|
2006-06-28, 02:06 PM | #1 |
You can now put whatever you want in this space :)
|
WEP Security Alert
Ya, I've been away working on a consulting project that's been consuming me (unfortunately not computer related) but saw this a few hours ago and thought I'd drop a heads up. Been thinking bout you all!
http://www.primary0.com/2005/06/04/w...g-the-fbi-way/ Ciao!
__________________
Submit Free Sites, Blogs, Movies, TGP's, Triple XXX Info |
2006-06-28, 02:23 PM | #2 |
Jim? I heard he's a dirty pornographer.
Join Date: Aug 2003
Location: Washington, DC
Posts: 2,706
|
That's why a few months ago I decided to not use wireless in my home.
|
2006-07-06, 07:42 AM | #3 |
WHO IS FONZY!?! Don't they teach you anything at school?
|
The FBI must have hired a few UNIX guys...
That is not new news I checked my general area ages ago with that technique (unsurprisingly found lots of totally unsecured wireless) and surely you've heard of wardriving. btw BackTrack is a better distro if you are interested.
__________________
Artificial intelligence is no match for natural stupidity |
2006-07-06, 08:14 AM | #4 |
With $10,000, we'd be millionaires! We could buy all kinds of useful things like ... love!
|
A lot of this article is 'scaremongery' (IMO) aimed at the ones who the FBI are looking at. The 'average' (non-paranoid) man should have nothing to worry about.
There are plenty of unsecured wireless networks around. I often turn on the WiFi on my PDA when I'm out and about waiting for the wife to choose her dress/shoes/skirt/blouse and am amazed at the number of networks I can see and get connected to. I use WEP for my son's Nintendo DS, my wife's laptop, and my PDA. I use a 64BIT key, because I know that no-one in my area would bother (or even know how) to hack me.
__________________
Playboy Webmasters - The name says it all! $35 per signup or 60% revshare. |
2006-07-06, 10:41 AM | #5 | |
Jim? I heard he's a dirty pornographer.
Join Date: Aug 2003
Location: Washington, DC
Posts: 2,706
|
Quote:
Do you do any online banking? Put your credit card on the Internet? Use PayPal or ePassport? Anyone can drive into a neighborhood and park for a bit while sniffing traffic. The software just sits and scans for things that look like authentication tokens and account numbers. While everyone knows that this same information can be gotten by breaking into a home, going through trash and other physical means, this is the first time in history that so much personal information is in the air. People that would never consider committing crimes that require physical contact with people, paper or other things do this all the time. Recently a web site was shut down where some kids posted the personal information of 10,000s government employees including SSN, cc information and various personal login information. I used to plug my sniffer in outside of my firewall and on my cable. I could sniff everything going on in the neighborhood. I've heard so many people say "I have a firewall" but what does that do once your information is in the air? Just because you're uneducated about a subject does that mean that those of us that are educated are paranoid? |
|
2006-07-06, 11:00 AM | #6 | ||
With $10,000, we'd be millionaires! We could buy all kinds of useful things like ... love!
|
Quote:
Quote:
The FBI demonstration (conducted over a year ago, BTW) used exagerted traffic loads to break the code in 3 minutes. Traffic FAR beyond the norm of a household or even small business. The amount of "normal" data that needs to be 'sniffed' to get access to a network would take hours (maybe days on a slower-moving, average, home network). Would you sit outside a house for hours (or days) in the hope that the network was hackable? Then... assuming it was... that they had some information worth stealing? I don't think so.
__________________
Playboy Webmasters - The name says it all! $35 per signup or 60% revshare. |
||
2006-07-06, 01:02 PM | #7 |
Banned
Join Date: Oct 2003
Location: About to be evicted!!!!
Posts: 4,082
|
Why the sudden panic? Unless your home/office is one enormous Faraday cage your computer is as secure as a leaky bucket. Back in the early 80's I worked in a computer shop. We used to fill in the boring bits between customers by picking up the spillage from the display computers using an ordinary TV aerial. Think what you could do with serious equipment. And that was NOT wireless, it was simply catching the RF (?) leakage from the cables.
|
2006-07-06, 01:18 PM | #8 | |
With $10,000, we'd be millionaires! We could buy all kinds of useful things like ... love!
|
Quote:
The FBI (or similar) might have been bored one day, so thought they would bring up some history to get people worried about something. OR They are up to something else and want to divert attention away. I don't know enough about the US or the FBI to comment any further
__________________
Playboy Webmasters - The name says it all! $35 per signup or 60% revshare. |
|
2006-07-07, 11:58 AM | #9 | ||
WHO IS FONZY!?! Don't they teach you anything at school?
|
Quote:
WPA is crackable the same way it just takes longer. If you want security go with 802.11x or wire Quote:
__________________
Artificial intelligence is no match for natural stupidity |
||
2006-07-07, 02:06 PM | #10 |
Certified Nice Person
|
For the average home, I agree with Oast. I'm far from concerned about my neighbors cracking their way in. And as far as pros driving around seeking out signals, I can walk my laptop out to my sidewalk and lose signal, so I'm not worried. If I lived in an apartment building with a bunch of strangers, I'd probably be more concerned.
I use WPA-PSK, not WEP, on an 802.g network if anyone wants to pull a drive-by. My house is the one with the with rusted tin porch roof.
__________________
Click here to purchase a bridge I'm selling. |
2006-07-07, 02:22 PM | #11 | |
Jim? I heard he's a dirty pornographer.
Join Date: Aug 2003
Location: Washington, DC
Posts: 2,706
|
Quote:
Educated hackers narrow the times of attacks depending on what they want. Most home banking is done between the hours of 6:30 and 8:00PM on the east coast and towards the end of the month. Most office work that's done from homes occurs after 9:00PM. |
|
2006-07-07, 09:19 PM | #12 |
Registered User
|
Ah the on going question. Do you worry or not. Me, I don't give two shits anymore. I dont pay online for anything and when I do it's late night. So if I see a car sitting outside with a laptop lighting the inside I could honestly careless. I look at it like this. I hope someone takes my fucking card, then I can call the company and tell them the washer I bought last month was not my purchase. The only secure computer is the one not online.
|
2006-07-13, 02:21 PM | #13 | |
I'm normally not a praying man, but if you're up there, please save me Superman!
|
Quote:
Ever looked at raw weblogs of a hacker attack? One hacker running a brute force password attempt on one of my (now-defunct) paysites was sending around 1,000 hits per minute, nonstop for around 36 hours, from several thousand different IPs worldwide. You don't need to be parked outside with a single laptop - you just need the target IP address and a network of compromised machines aimed at it. |
|
2006-07-13, 02:42 PM | #14 |
With $10,000, we'd be millionaires! We could buy all kinds of useful things like ... love!
|
Thanks for your input, lassiter.
Using your example to break into a WiFi network: With 20 digit alphanumeric WPA protection; a brute force attack would take approximately 1000 years on a laptop from a car parked outside your house (thats a rough calculation, BTW)! I can think of much better things to do in that time! Maybe it's just that us Brits have more common sense than some DC'ers
__________________
Playboy Webmasters - The name says it all! $35 per signup or 60% revshare. Last edited by oast; 2006-07-13 at 03:04 PM.. |
2006-07-26, 01:45 AM | #15 | |
You can now put whatever you want in this space :)
|
Quote:
1) If you live in a moderate or large metro area, I guarantee that there are bands of kids wardriving and sharing the info just because this is what they do for fun. 2) Most new wireless users are happy to just get the thing working and leave security in default which is WEP. A lot of others do too because they're lazy. 3) When electronic eavesdropping becomes too easy, it adds a multiple of people who think it too easy not to ignore. I really posted because so many people don't take it seriously and need to be reminded. Hell, in a personally competitive situation I've paid $500 a week just for a company's garbage, and wireless access is the same only better, you collect everything becasue you just never know what might be useful! If you've got issues or a super competitive situation with someone else, you've got to worry about huge leaks like this. I think the issue is like viruses, you have to prepare and assume that someday, one is going to get you. When the argument was that it would take many, many hours, if not days to crack a WPA key then this greatly lessens the liklihood of it happening. When it takes only a half hour, is this more tempting to more people to try out? Sure it is. If only one or two people think that maybe they should take a second look at that big WPA key then such scaremongering is probably justified. I'm also hearing that WEP is being chipped at too on a distributed processing basis (see comment about hacked PC's being used to work the problem) but nothing like a few minutes. Besides I hadn't posted in awhile and thought it worthy .
__________________
Submit Free Sites, Blogs, Movies, TGP's, Triple XXX Info Last edited by DJilla; 2006-07-26 at 01:57 AM.. |
|
|
|