Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

ForumsNew Zealand mobile and wirelessWardriving


1606 posts

Uber Geek

Trusted
Subscriber
Topic # 12541 22-Mar-2007 18:27 Send private message

Hey guys.

I have been thinking of doing a study to see how people percieve the importance of wireless network security.
Over the last couple of nights, I went for a drive around Havelock North, which for those that dont know, is one of the most rapidly growing areas in Hawkes Bay.
It also has a range of low socioeconomic residential areas, very close to areas of high socioeconomic areas. I spent about 4 hours driving around and found that of the 180 access points that we found, 71 were unencrypted and allowed us access to the network. (we didnt do anything other than confirm that the dchp server gave us an ip then we moved on).

I was also rather surprised to find that around 60 of these access points were in areas that we would consider higher socioeconomic areas, or the newly developed areas with average house prices around $500,000+. Almost all of the access points we found in the lower areas were secured.

Most of the business leaders of Hawkes Bay live in the upper areas of Havlock North and I would imagine many of these business leaders keep company information / records etc. on home computers which are literally accessible to someone, in a car, on the street.

Any thoughts?
We also found that there is a surprisingly high amount of laptops with the SSID 'hpsetup' in havlock north. We didnt bother connecting to these but many were unencrypted also.




Ray Taylor
Napier, NZ
www.taylorcommunications.co.nz 

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2Next
643 posts

Ultimate Geek
  Reply # 64843 23-Mar-2007 14:35

what software are you using to discover access points?
we use kismet on Linux down here in chch and a 5 minute walk thru the CBD gives us 200+ APs, but over 50% are WEP or WPA, MAC filtered - not that that helps secure anything against someone with the right tools anyway Wink

I think the best security is keeping your signal inside your house, but with a 24db dish we could associate to a d-link 604 2kms away




Sniffing the glue holding the Internet together



1606 posts

Uber Geek

Trusted
Subscriber
  Reply # 64844 23-Mar-2007 14:42 Send private message

barf: what software are you using to discover access points?
we use kismet on Linux down here in chch and a 5 minute walk thru the CBD gives us 200+ APs, but over 50% are WEP or WPA, MAC filtered - not that that helps secure anything against someone with the right tools anyway Wink

I think the best security is keeping your signal inside your house, but with a 24db dish we could associate to a d-link 604 2kms away


We used Netstumbler. No external antennas or no special cards. Just my centrino laptop. I was also sure to stay away from the havelock village centre as there is probably 20 ap's there, most of which are cafenet and telecom hotspots which we could connect to, but wouldnt get very far with unless we were an xtra or cafenet user.




Ray Taylor
Napier, NZ
www.taylorcommunications.co.nz 

412 posts

Ultimate Geek
  Reply # 64847 23-Mar-2007 15:08 Send private message

raytaylor: Hey guys.

Any thoughts?
We also found that there is a surprisingly high amount of laptops with the SSID 'hpsetup' in havlock north. We didnt bother connecting to these but many were unencrypted also.


There was a programme on television a while ago about this, can't remember the programme name but I think it was Close up on TV1.  Maybe this is archived on the new TVNZ website.

If you can be bothered, you could always leave a note in their letterbox saying you can access their network, and give an URL with instructions on how to fix the problem.

I'd suggest you don't give them your personal details (as an offer to fix it yourself), lest they accuse you of 'hacking their account' and calling the police, wasting the cops time and you losing sleep over the complaints.



1606 posts

Uber Geek

Trusted
Subscriber
  Reply # 64848 23-Mar-2007 15:10 Send private message

Thats not a bad idea.
Next time, i might do something like that.

To be honest, i wouldnt be bothered fixing it myself - theres tooo many.




Ray Taylor
Napier, NZ
www.taylorcommunications.co.nz 

643 posts

Ultimate Geek
  Reply # 64849 23-Mar-2007 15:10

Try kismet, netstumbler is good for playing with but a joke if you're serious about security testing. we can see people netstumbling a mile away because of all the probe requests it makes. I had a honeypot setup in riccarton a few years ago capturing the MAC addresses of people wardriving with netstumbler ;-)

EDIT: I too am familiar with the moral dilema of knowing about other peoples lack of security. I have even found gaping holes in some of NZ's largest hosting providers but for fear of being accused of extortion I have always refrained from telling the admins.

What would you do?




Sniffing the glue holding the Internet together

83 posts

Master Geek
  Reply # 65987 2-Apr-2007 14:22

barf: what software are you using to discover access points?
we use kismet on Linux down here in chch and a 5 minute walk thru the CBD gives us 200+ APs, but over 50% are WEP or WPA, MAC filtered - not that that helps secure anything against someone with the right tools anyway Wink

I think the best security is keeping your signal inside your house, but with a 24db dish we could associate to a d-link 604 2kms away


best security is to be wired Money mouth Luckily for me we built a new house last year and its CAT 5 structure cabled (16 ports) sightly more expensive than going wireless, but slightly....... more secure

149 posts

Master Geek
  Reply # 69003 1-May-2007 01:05 Send private message

a new whitepaper was released that web can be cracked with only 40,000 IV's instead of the normal 5 million some dudes at MIT sussed it out, go MIT theyre always coming out with awesome stuff, off topic but they lately came up with a way to hack quantum encryption was believed to be unbreakable but there you go.

http://www.grc.com/SecurityNow.htm#89 even more breakable web

22 posts

Geek
  Reply # 72344 27-May-2007 08:14 Send private message

Makes me wonder how secure my network is. Well... it's not really a network anymore as my flatmate moved out and now my pc is all that's connected, and I no longer use wireless for connections.

I did some probing and discovered a suspicious cordless phone 'network' with 13% signal strength. It's that 2.4GHz thing right.



1606 posts

Uber Geek

Trusted
Subscriber
  Reply # 72374 27-May-2007 11:24 Send private message

Yea it could be a skype / voip phone or a cellphone or pda with wifi. I dont think your standard 2.4ghz cordless phone broadcasts or uses the same methods to talk like wifi does.




Ray Taylor
Napier, NZ
www.taylorcommunications.co.nz 

643 posts

Ultimate Geek
  Reply # 72390 27-May-2007 14:09

many/most modern cordless phones use the same 2.4GHz band of spectrum as 802.11b/g, so probably it's not an 802.11g network you're seeing but it is still 2.4GHz RF energy that could potentially interfere with an 802.11g signal.




Sniffing the glue holding the Internet together

3809 posts

Uber Geek

Moderator
Trusted
Subscriber
Reply # 72391 27-May-2007 14:19 Send private message

Does it only appear when you heat up a burrito?

It could also be a wireless video sender i guess?

122 posts

Master Geek
  Reply # 72417 27-May-2007 20:34 Send private message

One of the best security tips I've read is simple & cost effective. Put your access point on a power timer switch (a few bucks from the local hardware store) so it's only on when you're using it.

416 posts

Ultimate Geek
  Reply # 72463 28-May-2007 09:20 Send private message

wifi security...

If one is going to worry about about the lack of wifi security then one might as well ponder how many people have no firewall or no virus control or no malware control the list can go on and on...

personally I have wpa2 with aes encryption, no dhcp, locked down mac addresses and turn it off when I am not using it ie every night unless downloading

That said I wonder more about how many PCs without firewalls are accessed without the owner knowing, a port scan of the local subnet was quite an eye opener !

122 posts

Master Geek
  Reply # 72466 28-May-2007 09:32 Send private message

personally I have wpa2 with aes encryption, no dhcp, locked down mac addresses and turn it off when I am not using it

Ah, almost identical to my setup. Except, I have an external honeynet with intrusion detection systems. If an unauthorized portscan occurs, a signal is sent to the magnetic kennel locks to 'release the dogs'.

58 posts

Master Geek
  Reply # 72473 28-May-2007 09:49 Send private message

I found this article on wireless security very interesting.

http://blogs.zdnet.com/Ou/?p=43

Cheers
Reon

 1 | 2Next
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when new jobs are posted to our jobs board:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »
Gen-i and SAP partner in mobile business
Posted 23-May-2013 09:23

Ericsson to close down telecom cable manufacturing
Posted 23-May-2013 08:46

FaceToFace Communications and StarLeaf bring unique cloud-based videoconferencing to Australia and New Zealand
Posted 22-May-2013 09:12

IBM Watson finds a new job: customer services
Posted 22-May-2013 08:37

Microsoft unveils Xbox One
Posted 22-May-2013 08:11

InternetNZ and AUT University form strategic partnership
Posted 21-May-2013 09:29


Trending now »
Hot discussions in our forums right now:

Fecked up religious people strike again :-(
Created by Mark, last reply by networkn on 23-May-2013 13:22 (37 replies)
Pages... 2 3

Xbox One
Created by DjShadow, last reply by merve0o0 on 22-May-2013 18:27 (37 replies)
Pages... 2 3

Cannabis is illegal yet we have really strong 'legal highs' ?
Created by qwerty7, last reply by SepticSceptic on 23-May-2013 14:23 (68 replies)
Pages... 3 4 5

A new project coming to Geekzone
Created by freitasm, last reply by Kingy on 23-May-2013 14:01 (265 replies)
Pages... 16 17 18

Truenet Article - VoIP in New Zealand ----- Based on what Mr Butt ???
Created by maverick, last reply by coffeebaron on 23-May-2013 14:15 (16 replies)
Pages... 2

HTC One (2013) owners' discussion
Created by Dingbatt, last reply by bradstewart on 23-May-2013 11:59 (1539 replies)
Pages... 101 102 103

"igov" online passport renewals
Created by Linuxluver, last reply by profrink on 22-May-2013 22:22 (29 replies)
Pages... 2

Orcon, Is this for real or a scam??
Created by old3eyes, last reply by DarthKermit on 22-May-2013 19:12 (29 replies)
Pages... 2


Geekzone Jobs »
Most recent NZ jobs in technology:

UX/Interaction Designer
Posted 23-May-2013 13:28

Integration Manager
Posted 23-May-2013 13:28

Senior Software Developer
Posted 23-May-2013 13:28

Unix Scripting Administrator***Top Role***
Posted 23-May-2013 13:28

Java Developer
Posted 23-May-2013 13:28

File Transfer (FTP) Specialist/Lead (UNIX) - x2
Posted 23-May-2013 13:28

ASP.Net MVC Developer | Intermediate
Posted 23-May-2013 13:28


Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »
Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.