Re: Wireless Security (Part 2)

---

• From: Ansgar -59cobalt- Wiechers <bugtraq@xxxxxxxxxxxxxxxx>
• Date: Thu, 18 May 2006 15:14:00 +0200

---

On 2006-05-17 Ebeling, Jr., Herman Frederick wrote:

On Wednesday, 17 May, 2006 07:49 Ansgar -59cobalt- Wiechers wrote:

Okay, I'm confused. *Why* would anyone in his right mind want to do
this instead of just using a VPN or WPA or at least WEP, which would
not only *tell* anyone not invited to stay out, but also actually
*enforce* it?

Because sadly, not everyone who thinks that they "know" how to
deploy either a LAN, or a WLAN knows or understands how to secure said
LAN, or WLAN.

There are some people out there who assume that either the Wi-Fi
enabled router, or dedicated AP IS "secure" right out of the box. They
may be totally unaware that they're open and "inviting" everyone in
the neighborhood into their system. And those are the ones who really
need to be educated.

And I would say that the bottom line is that one sadly has to think
of the less knowledgeable person who may attempt to deploy some form
of a network.

Sorry, but I don't get your point at all. You were asking for a way of
setting up a banner to tell an intruder to "keep out". Why is that any
different from activating the (existing) mechanisms? Granted, WEP isn't
secure at all, but from a legal point of view it at least tells an
intruder much clearer than your banner that he isn't allowed to use the
network.

Also I entirely fail to see what advantages you see in setting up such a
banner. That would still require a user that is actually aware of his
network being insecure to begin with, so it doesn't solve anything that
isn't already solved. And solved in a much more reliable way, I might
add.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

---

• References:
  • Re: Wireless Security (Part 2)
    • From: Ansgar -59cobalt- Wiechers
  • RE: Wireless Security (Part 2)
    • From: Ebeling, Jr., Herman Frederick

• Prev by Date: Kingston DTE Privacy Edition
• Next by Date: Re: Article: "Security Absurdity: The Complete, Unquestionable, And Total Failure of Information Security."
• Previous by thread: RE: Wireless Security (Part 2)
• Next by thread: RE: Wireless Security (Part 2)
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: BT Fusion Subnet Confusion ... one wireless network normally called something like BT ... Business Hub the other BT Fusion, the 1st is secured by WEP and the ... network mask as the ethernet ports on the router. ... swap it to something more secure through the web interface of the ... (uk.telecom.broadband) Re: Tell me if Ive got this right.....(please) ... I've been hearing about it not being very secure any ... > WAP and WEP can be broken. ... it's never as secure as a wired network. ... > The packets maybe, not the network. ... (alt.home.repair) Re: WEP ... > I have got it working, but do I need to change the Network ... When I turn on the WEP everything ... "Is Open or Shared Key more secure? ... Key authentication: challenge text and the encrypted challenge ... (microsoft.public.pocketpc.wireless) Re: Tell me if Ive got this right.....(please) ... >>>Strong encryption solves this problem. ... I've been hearing about it not being very secure any ... WAP and WEP can be broken. ... it's never as secure as a wired network. ... (alt.home.repair) RE: Wireless Pent-Test ... If this is for home use have them turn WEP and MAC Address filtering on. ... You need to secure access to your protected network. ... So your VPN is ... his wireless network packets to make sure it is 128 bit encryption... ... (Pen-Test)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > security-basics  > 2006-05