Slashdot Mirror

← Back to Stories (view on slashdot.org)

Fighting Rogue Access Points At linux.conf.au

Posted by timothy on from the your-boy-zoolander's-on-the-move dept.

An anonymous reader writes "Last week's linux.conf.au saw the return of the rogue access points. These are Wi-Fi access points which bear the same SSID as official conference hotspots. Often it might be a simple mistake, but sometimes it's more nefarious. To combat the attacks this year, conference organisers installed a Linux-based Wi-Fi 'intrusion prevention and detection system' supplied by sponsor Xirrius." At most conferences I've been to, I'd be grateful just to be able to get on any access point.

5 of 80 comments (clear)

  1. Cisco by Bios_Hakr · · Score: 2, Informative

    At a recent event, we utilized Cisco's Wireless Access Controller. We are an all-Cisco house, so it was an easy choice.

    http://www.cisco.com/en/US/products/ps6302/Products_Sub_Category_Home.html

    --
    I'd rather you do it wrong, than for me to have to do it at all.
    1. Re:Cisco by mindcandy · · Score: 5, Informative

      Cisco's WLSE has APs dedicated to TDOA and cleanair .. you can upload a CAD drawing of the building and pinpoint where exactly your TDOA aps are at and it will show you exactly where (on a virtual drawing) the rouge AP or client is.

    2. Re:Cisco by Christopher+B.+Linn · · Score: 2, Informative

      Full Disclaimer: I work as a software engineer at Cisco in our San Jose headquarters, and I must also say that this product does exactly what the submitter needs.

  2. I've always got an access point on me by Skarecrow77 · · Score: 4, Informative

    android phone + cyanogenmod + grandfathered verizon unlimited data plan = "it may not be perfect, but it gets the job done and it is still way better than the dialup connection I used back in the day."

    unless I'm in some building shielded with sandwiched lead sheets or something. in which case, hell, screw it, time to read an ebook.

  3. Or... by betterunixthanunix · · Score: 3, Informative

    Have an SSH server somewhere, and tunnel everything through that; this is the equivalent of using a VPN. If you see host key warnings, then abort -- better than the headache of dealing with someone pwning your bank account.

    --
    Palm trees and 8