<OT> Recommendations

Mon Jun 6 08:36:10 PDT 2005

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A. Khattri wrote:

> On Sun, 15 May 2005, Collins Richey wrote:
>
>> This isn't going to be a 24x7-on part of my LAN. I'm just running
>> it off one of the wired ports to my hardwire router. Even with
>> WEP, I don't trust these beasts as far as you can throw them.
>> I'll turn it on when my daughter wants to bring up her laptop in
>> the basement, but that's about all.
>
>
> I know what you mean - I use 128bit WEP keys but I also have MAC
> address access control and the SSID broadcast switched off too.
>
>
Sorry, Mate.
But I could (given proper locality) still break in quite easily.  I'd
say give me anywhere from an hour to 6 hours.
SSID is still sent in packets, just not broadcast in the beacon.  
Kismet provides this.
MAC control is simple, since MAC's can easily be adjusted on the
cards, and those are sent in clear text as well.
128bit WEP is crackable within a couple hours with new methods.  I've
heard of those who have cracked it in 3 minutes, others 30min.  6
hours is a safe number since sometimes things just take longer.  This
uses AirCrack, TCPDUMP, two laptops, and airreplay.
BTW-  These numbers are for 802.11b.  802.11g would likely be much
faster to break.

Either way, a little knowledge, the right linux bootable cd and you're in.

- --
Matthew Carpenter
matt at eisgr.com                          http://www.eisgr.com/

Enterprise Information Systems
* Network Server Appliances
* Security Consulting, Incident Handling & Forensics
* Network Consulting, Integration & Support
* Web Integration and E-Business
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCpFNOso9lqh4MragRAtuSAJ9LzWw1ZlVNRJGhDpwbqS7eKdsUOwCfW4EY
csEpmGk/K0YC1FUUqXACfN4=
=BmyN
-----END PGP SIGNATURE-----