Detecting unwanted home wireless network connections from your neighbors

Detecting unwanted home wireless network connections from your neighbors
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Detecting unwanted home wireless network connections from your neighbors Malke 06-09-2007
Posted by Adair Witner on June 10, 2007, 1:01 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
>
> You can also build a crud passive ethernet tap. (I carry one in my
> troubleshooting case).
> <http://www.snort.org/docs/tap/>
> It took me several tries to get the wiring correct so be careful.

This looks pretty simple to build however I am curious to know why one
couldn't make this work in full duplex with three jacks?
It seems having three interfaces would hash something up..
I could walk to my work van and have one built in just a few minutes and
test it I suppose.

Any thoughts?

Adair



Posted by Jeff Liebermann on June 10, 2007, 3:26 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

>>
>> You can also build a crud passive ethernet tap. (I carry one in my
>> troubleshooting case).
>> <http://www.snort.org/docs/tap/>
>> It took me several tries to get the wiring correct so be careful.
>
>This looks pretty simple to build however I am curious to know why one
>couldn't make this work in full duplex with three jacks?

Easy. Each of the two middle jacks has only the receive data lines
connected to the sniffing computah. You can safely attach more than
one receive load to a single transmit line, without doing too much
damage. In this derrangement, there's only on source of data.

However, you cannot put two transit lines in parallel. If you did
that the resultant data would be a mix of the two transmit lines and
look like garbage.

In case it's not obvious, the two middle jacks sniff data in one
direction only. The #2 jack sniffs data coming from the #1 jack. The
#3 jack sniffs data coming from the #4 jack. If you want to sniff
data in BOTH directions simultaneously, you'll need something more
sophistocated, like an ethernet hub (not a switch).

>It seems having three interfaces would hash something up..
>I could walk to my work van and have one built in just a few minutes and
>test it I suppose.

It's quite handy. I prefer to use the monitor port feature found on
most Cisco switches, but some of my customers don't like me
reconfiguring their sacred router/switch, especially if it's under
service contract with some systems management outsourcing company. I
usually carry a 10baseT hub and a 100baseTX hub (not a dual speed hub)
with me, for when I need to sniff in both directions. Now, if I could
only find where I put the wall warts to these...

>Any thoughts?

It's Sunday. Thinking is optional.

>Adair
>
--
Jeff Liebermann jeffl@cruzio.com
150 Felker St #D http://www.LearnByDestroying.com
Santa Cruz CA 95060 http://802.11junk.com
Skype: JeffLiebermann AE6KS 831-336-2558

Posted by Krazee Brenda on June 10, 2007, 3:06 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Sun, 10 Jun 2007 00:08:27 GMT, Malke wrote:

>> One thing you can do is sniff the traffic between the WRT54G and your
>> cable or DSL modem using something like AirSnare:
>> <http://home.comcast.net/~jay.deboer/airsnare/>
>> or other intrusion detection system.
>
> Thank you very much Jeff Lieberman.
>
> It's rare to see such a definitive response to a users' question as yours.
>
> You're in the top few percent of helpful posters! I, for one, will check
> out each of your recommendations, in order, startin

Kissbuttware
--
This is what I looked like after John "Heartless" Corliss called me a
troll.
http://tinyurl.com/2dympt

Posted by Lord Possum on June 9, 2007, 7:52 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
notreally@invalid.invalid says...
> Does anyone of software to tell HOW MANY connections are to your home
> wireless router?
>
======================

Why go to all the trouble of detection? Why not set up your system with
a decent 128-bit WEP security code?

Posted by Craig on June 9, 2007, 8:03 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Lord Possum wrote:
> notreally@invalid.invalid says...
>> Does anyone of software to tell HOW MANY connections are to your home
>> wireless router?
>>
> ======================
>
> Why go to all the trouble of detection? Why not set up your system with
> a decent 128-bit WEP security code?

Fwiw, WEP has been superseded by the WPA & WPA2 security systems. A
decent overview as to the whys and wherefores can be had at:
<http://en.wikipedia.org/wiki/WPA2>

-Craig

Similar ThreadsPosted
Are my Network Connections Encrypted November 26, 2007, 3:27 pm
Change 2003/XP network-connections behavior back to previous mode November 30, 2007, 11:53 am
How to Manage my network passwords in Win XP Home? December 19, 2005, 3:58 am
Logon problems after trying to setup home network February 14, 2006, 12:10 pm
Wireless network monitored April 27, 2006, 5:21 pm
How to view wireless clients in Win2000 network? July 26, 2005, 4:19 pm
Restrict users to only connect to our wireless network July 30, 2005, 10:23 am
Wireless network connection not established before user login May 26, 2005, 12:28 pm
Prevent access to Wireless Network Setup Wizard July 16, 2006, 11:20 pm
On security standards about home networks or digital home March 5, 2008, 3:46 am

The site map in XML format XML site map

Contact Us | Privacy Policy