WTF ... IS WTF!?
We are a collective of people who believe in freedom of speech, the rights of individuals, and free pancakes! We share our lives, struggles, frustrations, successes, joys, and prescribe to our own special brand of humor and insanity. If you are looking for a great place to hang out, make new friends, find new nemeses, and just be yourself, WTF.com is your new home.

Ignoring WiFi security

MaxPower

You're my number two
Staff
17,104
7,584
637
People talk about how insecure Wireless networking is. The technology is not the insecure part though, it's the methods of deployment. There is enough progress now in means of deployment, authentication, and encryption, to allow any small, medium, or enterprise entity to securely deploy a WiFi network. The problem is the ignorance of those who deploy some of these networks.

I work for a company that among many other things designs and deploys WiFi access and bridging for other companies. Part of my job is evaluating and correcting issues with existing infrastructure. Some of the things I see out there would curl your toes. When arriving at a customers sit, I can be running on of the numerous WLAN detection/evaluation applications at my disposal, and be on their network virtually before I park my car. There is No Excuse for this.

I think it's about time we start holding entities deploying wireless networking equipment, partially accountable for exploits carried out by rogue users who hijack said wireless network.

That is to say if it can be proven through investigation that the entity deploying the wireless equipment did so in a manner that is irresponsible, or in disregard of prudent security measures.

There is enough information out there to warn people, and organizations of the dangers of open, unsecured WiFi networks. There is no excuse to be easily hacked. They have to realize that by installing wireless equipment with inadequate security in place, they are not only putting themselves; but everyone at risk, by giving E-Intruders an anonymous venue for launching cyber attacks.

Anyone who wants to learn more about WiFi security can PM me.
 

Descent

Hella Constipated
7,686
149
157
Well...I for one can say that my network is not encrypted...But my house is on a hill, and my neighbors are below us. Your signal drops to 10% in the backyard. I don't really think any of our neighbors could access us...
 

MaxPower

You're my number two
Staff
17,104
7,584
637
If I sat down the block from your house, with a homemade Pringles can yagi, I could jack you and use your bandwidth to launch a DDOS against eBay.
I could log into an IRC channel and firing off a script, that would wake up thousands of zombie machines on the net, that have previously been infected by a dormant Trojan. I could then drive away, and the IRC server logs would show the command coming from a nic that bears your IP. I would then dispose of my wireless nic, because your router would have undoubtedly logged my MAC address.
This is only a hypothetical situation, but it can and, does happen. Wireless security has nothing much to do with your signal strength.
 

Infected_enigma

I pwn and you know it
231
0
0
MaxPower said:
If I sat down the block from your house, with a homemade Pringles can yagi, I could jack you and use your bandwidth to launch a DDOS against eBay.
I could log into an IRC channel and firing off a script, that would wake up thousands of zombie machines on the net, that have previously been infected by a dormant Trojan. I could then drive away, and the IRC server logs would show the command coming from a nic that bears your IP. I would then dispose of my wireless nic, because your router would have undoubtedly logged my MAC address.
This is only a hypothetical situation, but it can and, does happen. Wireless security has nothing much to do with your signal strength.
Ya actually you could do that pringles thing for quite a few hundred metres it is a big issue and needs to be addressed. I say put a warning sign on them saying "Please encrypt your wireless network to prevent other people using your service" and then if they're stupid enough not to encrypt it after that then lets hope someone lauches a DDOS against ebay on their network cause they were stupid enough not to encrypt it. I dont have a wireless network but I prolly will within a few years (when i will need a laptop) and when i do I'll surely encrypt mine.
 

dustinzgirl

Banned - What an Asshat!
26,094
183
0
Thanks Max. Anyone hear of that guy who was driving around naked picking up Wi-Fi's and jacking off to kiddie porn? They do the illegal shit on unsecure wi-fis so that the person with the connection get caught and not them. How sick is that. I live in the mountains, so I dont have to worry aobut anyone using my Wi-Fi.
 

</rant>

Tenderony
528
0
0
I got a wireless router, you cant pick it up with kismac. Need a 28 digit password to get on, once you know what the name of the network is.

Funny thing is my macs remember and reconnect automaticly, I was in the garden and two networks appeared.

It is good though with all these plug and play wireless kits you get in PC World. Idiots just plug them in and they work, thinking thats it. Means more free access points.

A mate of mine gets free broadband beacause I found a strong signal in his flat. If your flat hunting, scan the place. Big savings..

:thumbsup:

</rant>