[Pc_Support] Wireless Snooper
Phil Barnett
philb at philb.us
Thu Dec 29 10:18:22 EST 2005
On Thursday 29 December 2005 08:44, Brian Rose wrote:
> I was messing around with NetStumbler yesterday when I noticed another AP
> listed nearby with a MAC and SSID of 000000000000 and the Vendor was listed
> as "fake". Shortly afterwards, the SSID changed to the same string as the
> one I used on my access point.
>
> I am thinking that someone was trying to set up a fake router to spoof my
> systems into connecting through it instead of mine.
I would agree. Can you track down the location of the second AP?
> Can a spoofed router
> like this be used to get the password that I set. My router is configured
> to use a pre-shared key with AES encryption. Is this setup vulnerable to
> this kind of attack?
I don't think AES is vulnerable to this kind of attack. It's a symmetrical
encryption method where key's are not exhanged. Once the key's are known on
both ends, the data is encrypted and decrypted with the static key.
If you did connect to them and your clients are set to only send encrypted
data then you should be just fine.
--
"In communism, man exploits man. In capitalism, it's the other way around."
More information about the Pc_support
mailing list