- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
Best wireless security
Posted on 6/17/14 at 9:16 am
Posted on 6/17/14 at 9:16 am
I just read the other thread about someone hacking a parent's internet and it raised a question in my mind.
What is the best wireless security? WEP, WPA, WPA-2 or MAC addressing filtering.
I thought MAC address filtering would be the best as the hardware address has to be entered into the router config.
I'll sit back and listen now.
What is the best wireless security? WEP, WPA, WPA-2 or MAC addressing filtering.
I thought MAC address filtering would be the best as the hardware address has to be entered into the router config.
I'll sit back and listen now.
Posted on 6/17/14 at 9:20 am to NASA_ISS_Tiger
WPA-2 AND MAC addressing filtering
MAC address filtering is a bit of a pain to maintain, especially if you want to allow any visitors on to your Wifi.
MAC address filtering is a bit of a pain to maintain, especially if you want to allow any visitors on to your Wifi.
Posted on 6/17/14 at 9:21 am to SG_Geaux
Understood....but that way I manage the system. I'll have to look into the WPA-2 stuff. One thing I ran into was the number of MAC addresses that could be set into the router...I actually ran out.
Posted on 6/17/14 at 9:50 am to NASA_ISS_Tiger
WPA2 can only be cracked one way. brute forcing the password and that will only work if it is very short or a dictionary word. create a very strong password and its virtually uncrackable using WPA2
mac filtering is not really secure. i can spoof your mac no prob
mac filtering is not really secure. i can spoof your mac no prob
This post was edited on 6/17/14 at 9:51 am
Posted on 6/17/14 at 9:51 am to NASA_ISS_Tiger
quote:
I'll have to look into the WPA-2 stuff.
It is extremely easy to implement.
You pretty much just turn it on and set the passphrase.
This post was edited on 6/17/14 at 9:53 am
Posted on 6/17/14 at 10:37 am to gmrkr5
Tell me about this spoofing of the MAC Address.
Had another person tell me he could do the same..but he never was able to get in.
So you have to know one of the devices' MAC addresses that are allowed into the router. How would you go about "capturing" an allowed device? Are they transmitted in the clear?
Had another person tell me he could do the same..but he never was able to get in.
So you have to know one of the devices' MAC addresses that are allowed into the router. How would you go about "capturing" an allowed device? Are they transmitted in the clear?
Posted on 6/17/14 at 10:40 am to NASA_ISS_Tiger
quote:
An even better trick is use your Wi-Fi to sniff (with an app like Cain & Able, LINK ..., NetStumbler) other laptops' Wi-Fi MAC addresses already using the paid coffee shop Wi-Fi. Once you find a few you can copy their mac address as your own. This will give you free Wi-Fi in hotels and other paid Wi-Fi locations.
Posted on 6/17/14 at 10:42 am to NASA_ISS_Tiger
quote:
Tell me about this spoofing of the MAC Address.
Had another person tell me he could do the same..but he never was able to get in.
So you have to know one of the devices' MAC addresses that are allowed into the router. How would you go about "capturing" an allowed device? Are they transmitted in the clear?
actually spoofing the MAC address is simple on a linux host. you basically just change it. there can be contols that prevent this on larger corporate networks, but usually never in a residential network.
discovering the MACs in range is a tiny bit trickier. but its still simple with the right software tools. basically a backtrack CD and you have what you need
Posted on 6/17/14 at 1:21 pm to gmrkr5
Ok...but can you spoof via wireless?
How can you as an attacker get into my residential wireless without having a MAC address on my list that I allow? Or are those MAC addresses that I allow on my network transmitted in the clear in such a manner that one can packet sniff the wireless comm and grab a MAC address from that? Then if that's true...how would the router handle two MAC addresses communicating from separate points? Wouldn't one get a popup warning about them?
Please realize I'm not disputing your claim, just trying to learn more about this so I have a very secure system without worry. Until now I didn't know anything about MAC spoofing via wireless.
How can you as an attacker get into my residential wireless without having a MAC address on my list that I allow? Or are those MAC addresses that I allow on my network transmitted in the clear in such a manner that one can packet sniff the wireless comm and grab a MAC address from that? Then if that's true...how would the router handle two MAC addresses communicating from separate points? Wouldn't one get a popup warning about them?
Please realize I'm not disputing your claim, just trying to learn more about this so I have a very secure system without worry. Until now I didn't know anything about MAC spoofing via wireless.
Posted on 6/17/14 at 1:49 pm to NASA_ISS_Tiger
quote:
Ok...but can you spoof via wireless? How can you as an attacker get into my residential wireless without having a MAC address on my list that I allow? Or are those MAC addresses that I allow on my network transmitted in the clear in such a manner that one can packet sniff the wireless comm and grab a MAC address from that? Then if that's true...how would the router handle two MAC addresses communicating from separate points? Wouldn't one get a popup warning about them? Please realize I'm not disputing your claim, just trying to learn more about this so I have a very secure system without worry. Until now I didn't know anything about MAC spoofing via wireless.
it's exponentially easier to sniff mac address wirelessly than across a wire. just because your behind a router does not mean that your communications are invisible. everything in your wireless network is constantly chattering. MAC address filtering is not an effective security control plain and simple
This post was edited on 6/17/14 at 1:51 pm
Posted on 6/17/14 at 2:28 pm to gmrkr5
WPA 2 AES With a passkey. Make sure the passkey is not something stupid like "mywifi" you will be fine. WEP is crap and MAC filtering is pointless.
Posted on 6/17/14 at 4:02 pm to NASA_ISS_Tiger
Popular
Back to top
Follow TigerDroppings for LSU Football News