one was 2.3 seconds on 1 encrypted packet.

Still WPA is prone to these attacks. Like mentioned above, use very strong phrases/passwords and never use the default stuff!

The other one you need to look out for is fake wireless routers/access points, again these are easy to set up and sometimes work a treat in Hotspot area's

OK, read about this today, but didn't think about it much...

I chanfed the passwords on my router when I set it up, use WEP 128 with an unusual phrase used to generate the network key.

Keep meaning to implement MAC filtering, but keep thinking maybe tomorrow.

If all defaults have been changed how open is the router>

Stu

Quote:

Originally Posted by Baph

As many of you will know, I have warned a number of times about the insecurities that come with Wifi.

This has been published yesterday.

Did you actually read the article? It applies to ALL broadband routers, not just wi-fi ones and simply says that you MUST change the default password, else you'll likely get hacked, which is common sense really. That's got nothing to do with WEP or WPA.

I have a wireless router at my uni flat; i've never figured out how to make it secure (encrypted blah blah)

And Maria's home wireless isnt secure either.

Can you help us out a bit baph? I'll talk to you a bit more on MSN about it. I do worry about stuff like this myself

Matt

My wireless router is super secure at the moment, its switched off ! I only use it when I'm on call and I need to VPN in with my work laptop. Am I right in thinking that the MAC address is broadcast in every packet ? so If someone hacks your WPA/WEP they can just sniff, get the MAC address and then spoof it ?

Quote:

Originally Posted by Baph

VPN? I'm not sure why a home user (as that's all you've said about) would need VPN, but still, there could be things that you haven't said about in your post.

VPN Server in the router, then after connecting via wireless to the router, connect to the VPN using high level encryption..

Protects the likes of pop3 passwords etc even if you are unlucky enough to have your key cracked.

Quote:

Originally Posted by Grinch

How long did it take you to hack it?

20 minutes to generate enough traffic, less than 2 seconds for the software to extract the WEP key from the captured traffic.

Quote:

Originally Posted by Viney

Did you keep the book?

My neighbour has it now

I would recommend for anyone technically minded, check if your router is compatable with dd-wrt firmware here and if so, flash it and make use of all the extra features including vpn server
Pete