PCA Forums

are you using or willing to trust it if you do banking and bill paying online ?

i think its safe as long as you know what you are doing, then again you cant say that anything is safe aslong as the hacker knows what he/she is doing.

WPA setup as the encryption and a bank that uses SSL, I hope to god there are no banks that don't, and you'll be fine. In this case there are 2 layers of encryption. WPA is crackable but is pretty difficult and unless you have reason to believe someone would go to the trouble for you I'd say its pretty safe. Even if they do get through you still have SSL thats even more crypto to crack. Hell I'd trust my wireless link more than the open internet. At least with my wireless link I have logs I know who authenticated to it and when.

Safe.. HAHAHA..

come sit in my parking lot.. and surf the web.. acess my network.. have fun.. I don't care..

then again.. I live in an area where most ppl don't even own a computer.. and those who do aren't sure how to lauch solitare.

I am probably only one within 2 miles with wireless.. so no worries

My laptops have been wireless for years but the range is not strong enough to be tapped into from the street in front of my house or next door so I'm not worried. I've never yet had any security problems.

I have wireless at the house.
Now are you talking wireless ISP or just a home wireless network?

Im not sure if there are any security issues with a wireless ISP.
I do have a wireless home network, and do not see any issues with it. With the security level (which I know is crackable) associated with the range, I would notice anyone trying to break in to my network. And if they did, so what?

As for logging the network, if they could get into your network then they could get into the router and clear the log. Not a big deal to do that. And if do get in, use a static IP and it will not log your access in the DHCP.

Originally posted by RubberDuckie
As for logging the network, if they could get into your network then they could get into the router and clear the log. Not a big deal to do that. And if do get in, use a static IP and it will not log your access in the DHCP.

Theres a big jump from being able to associate and get and IP address to actually getting into my server. The only way in is exploiting a bug in DHCP, SSH, or brute forcing my password. Brute forcing my password is very unlikely. Although the logs are kept on a second server that is running a HTTP server that may be easy to exploit. My point is though that even if you get through WEP (very easy) or WPA (hard but possible) you still need to break into more things and thats a lot of work if your just driving by and want free internet.

I will give sombody 50 bux if they can get on my wireless network! If sombody did manage to get on it they must have magicial antenna growing powers of some sort... cause in a steel rack the stock ones dont do crap. that and they arent even turned on.

I use WPA and mac filtering. I'm sure it could be cracked but there are other open networks on the same street so most would go for those first.

Gillbot, by the time someone would get in, your router would be consider a "relic" of the past

Originally posted by ZYFER
Gillbot, by the time someone would get in, your router would be consider a "relic" of the past

Right after I posted that I had to go back to MAC filtering and WEP. My stupid $2500 work laptop needs to be rebooted about every hour when I use WPA but works fine with WEP. The funny thing is my wifes $115 used dell works PERFECT with WPA.

BTW, WPA can be cracked in about 3 minutes. http://www.mirrors.wiretapped.net/secur ... k-wpa.html

It works, and there's a windows version floating around too. Obviously the longer your passkey is, the longer it will take for them to crack it but given enough time it can be done.

Here's the WEP demo: http://www.mirrors.wiretapped.net/secur ... ck-wep.swf

Thats assuming you use a simple passkey and do not use Mac Filtering and leave SSID broadcasting on...

Mac filter is crap and probably the easiest thing to get around. Unless you don't use your wireless at all. Having SSID broadcasting off doesn't matter either unless you never use your wireless. Both will not be even as near as hard to get around as even WEP.

If you have a decent WEP key brute force will not work unless your lucky or have at least 1 million packets. It took me 30 minutes to generate that much traffic and I was ping flooding over my wireless (aka lots of little packets). Once I spent that 30 minutes though it took about 10 seconds to brute force my WEP key.

This video also used a dictionary file If the dictionary file doesn't have the password it wouldn't have worked. If he just had it set to isab54lla that would have foiled this attempt. I need to go back and try to crack WPA I was able to do WEP and there are still things I'm not sure about with regards to cracking WPA.

my WPA key is 20 characters long w/ letters, numbers, and special characters. i wonder how long that would take to brute force? and if i would notice the person sitting in my driveway or backyard for that long? hehehe