Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: SSID cloaking reducing WLAN security

from [Noah] Network Security [Permanent Link]
Subject: Re: SSID cloaking reducing WLAN security
Date: Tue, 24 Apr 2007 11:50:57 -0500 
We already had this discussion a few times.  Actually, cloaking
decreases the potential of attack in most residential settings, where
there are several nearby access points with even less protection.
Search for "Low-Hanging Fruit" and you'll see what I mean.  Most of
your WiFi abusers aren't sitting there with frequency counters looking
for access points that aren't broadcasting their SSIDs.  Most are
looking for obvious, open access points.

Even when your non-broadcasting AP shows up on their passive scanner,
it shows up initially without the SSID, and it's usually easier to hop
on one that requires less effort.

That said, I advocate using WPA-Personal(PSK) on home networks, on top
of MAC address access control and SSID hiding.  Cloaking your SSID
does not increase your risk of attack, however.

In a business setting, using SSID cloaking as your only line of
defense is goofy and foolhardy.  New encryption systems or a
sandbox-VPN should always be used in those situations.


On 4/21/07, scott <redhowlingwolves@bellsouth.net> wrote: 
  If some form of unity was involved with the writing,and compatibility of
drivers,at least for most *nix servers....without having to resort to in
house compatibility testing,.....I believe the security of wireless
could be much improved.
Many people I know don't try to secure their wireless networks because
of cmp issues.....ie: no drivers from the NIC device makers that are
useable with the router they happen to be using!

I flipped out when I was told;  "I talked to an IT guy and he said the
depencdenies for...such and such card...are  too hard!!!"!?

Never mind that he could be the one taking advantage of your unsecured
router!    (This was a Windows case,none the less.....)

Wireless,whether your SSID is broadcast or not,is inherently vulnerable
to outsiders.I say inherently,because it uses radio waves,....ask any
ham radio operator how they can manipulate radio waves any way they
choose....!Especially if you happen to be within their range!

Cloaking, just gives the possibility to potential attackers ,that there
could be something worth checking out!

IMHO
                  Regards,
                        Scott







--
http://www.focushacks.com/focushacks-gpg.txt - My GPG encryption key

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: CISSP Prep books?, Chris Smith
Next by Date:  Re: Personal Firewall recommendations, Eric Zatko
Previous by Thread:  Re: SSID cloaking reducing WLAN security, scott
Next by Thread:  iptables - vpn - bridge mode - complex, karillion
Indexes:  [Date] [Thread] [Top] [All Lists]