North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Wifi Security

  • From: Stephen J. Wilcox
  • Date: Mon Nov 21 10:54:40 2005

On Mon, 21 Nov 2005, Niels Bakker wrote:

> * [email protected] (Stephen J. Wilcox) [Mon 21 Nov 2005, 16:07 CET]:
> >On Mon, 21 Nov 2005, Patrick W. Gilmore wrote:
> >>Why would you even need to set up an AP?  Why not just sit and sniff
> >>traffic?  Gets you the _exact_ same information.
> >man in the middle is easier if you are the gateway, no need to steal arp
> It's *wireless*!  You can just sit and sniff traffic, no need to play 
> ARP games to redirect traffic to you.

i was more thinking in terms of breaking into encrypted sessions by spoofing the 
server and client

> >heres some fun, next time you're at nanog or your favourite geek conference,
> >just run 'tcpdump -w - -s1500 -nn|strings|grep -i password' and be prepared
> >to hit scroll lock ;)
> I've visited conferences where the wireless LAN was deemed "secure" by the
> organisation because they had outlawed sniffers.

hehe :)