[NCLUG] (offtopic) WLAN wardriving in FC

Mike Loseke mike at verinet.com
Wed Oct 9 11:33:38 MDT 2002


Thus spake Michael Dwyer:
> 
> Michael Milligan wrote:
> > Michael Dwyer wrote:
> >> Benson Chow wrote:
> >>
> >>> Just curious...  but I guess I should change WEP keys more often.
> >>
> >> Don't count on the key too much.
> > 
> > If your AP supports it, you can enable access controls to only allow 
> > certain MAC addresses to associate.  That's been a reasonable way to 
> > stop freeloaders for me.
> > 
> > Of course, that doesn't stop eavesdroppers.  So ditto on the "use 
> > encryption at a higher layer".
> 
> Also, at least some wireless cards allow you to change their mac 
> address, so even this is of only limited use.  A dedicated hacker need 
> only sniff a valid MAC, and start using it.  Then, he's also in line for 
> a nice man-in-the-middle attack.  Spectacular.

 Solaris allows you to specify any MAC you like on any ethernet interface
right in the ifconfig command. Just another reason not to trust them.

-- 
                  | If you hear a Southerner exclaim, "Hey, y'all,
   Mike Loseke    | watch this!" stay out of his way. These are
 mike at verinet.com | likely the last words he will ever say.



More information about the NCLUG mailing list