Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Wired detection of rogue access points

from [Adam Graham] Network Security [Permanent Link]
Subject: RE: Wired detection of rogue access points
Date: Fri, 30 Mar 2007 10:24:24 -0500 

"Meh, this is simply not true. My home AP might is plenty secure from my
SOHO
technology noob neighbors with MAC filtering - few, if any, of them even
know what an "AP" is much less "MAC spoofing"."

Gotcha there... my closest neighbors (my parents) are a mile a way.. and I
just don't see my dad hacking my AP.. lol


Having said that filtering technologies such as MAC filtering are far too
difficult to manage given the relatively small security return provided and
as such should be avoided given the fact that other superior authentication
and access control mechanisms exist.

In my solution MAC filtering has be simplified and easy to manage. I set up
using cron/bash script to download the new approved and banned MAC lists on
a regular interval. As well as check the local server for OS updates, AV
updates. The Master MAC list is a MySQL database, with other information as
well... we track all information of the machine from day it was ordered til
it dies. All work done to it and current and past configurations... 


------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to 
http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Wired detection of rogue access points, Eric Hacker
Next by Date:  SV: Bittorrent - utorrent, Matt Hellman
Previous by Thread:  Detecting Spoofed MACs was: Wired detection of rogue access points, Adam Graham
Next by Thread:  Re: Wired detection of rogue access points, Tõnu Samuel
Indexes:  [Date] [Thread] [Top] [All Lists]