Slashdot Mirror

← Back to Stories (view on slashdot.org)

Windows 7 Can Create Rogue Wi-Fi Access Point

Posted by timothy on from the feature-not-bug dept.

alphadogg writes "Windows 7 contains a 'SoftAP' feature, also called 'virtual Wi-Fi,' that allows a PC to function simultaneously as a Wi-Fi client and as an access point to which other Wi-Fi-capable devices can connect. The capability is handy when users want to share music and play interactive games. But it also can allow on-site visitors and parking-lot hackers to piggyback onto the user's laptop and 'ghost ride' into a corporate network unnoticed." While this means a bit more policing for networks meant to be locked down, it sounds like a good thing overall. Linux users, meanwhile, have had kernel support (since 2.6.26) for 802.11s mesh networking, as well as Host AP support for certain chipsets.

9 of 123 comments (clear)

  1. Hard shell, gooey centre security obsolete by anti-NAT · · Score: 4, Insightful

    De-perimeterization (perimeter erosion) Explained

    Distributed Firewalls

    --
    The Internet's nature is peer to peer - 20050301_cs_profs.pdf
  2. Serious issues found with X by Josh04 · · Score: 5, Insightful

    Microsoft Z has been found to contain feature X, which purports to do Y but used incorrectly could instead cause W! Linux has had feature X since 20VV, the 'Year of the Linux Desktop'.

    1. Re:Serious issues found with X by goldaryn · · Score: 5, Insightful

      Microsoft Z has been found to contain feature X, which purports to do Y but used incorrectly could instead cause W! Linux has had feature X since 20VV, the 'Year of the Linux Desktop'.

      True. Incompetent users are the problem irrespective of platform. Never forget - computers do what you tell them to do, not what you meant them to do

      Watch us both get modded down now

    2. Re:Serious issues found with X by natehoy · · Score: 4, Insightful

      No, a VENDOR who wants to sell you lockdown software is complaining that it can be made to work.

      --
      "This post contains words, known to the State of California to cause thought. Wash brain thoroughly after reading."
    3. Re:Serious issues found with X by hairyfeet · · Score: 4, Insightful

      While all that you say is true, from what I understand (and I could be wrong) Windows doesn't have this activated by default, you have to turn it on. Any Linux install has the capacity to be an unsecured server, just hanging out there in the breeze for anybody to infect. We don't say that is a bad thing though, do we?

      MSFT added a feature. Now this feature, which could be very handy for those that need to share files or want to set up a quick gaming LAN, can be misused and cause security problems. That a handy OS feature can be misused and cause a security problem applies to just about every single program that can access the net. As for corporations? Well if they pay bottom dollar and and only hire the cheapest most underpaid flunky they can get to save a few buck, and they get pwned, I should care....why exactly? Good things cost good money, the same goes for people. if a company is so badly run that this single feature can completely turn their network security into a house of cards I think they have bigger problems, don't you agree?

      In the end the whole TFA felt to me like creating a bogeyman for them to defeat with their super neato security product. But you and I know security doesn't come in a can. it isn't some product you can just slap on the network and all is well. Security is an ongoing process, that must be planned, implemented, and adapt with changing conditions. And that all needs competent staff to implement correctly. in the end companies that go for bandaids like the TFAs product (which may be good for all I know) will end up failing miserably when some fool on their network does something stupid. This feature won't kill any networks, piss poor admins and security policies that don't exist will take care of that all by themselves, thanks.

      --
      ACs don't waste your time replying, your posts are never seen by me.
  3. No biased reporting here on /. Just the facts. by DiamondGeezer · · Score: 4, Insightful

    I don't participate much in the bore-a-thon dick-measuring contest called "Windows v Linux" on /. but for the record, its crap reporting to claim that Windows 7's "SoftAP" is a "rogue" which allows "ghostriding" while Linux's "802.11s mesh networking" is somehow better because it pre-dates Windows 7 when it allows the same problem which needs to be policed.

    I have lots of criticisms of Windows generally and I run XP and Kubuntu, but SoftAP is a network management issue for corporate networks, not a "rogue".

    --
    Tubby or not tubby. Fat is the question
    1. Re:No biased reporting here on /. Just the facts. by kevingolding2001 · · Score: 4, Insightful

      Also, how many corporate machines are running with wireless cards?

      More than you might think. At my work they issue everybody with laptops. They all have inbuilt wireless.

  4. What is this crap by CSHARP123 · · Score: 5, Insightful

    Any OS will have problems if used incorrectly. This biased reporting is BS. It needs to stop.

  5. Re:Easy Solution by DavidD_CA · · Score: 4, Insightful

    Group Policy can disable this for all domain users in one click.

    And even if left on, what admin would allow a non-authenticated user access to anything on the network?

    Besides, if I had enough access to a machine to turn this feature on, couldn't I just take control of it via traditional means? Why bother.

    --
    -David