Detecting Wireless LAN Users

technosavvy writes "With wireless home networks and applications like NetStumbler becoming so popular, it's surprising that there are so few consumer-oriented applications that help monitor who is connecting to your wireless network. Bob Brewin of ComputerWorld lists three tools with this purpose in mind in his article "Tools for detecting rogue wireless LAN users"." I just like running etherape.

New Security Model needed for 802.11 networks

[Ocelot+Wreak]

Hey,
This is all good for network security assurance and auditing, but doesn't fix the basic security problems with using WLAN 802.11 technology. I suggest that we use a new security model for WLAN security:

1) Obscure SSID names and WEP should not be used on your WLAN just to provide management/users with a false sense of security;

2) Put the WLAN access point outside your firewall (layer 1 security);

3) Use firewall VPN technology for layer 2 security;

4) Use IPSec protocol for network layer 3 encryption;

5) Use digital certificates for layers 4-6 strong authentication;

6) Enforce Corporate security policy on WLAN deployment & use;

7) Regular audit and security assurance work to detect the addition of new WLAN points to your network.

There are good reasons for using WLANs, and you probably can't stop the keeners from adding access points, but you can try to mandate how they will be added in a secure and managable fashion.

Cheers,
-wjc.