Re: Mapping wireless LANS from the wired side

From: dcdave (dcdave@att.net)
Date: 08/21/01 

Message-ID: <02be01c12a5d$dfa4d010$78bc509c@anonymous>
From: "dcdave" <dcdave@att.net>
To: <Mike.Ruscher@CSE-CST.GC.CA>, <jshaw@insync.net>
Subject: Re: Mapping wireless LANS from the wired side
Date: Tue, 21 Aug 2001 11:25:20 -0500

There is a wap-nmap available - not sure this is what you are looking for,
but
check fyodor's site, or I have a link to it at
http://securingwireless.intranets.com
(free resource page)
dcdave
----- Original Message -----
From: <Mike.Ruscher@CSE-CST.GC.CA>
To: <jshaw@insync.net>
Cc: <pen-test@securityfocus.com>; <woody@callisma.com>
Sent: Monday, August 20, 2001 5:25 PM
Subject: RE: Mapping wireless LANS from the wired side

> I have no doubt that the wired side is the best approach for mapping one's
> own KNOWN wireless clients and APs. However, the question I originally
posed
> concerns testing for active wireless devices on a network from the wired
> side using wired LAN systems.
>
> There is no guarantee that war-driving will find them all, especially when
> they may roam and not always be up when sniffed by a wireless system. In
any
> case, this is irrelevant to the requirement at hand.
>
> What I am looking for I guess, is a "wmap" type of solution. (Fyodor?!)
>
> It's like finding dial-up modems from the network side, not by
war-dialling
> (or by war-driving in this instance). In this case it should be a lot
> easier, since everything is TCP/IP still. A list of company device/MAC
> associations is all that would be necessary is my guess and not just
> company/MAC associations. Collecting them is not a great hardship I
suppose
> though, by time-consuming and forever requiring support to be fresh and
> complete.
>
> mgr
>
> -----Original Message-----
> From: Joe Shaw [mailto:jshaw@insync.net]
> Sent: Monday, August 20, 2001 6:06 PM
> To: Mike.Ruscher@CSE-CST.GC.CA
> Cc: pen-test@securityfocus.com; woody@callisma.com
> Subject: RE: Mapping wireless LANS from the wired side
>
>
>
> On Mon, 20 Aug 2001 Mike.Ruscher@CSE-CST.GC.CA wrote:
>
> > Yes, MAC addresses by vendor will identify the device company, if one
can
> > assume they are valid and not spoofed. I do not see on the OUI site
where
> > the MAC addresses are associated with a company's particular device
family
> > though. This is essential for determining a wireless device from a wired
> > one. Do most companies give this info out, or must it be extrapolated
from
> > experience?
>
> The best way to track down wireless gear is with your own wireless gear.
> It's much easier than trying to find them using the wired LAN. Trying to
> find it any other way will just waste your time.
>
> Regards,
> --
> Joseph W. Shaw II
> Network Security Specialist/CCNA
> Unemployed. Will hack for food. God Bless.
> Apparently I'm overqualified but undereducated to be employed.
>
> -------------------------------------------------------------------------- 

--
> This list is provided by the SecurityFocus Security Intelligence Alert
(SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security vulnerabilities please
see:
> https://alerts.securityfocus.com/
>
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • Re: Two wireless routers one network
    ... neighborhood kids trying to use my wireless than from any books or web ... I don't expect my customers to ... My level of security and paranoia largely depends on the risks and ... >>I notice you didn't say anything about my comments about monitoring ...
    (alt.internet.wireless)
  • Re: ethics of approaching vulnerable prospective clients
    ... once you intentionally associate with a wireless access point that isn't ... > Of interest especially are clients with wireless networks. ... > site security, web application security etc. ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • RE: palm VIIx wireless modem
    ... Here is a Wireless LAN Security FAQ, ... What are solutions to minimizing WLAN risk? ... that connects clients to the internal network. ...
    (Security-Basics)
  • RE: Wireless Security
    ... Subject: Wireless Security ... ::: In the situation you mentioned, a person was allowed to use the car. ... :: "10-keys" of coke delivered to them at THAT address. ...
    (Security-Basics)
  • RE: Wireless Audit Cost
    ... "complete analysis" - to me this means that a full audit of both ... the wired and wireless networks is taking place. ... network off the internal LAN. ... >network has the usual security measures in place, ...
    (Pen-Test)