republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Out of Thin Air » Where...
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
Want security? Just stay under their "radar" »
« How long would it take to...  
AuthorAll Replies


gdead

@eisg.net

reply to Sisqo
Defensive Techniques

Howdy,
So I've been involved in the Airsnarf project (I presented with Beetle at BlackHat Federal in DC a few months ago on the project). I've got a few things to say about this tool and the write-up about this.

First off, the type of attack that airsnarf carries out is not rocket science. It is not about breaking encryption but rather about tricking the client. The attack can be fully explained in about 5 minutes to a level that anyone with familiarity with 802.11 can fully understand it.

HOWEVER, not a single OS vendor, security tool provider, or driver vendor alert the user that this kind of attack is being performed. This is completely a layer 2 attack that should be caught by any wireless security tool. At the point of our talk at BH, nothing existed that would tell the user "hey, bad things are afoot... you should stop using this network". Airsnarf is a wakeup call to the vendors.

To that end, we also wrote the hotspot defense kit (HSDK). It's designed to alert the user that there is a layer 2 attack underway. It can be downloaded from the airsnaft page. Currently it only runs on OS X, but we are working on a windows port.

Finally, I am not a 3l337 blackhat hacker. I coauthored 802.11 Security through O'Reilly. I also try to educate as many people as I can about wireless security through talks, mailing lists, etc.

later
to forum · permalink · 2003-11-26 21:36:59 · Reply to this

TheNerdShow

join:2003-11-16
Anchorage, AK

3 edits		reply to Sisqo
Re: more hackers

This applies to home and business networks using popular wireless networking gear and using a form of encryption or password protection. The issue is moot since most people don't even bother to password protect their networks.
--
»thenerdshow.com »nerds.tk
to forum · permalink · · 2003-11-26 18:44:16 · Reply to this


Sisqo
World Champs. Babe Who?
Premium
join:2002-08-14
Methuen, MA

reply to Vamp
said by Vamp See Profile:
by listing the name of the tool publicaly is only educating more people in hacking..
This stinks, so how can someone really protect themselves? Now does this apply only to users that are using hotspots?
--
No it's not a payphone, it's a portable phone!
to forum · permalink · · 2003-11-26 11:14:09 · Reply to this
Forums » Out of Thin AirWant security? Just stay under their "radar" »
« How long would it take to...  

Saturday, 28-Nov 14:27:45 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [122] Time Warner Cable Fires Broadside At Broadcasters
· [112] New AT&T Ad Campaign Hits Back At Verizon
· [96] Apple Joins AT&T Verizon Snark Fest
· [87] New Bill Takes Aim At Higher Verizon ETFs
· [75] TiVo Sees Record Customer Losses
· [70] Verizon CEO: Hulu Will Be Dead Soon
· [69] In-Flight Internet Headed For Bumpy Landing?
· [62] Thanksgiving Open Thread
· [61] Weekend Open Thread
· [40] EFF Wages War On Fine Print
Most people now reading
· Why would I want an e reader? [General Questions]
· Why does it take so long? Mail question [General Questions]
· Windows 7 boot manager editing questions [Microsoft Help]
· Back to Comcast - Life Sucks Again - Montgomery County, MD [Comcast Cable TV]
· Using DIR-615 C1/3.01 with Trendnet TEW-652BRP in N Mode [D-Link]
· Whats the big deal about being "Old School"....? [World of Warcraft]
· Using AirMax to provide triple play services? [Wireless Service Providers]
· TPIA review by Electronic Box [Canadian Broadband]
· 5 hour energy for diabetic [General Questions]
· adding wireless router and wireless printer [Comcast HSI]