How to track down a wireless hacker
- From: jond <x@xxxxxxxx>
- Date: Tue, 6 Nov 2007 19:27:39 -0500
I have a new client who was setup with a wireless network a while back
using WPA encryption by another firm.
An 'unauthorized user' broke the encryption and got onto their network.
They've come to me to design a solution so that this doesn't happen
again, which isn't a problem.
However they also asked me if it's possible to track down the attacker
if this happened again.
From what I know, it's not possible is it?
If the attacker didn't change their MAC address, and say the companies
lawyers could get some sort of court order to intel, dell, etc to
release which MAC address went to which computer and who bought said
computer. Does the manufacture even keep that info?
If the attacker did change their MAC address, the real MAC address
will never transverse the wire(AIR) right, or is it still in the
packet somewhere?
Any other thoughts or ideas to track someone down?
Is any other info leaked that I'm not thinking about?
Thanks,
Jon
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
- Follow-Ups:
- RE: How to track down a wireless hacker
- From: Ng, Kenneth (US)
- Re: How to track down a wireless hacker
- From: Nicholas Chapel
- Re: How to track down a wireless hacker
- From: Mathieu CHATEAU
- RE: How to track down a wireless hacker
- Prev by Date: Re: Fingerprinting and Testing Firewalls
- Next by Date: Re: Linux alternative to TSGrinder?
- Previous by thread: Re: Layer 2 arp snooping without Layer 3?
- Next by thread: Re: How to track down a wireless hacker
- Index(es):
Relevant Pages
|
|
