User Panel
Posted: 9/7/2004 5:01:53 PM EDT
I live in a rather large apartment complex, a "Luxury Apartment" complex full of people with good jobs and are not really too short on money, you should see some of the cars in the parking lot, and I just got a wireless router so my roommates can share the cable connection. People keep getting on, and I keep kicking them off. Its kinda fun, but I just made it so no one except my roomates can get on. Amazing how many people tried to freeload my connection.
Seems pretty stupid to me, I can find a ton of unique information about their computer, and I even have logs turnd on, so I know every website they visit. All their connection are belong to me. dumb asses. ETA YES I made it so the only MAC address acepted is my roomates |
|
Why don't you lock it down. If they do some dumb shit via your connection, it's your door that get's knocked on. I cantenna and rarely use MY own ISP. But I don't do crap to get the wireless owner in any real trouble. If the people using your wireless have a single iota of common sense they can easily mask their info from you.
|
|
YOUR fault. (doesn't make it right though)
Lock it down. Best way - only authorize your and your roomate's MAC addresses |
|
assuming the packets on a wireless lan are sent the same way as a standard cat5 ethernet lan get a packet sniffer and capture their passwords for sites like hotmail
|
|
I did. I said that. I made it so the only MAC address acepted is my roomates. |
|
|
I have ran into many hippy.geek types who honestly believe that if they find an unsecured wireless router, it was left that way because the owner wanted to share.
|
|
You need to set up a secure connection. If you can see thiers, they can see yours.
Hard wire to your wireless moem and set a pass code. |
|
MAC address filter, much harder for a someone to spoof |
|
|
Not enough, MAC addresees can easily be spoofed. |
||
|
Yup. |
|||
|
most of the time people dont realize they are on another network.
They set up their own wireless lan without encryption and just have the card/pc use any available ap. I did it at home once when I forgot to return my wireless settings to my home profile. I logged onto the neighbors router and found it wierd that my password for the router was the default setting. oops not my router. |
|
ARFCOM Member Foxxz is coming over Friday. He is going to help me set up encription.
|
|
Its funny. Im in the same situation as you. Only, I dont have an ISP. When I turn on my laptop, it usually finds a network to use. Since my building is not yet able to support cable broadband, I've been tempted to use what I can find. If not, than all I have is T-Mobile Hotspot at Starbucks/Borders... |
|
|
sniffing wep is a little more work, but can be done... or so I have been told |
|
|
WPA with MAC address filter.
XP SP2 has made secure wireless connection a breeze. Someone with enough "want" will always be able to hack into your wireless network. As long as there are enough unsecured wireless networks around I can't see someone hacking into a secure one. |
|
I had my house RF sheilded and wrapped in aluminum foil to prevent govt mind melding
|
|
Do what I do, connect everything with CAT5/6 cable using a hardwired router.
|
|
Change the default router password and the Router IP as well, and turn off SSID broadcast.
|
|
You did that too. Man that was spendy setting up my house as a giant Faraday Cage. But cell reception sure sucks. |
|
|
not unless you have a cell repeater!!! |
||
|
+1 Most people will have their card set to pick up a ip address via DHCP and won't have a clue that they are latching into someone elses network especially in a apartment area. Of course there will be some people with half a brain who will want to free load on your network. I prefer CAT 5 cable, much easier to control access. |
|
|
A b uddy of mine in San Francisco swipes internet access from his neighbor this way, he and his wife only make a combined $ 300k income (well it is SF but still a lot of bread) so I can see why he can't cough up for his own cordless router thing.
|
|
That sentence is much goodly. |
|
|
Here is what I do to my wireless:
1) Enable MAC Filtering 2) 128Bit WEP (this can be broken, but it will stop most newbies and script kiddies) 3) Disable DHCP 4) Disable SSID Broadcast 5) Put the router on some weird ass static address range like 34.2.234.X and number the router something funky so figuring out the default gateway and dns server will be a little tough. 6) Change the WEP if you think someone is actually breaking it. Chances are, if they are breaking it, and getting access out, they know what the hell they are doing. |
|
You guys take this crap WAY too seriously.
I leave mine open just to see who gets on. Jeez, it aint that big a deal. My door knocked on? Whatever.... I think your tinfoil hat it a little too tight. In any case - there is about as much BS on this thread as there is fact. You cant sniff hotmail passwords.... pretty much any password site is SSL.... and you gotta collect the packets, reconstruct, and then decrypt 128bit cyphers.... and thats a LOT more work for some stupid email account than hacking WEP. There is no such thing as a secure network. It is by its very nature, insecure. Connectivity breed insecurity. There are only *more* secure networks, and *less* secure. WEP, MAC filtering, static addressing, IP filtering, etc.... are all ways to make your home connection *more* secure. Even then, running IPSEC encryption over all wireless traffic is another goo way to secure it.... but jeez guys.... its a HOME network. Who cares. The odds of anyone smart enough to hack into your crap, within range of your signal, are low. The WORST thing about someone getting on your wireless connection, is simply using YOUR bandwidth when YOU want it. Gimme a break. |
|
I'm not a hippy but I do make the assumption that open networks are OK to share. It's just common courtesy. If you don't want people on your network, lock it down*.
Open wireless access points are the closest thing we have to "everywhere" internet access today. Yes there are various proprietary cell/packet services you can sign up for but they are still expensive and slow. (*I forbid wireless ethernet in my company specifically to avoid these additional security problems) Regarding MAC addresses, yes you can easily change yours, but the problem is finding out what to change it to :) |
|
Nothing could be farther from the truth. I'm not going to get in a flame war explaining just what someone can do to get your door knocked on in,less than an hour. It can and does happen every single day. If you don't care, shit print this page for the day it happens to you. There is a group of script kiddies that do this and watch from a block away as you get raided for fun. So don't tell me it ain't gonna happen. |
|
|
That is pretty much the way I look at it. No use in making everyone pay for it if it doesn't bother my surfing! BigDozer66 |
|
|
Here's a good door knocker, suppose somebody sends eeeee-mails threaatening upper high muckymucks in a certain branch of the gummint? Or maybe simulates or really does plan some , shall we say very unsociable behaviour that might equate to a T******t Act. I bet you get visitors.
A friend of mine got a wireless set-up, and since he lives near what many might feel is a non-connected demographic. He found over fifty points he could enter in drtiving around his neighborhood, blew our minds. He definitely locked his down and makes sure any sensitive family data is put only on a disconnect unit and is sneaker-wared to one of the other units if he wants to internet it, and then sneaker awared off. |
|
On the other hand, having an open access point would be an excellent alibi if you were ever accused of online copyright infringement, etc. The prosecution can only trace back to your network, it's very unlikely they would be able to point at a specific person or computer on that network.
|
|
I turned my SSID off, changed the channel and password, use WEP, and restrict to known MAC list. Anything less is asking for trouble.
Meanwhile, from the second floor of my house, I can connect to any of 4 Linksys Channel 6 Open routers if I would care to. People are just too lazy to change default settings. |
|
Ok guys, It's simple. Lock the access point down, and encrypt if you don't want people on it. If you live in an apartment building there is the real possibility that people will wonder into an area where your wireless is stronger than theirs and Windows may just decide to use yours if the AP is wide open. You probably don't have a whole building full of hackers.
For instance with my wireless card installed I can sit in my friends apartment and I'll end up getting a connection from one of his neighbors. Windows does this automatically and my wireless card is built into the laptop. The only way to stop it is to disable the card or fiddle with the networks page to not connect to that network. I will not go make extra effort to change my PC to avoid someone elses wide open network. |
|
Exactly! There is one guy who put in an open AP real close to a neighbor who uses my internet access... and that royally screwed up my neighbor... because she would connect to me, then to this new AP, then to ME, etc...... I changed frequencies, everything.... to no avail. Its not just hackers... sometimes it just someone who comes how, uses their wireless equipped laptop, and it just happens to connect to you since you are open. I would. |
|
|
By default XP sets up wireless to grab the first AP it finds.
One night I was wondering why my connection was so slow until I found out my laptop was connected to the guy who lives three doors down from me! There were like three computers in his network and his password on his AP was set to the default one, his SSID was turned on, and he wasnt' using WEP. |
|
How do you do that? I figured out WEP and turning SSID off. |
|
|
Sharing is cool. Now if the kid next door would only chip in for my cable bill... |
|
|
You have to have a GOOD router. Those wally world specials probably wont do that. Linksys is coming a LONG way since Cisco bought them. |
||
|
I LOVE changing other peoples passwords on their unprotected routers with default admin passwords..... right after I change all their settings. I am just evil. |
|
|
I got the NETGEAR router and it has tons of settings. Under Wireless setup is "Wireless Acess List" and there I tell it the MAC address to accept. |
|||
|
I don't see that tab. I have "Starting MAC Filter enable/disable" then buttons for Active MAC filter and Edit MAC filter setting". Is that it? |
||||
|
Step 1: Use seperate router and wireless gateway seperated by a switch.
Step 2: Configure switch to cascade all ports to your PC. Step 3: Start Etherpeak session with appropriate POP3 filters. Step 4: Read your neighbor's emails, and blackmail him about his affair with his secretary. |
|
Sign up for the ARFCOM weekly newsletter and be entered to win a free ARFCOM membership. One new winner* is announced every week!
You will receive an email every Friday morning featuring the latest chatter from the hottest topics, breaking news surrounding legislation, as well as exclusive deals only available to ARFCOM email subscribers.
AR15.COM is the world's largest firearm community and is a gathering place for firearm enthusiasts of all types.
From hunters and military members, to competition shooters and general firearm enthusiasts, we welcome anyone who values and respects the way of the firearm.
Subscribe to our monthly Newsletter to receive firearm news, product discounts from your favorite Industry Partners, and more.
Copyright © 1996-2024 AR15.COM LLC. All Rights Reserved.
Any use of this content without express written consent is prohibited.
AR15.Com reserves the right to overwrite or replace any affiliate, commercial, or monetizable links, posted by users, with our own.