Airport Menace: The Wireless Peeping Tom ----------------------------------------
As a network security consultant, I travel very often.
Sometimes it seems that the airport is my second home. I
in reality, how to fly, is a time when no one can
You can contact me via e-mail or phone.
Never fails that something interesting has happened to me
Airport. I also met some famous people during my
Travel. Few monthsago, I met Frank Bielec, from
TLC show, Trading Spaces. But one of my favorite things
not to visit the airport are the waves of wireless Ethernet. I am
what I never surprised. I'm just glad that I know
More information about wireless Ethernet than the average road warrior.
The Dangers of Ad-Hoc Wireless Networking -----------------------------------------
Most people who have wireless Ethernet at home, or who have
Officeconnect to the wireless network from a
Wireless Access Point or AP. This method of wireless
Network is called "Infrastructure Mode". If you have a
Secure wireless network configured "Infrastructure Mode"
You use the MAC address filtering, a certain degree of
Cryptography and made some changes to the AP
to prevent only one of them or capture
For more information about DataConfiguration of your
"Infrastructure Mode" wireless network at a glance
"Wireless Home Network Security" on page Defending The Net
Links -----
http://www.defendingthenet.com/WirelessNetworkSecurity.htm
But for those who are not with "Infrastructure Mode"
and are configured to communicate from machine to machine,
or "Ad Hoc", there are some things you should know.
An ad hoc wireless network allowsCommunication with
other wireless Ethernet systems without using the wireless
Access Point. This is a kind of peer-to-peer configuration, and
It works quite well. The problem is that many people just set
it up and forget about it. A house is not a great
Problem, but if you could be on the road, there would be a
much pain. The airport is probably the best choice
to find ad hoc networks. Business men and women who have delayed
Re-activationtheir laptops and get to work
Completion of daily activities, the planning of agendas for the future.
I can not tell you how many systems I find in airport
configured this way. Not only in the terminal, but on
Level. About three months ago, shortly after we reached
Cruising altitude and were able to obtain our approval "
electronic devices ", I discovered that the gentleman two seats up
I had a laptop configured as Ad-Hoc. He walked by me
ten minutes later andcommented on what he wanted
my laptop. I thanked him and asked if his laptop,
and configured to use wireless Ethernet, he said yes.
In short, I showed that I could see
his laptop wireless Ethernet, and informed him of
Danger. Asked me if I could access his hard drive, and I
said that could be possible. He asked me if I
could, so I kept. After configuring my laptop to use
the same IP address --Address class as him, and typing "net use *
hiscomputersIPAddressc $ "" / user: administrator ", I
receive a warning that the connection was successful and
Drive Z: is now assigned to your computer. I have an advantage
List of directories on his hard drive and the man nearly had a
Heart attack!
He then moved on the seat beside me and we
spent the next hour or so configuring the laptop in a secure,
Starting with his computer secure local administrator
Account. At one point during the configuration, did
Statement that I was really lucky because his local administrator
Account does not have a password. My answer was for him, I
Get Lucky quite often.
Who else has a list of customers -----------------------------
Just think of the possibilities. What you have to lose if
someone is able to run only through the files and data on your
Laptop? What do you think your customer list on your laptop
(Wantthese) in the hands of a competitor? How about
Your personal finances (Identity theft ring a bell)? Many
People I talk to say before: "I really do not
nothing of great importance in this system. "Then
to think a little 'and begins rattling of things they never
really thought of before. Suddenly get
concerned.
The fact is that it is "Infrastructure Mode", or
"Ad Hoc" wireless Ethernet communications, if notright
configured and secured, can pose a significant risk. There
Thousands of articles on the internet about the dangers
wireless network is not configured correctly, but the number
networks does not seem to be more and nothing less.
If the force posture and reduce the risks ----------------------------------------- - --
Please note that should be your goal, the reduction
It is likely to become a target for computer
Compromise. When I grew up in South Philadelphia, I
I remember my father told me that if the corridor
Street, especially at night, high on foot, and the project
a position of strength and authority. Why, why bats
typically pick out those who are looking like an easy target. The
The same applies to computer security. Reducing the risk of
configuration goal of buying your system with a strong
Security policy.
When IRisk assessments, to create a list of
possible objectives and possible methods of compromise. I
then prioritize the list by which system, with a special
Vulnerabilities that might be easier to compromise. On
At the end of the list, are not usually on my radar screen;
best, that the radar at large.
Conclusion ----------
If you are using wireless Ethernet, no matter what
Configuration, follow anSome of the rules and stay safe
against most types of compromise.
1. Above all, make sure that all user accounts are strong
Passwords, especially those who have administrative control
on your system;
2. Configure the wireless network to any type of
Cryptography. I know it is a great concern for
"crackability" of WEP, but if the work is everything
with, and then use it. It 'still useful;
3. If possible,MAC address filtering to limit
Bad connection systems to the wireless network;
4. Make sure the firmware for your AP and wireless
Ethernet cards are updated. These updates are available on
Your card or a support page AP.
Remember, if you compromise on your wireless network
is almost impossible to trace where the attack
come. Worse yet, think how many systems are
endangered,and nobody knows?
ไม่มีความคิดเห็น:
แสดงความคิดเห็น