Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Re: Is this for real?

from [frostya] Network Security [Permanent Link]
Subject: Re: Re: Is this for real?
Date: 3 May 2007 10:11:18 -0000 
Yes, but to prove bad faith on their part, you need to produce your
logs. In other words, you don't know it's OK to snoop on them, until
you've snooped on them. Are your logs admissible in court? What if
their little brother spent the afternoon playing with the system
settings and left it so that it would bind to the first access point
it came across?


Not sure what log you are talking about.  There's no log that specifies that 
your router is encrypted.  If you are contacting law enforcement to tell them 
that you've been hacked, you aren't using an open router.

Also not sure what you are talking about with the little brother scenario.  If 
someone's little brother played with a setting, it would not enable the 
computer to authenticate to a foreign WAP encrypted with WEP or WPA.

About 60-70% of all US WPA/2 sites are crackable with a reverse lookup or 
"rainbow" table.  WEP is insecure, but widely used.

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to 
http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw
 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: Re: Is this for real?, frostya <=
Previous by Date:  tcpreplay 3.0.1 released, Aaron Turner
Next by Date:  BASE 1.3.6 (louise) released, Kevin Johnson
Previous by Thread:  tcpreplay 3.0.1 released, Aaron Turner
Next by Thread:  BASE 1.3.6 (louise) released, Kevin Johnson
Indexes:  [Date] [Thread] [Top] [All Lists]