Is your wireless network airtight?
I'm sitting with my ThinkPad in a Starbucks near Akasaka. The cafe isn't advertised as a WLAN hot spot, so I'm pleasantly surprised to find myself enjoying high-speed Internet access courtesy of some nearby wireless network.
I open up the WLAN properties on my XP-equipped notebook and have a look. The network name that appears is a cryptic collection of alphanumeric text that doesn't lend any clues as to the source, but as there's no encryption key for the network I'm able to enjoy unrestricted, anonymous access to it.
Further giving in to curiosity, I browse the Windows network and discover a domain called WORKGROUP. Browsing further I find two computers inside and eventually I have unrestricted access to the entire file system of the remote computer.
Without really trying, I have tapped into a fully exposed wireless network serving two equally exposed Windows computers, and I'm just getting started. Next I make a note of the IP address that's been assigned to my computer and guess at the IP address of the wireless access point.
[ Read more ]
For all your wireless security information needs, visit the Wireless outside articles section of HNS.
- Review: Deploying License-Free Wireless Wide-Area Networks (14 May 2003)
- Article: Positive Identification in a Wireless World (6 May 2003)
- Article: Warchalking and Other Wireless Worries (3 April 2003)
- Article: How to Make Wireless Networks Secure (26 March 2003)
- Article: Interview with Cyrus Peikari, CEO of AirScanner Mobile Security (24 February 2003)
- Review: Maximum Wireless Security (17 February 2003)
- Article: Detecting Wireless LAN MAC Address Spoofing (22 January 2003)
- Article: Avoid Wireless LAN Security Pitfalls (17 January 2003)
- Article: Interview with Jay Chaudhry, CEO of AirDefense (7 January 2003)
- Review: Wireless Security and Privacy: Best Practices and Design Techniques (17 December 2002)