Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Wireless security question

from [adisegna] Network Security [Permanent Link]
Subject: RE: Wireless security question
Date: Fri, 24 Dec 2004 10:14:18 -0500 
Join the laptop to the domain. Push out a policy that disables the wireless 
services. If you have a central administration point for all APs ban the MAC 
address of the card. 

AD


-----Original Message-----
From: Liran Cohen [mailto:theog@tehila.gov.il] 
Sent: Thursday, December 23, 2004 3:43 AM
To: Marty
Cc: Sec Basic
Subject: Re: Wireless security question

Actually I don't think it is possible to prohibit wireless networks from 
laptops, since some laptops come with their wireless card built in, what 
more, I do believe that one should concentrate most of the efforts in 
finding the solution on one's network, and not on the clients side to 
solve such problems. How about creating a separate LAN for mobile 
devices? which will be heavily monitored and limited in it's services 
(maybe even wireless :) ) and require port authentication on every 
switch on you're LAN (IEEE 802.1X) so that you'll know who's connected 
where, and the laptop computers will be forced to that "special" LAN, on 
which you may restrict and monitor traffic easier.

BTW, in my opinion, USB mass storage devices (disk on key etc...) pose a 
higher threat than Laptops. :)

Liran Cohen
TheOg

Marty wrote:

Hi gang!

Here is a question for you...

We have a secure network with no wireless
connections whatsoever.

One of our laptop came in with credentials to log
on to the network through the Ethernet cable BUT
the person had just added a wireless card to his
laptop.

This situation actually came up and the person
could see external wireless networks (from other
companies around our building) and access
Internet through there. Yeah I know they're
stupid, but it's the real world!

This seems like a potential threat for taking our
data out the back door. 
Copy files accessed through our network to
another network and voilà! No trace at all of the
mischief.

We monitor internet access and block non-company
Email (Yahoo, Hotmail etc.).

Suggestions?

Thanks and Happy Holidays!

Marty!


__________________________________________________________
Lèche-vitrine ou lèche-écran ?
magasinage.yahoo.ca
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Wireless security question, Nicholas Diotte
Next by Date:  bridge detection, G.P.M
Previous by Thread:  Re: Wireless security question, Nicholas Diotte
Next by Thread:  RE: Wireless security question, Omar Salvador Alcalá Ruiz
Indexes:  [Date] [Thread] [Top] [All Lists]