Slashdot Mirror

← Back to Stories (view on slashdot.org)

Detecting Wireless LAN Users

Posted by CmdrTaco on from the beware-the-bandwidth-leech dept.

technosavvy writes "With wireless home networks and applications like NetStumbler becoming so popular, it's surprising that there are so few consumer-oriented applications that help monitor who is connecting to your wireless network. Bob Brewin of ComputerWorld lists three tools with this purpose in mind in his article "Tools for detecting rogue wireless LAN users"." I just like running etherape.

7 of 159 comments (clear)

  1. Not a complete solution by FreshMeat-BWG · · Score: 4, Insightful

    So what if you can detect when a rogue has connected to your wireless network. A passive data gatherer connected to your wireless network can often times gain enough information to connect to your network externally (Internet, VPN, etc). So just knowing that noone is actively using your wireless network doesn't mean that noone is hacking your network because of your wireless network.

  2. NetStumbler for Linux??? by NetMasta10bt · · Score: 4, Informative

    Check out Kismet over here. It can run on Linux PDA's like the Zaurus and iPaq as well as your laptop. It also has GPS support and speach output (through festival).

  3. Personally... by YanceyAI · · Score: 3, Interesting

    I know this is not a radical idea, but I'm going to say it again. I think broadband Internet access should become part of a city's infrastructure, like roads and garbage service. I'd even pay for it like a utility (like water treatment or gas). God knows it'd get rid of silly little disputes over 'stealing' or redistributing bandwidth and cable companies penalizing users for doing what they signed on to do...use lots of bandwidth.

    --
    Can I bum a sig?
    1. Re:Personally... by Nighttime · · Score: 4, Insightful

      I'd even pay for it like a utility (like water treatment or gas). God knows it'd get rid of silly little disputes over 'stealing' or redistributing bandwidth and cable companies penalizing users for doing what they signed on to do...use lots of bandwidth.

      Why do people think because they have an unmetered, always-on broadband connection they must use it flat-out all the time? I have a cable modem here and don't feel the need to be constantly utilising it to the max.

      If I can draw an analogy to the broadband ISPs being similar to the water companies. In the UK, most domestic homes pay a flat rate for their water supplies, for this they have the ability to turn on a tap at any time and not worry about the cost. Fetching your e-mail, light web browsing etc would be the equivalent of washing your hands, flushing the toilet or filling the kettle in terms of demand. A large file download, e.g. the latest distro ISOs would be akin to running a bath, washing your car or watering the garden. A spike in demand, but the water companies ensure that the water pressure is sufficient such that other users in the area are not affected. Same as for the ISPs, they can cope with occassional high demands on the system. Now, imagine the situation if everyone decided to wash their car at the same time or all shared the same bath time, or decided to just leave their taps running because they can.

      Heavy users of the water supply (domestic and commercial) are metered and charged appropiately for what they use so why should a resource like bandwidth be any different?

      --
      I've got a fever and the only prescription is more COBOL.
  4. Ummm.... by tgd · · Score: 3, Informative

    In most places in the country, people pay individually for their garbage service, water and gas. If I'm paying by the bag, you better damn well not put your trash in my can.

    The only service that can't be stolen is free service, and there simply isn't such a beast. Hell, even roads aren't free. If you have an unregistered car (and thus, have paid no taxes), you can't legally use the road.

  5. New Security Model needed for 802.11 networks by Ocelot+Wreak · · Score: 5, Interesting
    Hey,
    This is all good for network security assurance and auditing, but doesn't fix the basic security problems with using WLAN 802.11 technology. I suggest that we use a new security model for WLAN security:

    1) Obscure SSID names and WEP should not be used on your WLAN just to provide management/users with a false sense of security;

    2) Put the WLAN access point outside your firewall (layer 1 security);

    3) Use firewall VPN technology for layer 2 security;

    4) Use IPSec protocol for network layer 3 encryption;

    5) Use digital certificates for layers 4-6 strong authentication;

    6) Enforce Corporate security policy on WLAN deployment & use;

    7) Regular audit and security assurance work to detect the addition of new WLAN points to your network.


    There are good reasons for using WLANs, and you probably can't stop the keeners from adding access points, but you can try to mandate how they will be added in a secure and managable fashion.

    Cheers,
    -wjc.

    --
    "I figure you're here 'cause you need some whacko who's willing to stick his finger in the fan. So who are we helping?
  6. I don't get this by wirefarm · · Score: 3, Interesting

    Wait a sec -
    You know you're running an unsecured wireless network and you want tools to find the 'rogue' people using it?
    You're going to *buy* this tool?

    Why don't you just secure the network?

    Even WEP, with all its faults, will keep out casual stumblers. Use a VPN if you need real security.

    When I see a wireless network with no WEP and a DHCP server, I see a 'welcome Mat'. I assume it's OK for me to check my mail or browse the web a bit.

    In fact, I no longer have to do anything to set up my laptop - Os X Jaguar sets up the connection for me.

    There's an old saying that good fences make good neighbors - I think that applies to wireless networks as well...

    Cheers,
    Jim

    (PS - Go ahead, be a dork - mod me overrated instead of replying. I no longer care.)

    --
    -- My Weblog.