Detecting Wireless LAN Users

← Back to Stories (view on slashdot.org)

Posted by CmdrTaco on Tuesday September 3, 2002 @04:15AM from the beware-the-bandwidth-leech dept.

technosavvy writes "With wireless home networks and applications like NetStumbler becoming so popular, it's surprising that there are so few consumer-oriented applications that help monitor who is connecting to your wireless network. Bob Brewin of ComputerWorld lists three tools with this purpose in mind in his article "Tools for detecting rogue wireless LAN users"." I just like running etherape.

4 of 159 comments (clear)

Min score:

Reason:

Sort:

NetStumbler for Linux??? by NetMasta10bt · 2002-09-03 04:28 · Score: 4, Informative

Check out Kismet over here. It can run on Linux PDA's like the Zaurus and iPaq as well as your laptop. It also has GPS support and speach output (through festival).
Ummm.... by tgd · 2002-09-03 04:40 · Score: 3, Informative

In most places in the country, people pay individually for their garbage service, water and gas. If I'm paying by the bag, you better damn well not put your trash in my can.

The only service that can't be stolen is free service, and there simply isn't such a beast. Hell, even roads aren't free. If you have an unregistered car (and thus, have paid no taxes), you can't legally use the road.
MacStumbler... by tarkin · 2002-09-03 05:02 · Score: 2, Informative

...might fulfill your powerbook wardriving needs :

get it here

I tested it and it works great

--
blaah !
Re:New Security Model needed for 802.11 networks by Anonymous Coward · 2002-09-03 05:19 · Score: 1, Informative

actually both IBM and AirDefense's solutions are not for network enumertation they are for IDS, i can tell you how well they work but they dont sound like auditing tools to me...

as for VPN securing your wlan this i can dispute...

a friend and i gave a talk at Black Hat this year on advanced wireless attacks, in this we broke a VPN implimentation wide open with a wireless man in the middle attack, in this attack we forced a victim onto another channel where we then had an AP with the same mac and SSID as his original...this lets us beat any sort of VPN that doesnt use strong two way authentication...

so yes you said to use PKI there, but i submit to you that people are simply not doing this, if they were going to start they would have a long time ago and so any solution that the general populous of administrators deem too cumbersom or otherwise not worth the trouble to impliment will not be...

what you are basicly saying is that all you need is a VPN and you dont need to watch your network...im glad my bank doesnt take this solution for their security, a bank vault with no security cameras...

wireless security is alot harder to attain than wired equivelant...in the end you're going to need more than just network enumeration, vpn's and auditing tools...you are going to need something to monitor and manage the thing, not sure which one of these will prove the best, but im glad someone is working on the problem...

--Abaddon

http://802.11ninja.net