Re: A few bad apples... - dslreports.com

Author	All Replies
DaDogs Semper Vigilantis Premium join:2004-02-28 Deltaville, VA 2 edits	reply to Nightfall Re: A few bad apples... Nightfall; If you are accessing systems which you believe to be private and not available for putlic access, you are demonstrating a serious conflict between what you do and what you believe. If you believe it is wrong, you should not do it. However, as far as I am aware (and I used to do intercept work for a living). You do not need Title authorization to intercept an unencrypted 802.11b data streams. You do need wiretap orders to intercept cellular, mobile phone, and voice pager. Unless something has changed, you do not need authorization to intercept digital pager. It is not illegal to monitor public service communications fire, police, and rescue. As far as I am aware, and unless something has changed drastically, the only new protected communications since 1993 is the link between a cordless phone and it's base unit. Indeed that was not protected until the Supreme Court ruled on a drug smuggeling case out of San Angelo, Texas, where someone intercepted Arabic language communications between the handheld and the base and taped it.... circa 1993. Bottom line, you probably are not illegal if you are intercepting 802.1x but you may be illegal at the moment you associate with an access point. Anyone running a wireless sniffer should carefully research any assertions I made here because I have had little interest in the changes in the laws since 1993. A lot can change in eleven years. All that said, I run wireless sniffers from time to time. I have monitored networks where I was confident the owners of those networks would not approve of me having access to the network content. I have used the information gleaned to improve the security of anyone who would listen. I do not approach the vulenrable networks personally because to date I have not bothered with anything but networks which clearly should have been secured and which were not secured. I have spoken with state reps and asked them to talk with the cities and counties involved to make them aware they are not secured. So far this process has worked and not gotten me into trouble. I tend to be very cautious because this is one kind of play where they will definately shoot the messanger if the public is made aware of their stupidity. County and city officials really hate being made to look stupid. Personally I would like to see an application developed for the wardriver which would log into a completely unsecured AP which remained at it's defaults and set a WEP key, change the admin password, and log off all automagically. Then I would like to see about 500 war drivers running around the US with that piece of software running from their cars. Sounds harsh? Yeah, but it would damn sure get the people's attention and that needed to happen a long time ago. -- »members.ozemail.com.au/~lbrash/msjokes/
	to forum · permalink · · 2004-08-23 12:11:15 ·
Sodium Premium join:2003-12-02 Rice Lake, WI	Intercepting 802.11b data streams is not illegal per se, but once you logon to a network without that network administrator's permission you are breaking the law! The safest way to go wardriving is to disable the TCP/IP protocol and just log the access points on a map. I have had my laptop repossessed by the police for wardriving (long story, but essentially a friend got caught being stupid and I lost my laptop for a few days. I only used it because broadband is unavailable in the rural area where I live and I was leeching from rich people in the wee hours of the morning ). The idea you propose is interesting. It reminds me of a worm written by a whitehat hacker to patch I believe the NIMDA or CODE RED worm that attacked SQL servers. Anyway the worm did patch the code on the vulnerable machines it found, but it was a worm nonetheless and its method of propagation no different than the blackhat version. The effect? Thousands of logjammed servers getting DOS flooded by the whitehat version trying to propagate itself. Aside from the fact of being very illegal, the fact remains that if the people weren't intelligent enough to set a WEP key right off the bat, then how would they know what is going on once their computers that are connected wirelessly suddenly stop connecting to the internet? They will spend a few hours on the phone with tech support until they reset the router back to its default settings of open wireless, and then you will be back to where you started from. I believe the best solution would be to get rid of WEP immediately (WEP is totally open to bruteforce attacks on its encryption, no matter what the keylength) and either patch WAP (WAP is open to the MICHAEL vulnerability which will shut down the AP if flooded with packets) or come up with a new standard. In the meantime, manufacturers should be required to provide firmware upgrades to WEP-only routers that both require WEP encryption and require the change of password every so often to prevent brute-forcing the keys. Unfortunately, like most critical vulnerabilities, the damage has already been done and it would be very difficult to upgrade even half of the routers out there with built-in WEP because the firmware upgrade would have to be done voluntarily by the end-user. And now we are back to where we started, are we not?
Sodium Premium join:2003-12-02 Rice Lake, WI	to forum · permalink · · 2004-08-25 22:06:45 ·


Saturday, 28-Nov 14:45:40	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF