Omega Owners Forum
Chat Area => General Discussion Area => Topic started by: JamesV6CDX on 11 March 2008, 14:52:42
-
Last night I got my wireless adaptor out so I could surf the forum while in the bath. (Sad I know).
When I looked at the list of available networks, I saw quite a few, but one of them was not security enabled.
Being curious, I chose to connect to this network. It instantly connected me, and must have been running DHCP because it gave me an internal IP address in the 192.168.0 range...
I then thought if they've not enctypted their wireless, then they have probably not secured their router.
I take a wild guess and type 192.168.0.1 in my browser and hey presto, I'm connected to the web interface login page of their router.
Expecting nothing less, I do a quick google for the particular handbook on that router, and use the default login and password. Which of course worked.
So I'm now sat on their router as an administrator.
Looked at the DHCP list, and connected devices, and could see everything attached to that router.
So in an expolrer window, type \\pcname\c$ and hey presto, you can browse their computer ::)
I obvously didn't look any further or do anything bad because I'm not like that, but it was surprising at how easy it was to gain access to that network. I didn't have to "hack" - as the door was literally open, with a sign saying "enter here!"
Thinking of posting a note through their door (or changing their desktop wallpaper ;D ) to let them know they need to set up some WEP...
(PS - addresses posted are internal, so mean nothing)...
-
No cancel yours and use theirs ;D
-
I would, but you know full well that will involve you then fixing the security for them ;)
-
;D ;D ;D
A favorite of mine, is if the connection is active, is to connect to a cd/dvd drive (usually D/E drives)
And eject them! ;D
Alternativly go into their my documents move everything into 1 folder called "you had better secure your network"
Or turn off DHCP, set a password on the router, and only allow mac address to access the router... which will of course be your mac address ;)
-
you can surf in the bath?!!
How big is your bath!!!!
..I'll get my coat... :-[
-
;D ;D ;D
Alternativly go into their my documents move everything into 1 folder called "you had better secure your network"
You are all evil!! I didn't touch anything :-[
-
I normaly eject the CD drives, rename the PC to Insecure Network, rename the network to Insecure Network and put a readmenow.txt file on the desktop......not that I have done this much!
-
My nextdoor neighbour is in the process of getting broadband / going wireless.
Ill be checking for security....if its lax Ill grab the daughters naked lapdancing pics ::) ....then tell them ;D
-
Ill grab the daughters naked lapdancing pics ::)
& how do you know about these :o
-
My nextdoor neighbour is in the process of getting broadband / going wireless.
Ill be checking for security....if its lax Ill grab the daughters naked lapdancing pics ::) ....then tell them ;D
I'll give you £1 ;D
-
Microsoft+wireless+beginner users=free internet+hacked network ;D
still on the cables ;D
-
more funny thing , telecom give the routers free here..same model
for everyone ;D
-
Ill grab the daughters naked lapdancing pics ::)
& how do you know about these :o
Most the road know, apparently its something to boast about these days :o
-
Ill grab the daughters naked lapdancing pics ::)
& how do you know about these :o
Most the road know, apparently its something to boast about these days :o
Is it the club in Liverpool ::)
-
yep, thats the one....ya seen her ;D
-
Lol......WEP is a doddle to crack anyway....
-
Lol......WEP is a doddle to crack anyway....
It is... specially with my super sniffer ::) ...
But it's a deterrent for most... and it's safer to also filter by MAC address in addition..
-
Lol......WEP is a doddle to crack anyway....
It is... specially with my super sniffer ::) ...
But it's a deterrent for most... and it's safer to also filter by MAC address in addition..
MAC even easier to spoof.
Won't settle for less than WPA1 now.... ....you lot would be peeved if the forum got hit....
-
Not just me that uses laptop in the bath then! :y
-
Funnily enough.......I have tonight just discovered a network v. close to me totaly unsurcured too........and the same.....bang in the routers ip address in IE and gues the admin password and hey presto.....im connected to the router ;D
-
Funnily enough.......I have tonight just discovered a network v. close to me totaly unsurcured too........and the same.....bang in the routers ip address in IE and gues the admin password and hey presto.....im connected to the router ;D
Tho they have a password setup on the pc thats turned on at the mo....2 pc's listed in the dhcp table ::) ;D
-
You an get the router IP address by looking at the network properties.....
As for cracking WEP, you simply write a programme which sniffs the packets and identifies and stores the insecure ones. Then bombard the router with the insecure captured packets and you get more insecure ones in return until you have a few tens of thousands of insecure packets before bunging them through a cracker.
Out comes the password!
-
You an get the router IP address by looking at the network properties.....
As for cracking WEP, you simply write a programme which sniffs the packets and identifies and stores the insecure ones. Then bombard the router with the insecure captured packets and you get more insecure ones in return until you have a few tens of thousands of insecure packets before bunging them through a cracker.
Out comes the password!
The headers on WEP packets are unencrypted. Makes an easy attack vector. Plenty of utils out there to crack within 10mins...
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
-
Done the odd Netstumbling (OK Wardriving) on my routes to and from work... Well it's useful to know where there is a bit of free connectivity when you need to send an email etc.... better than paying for 3G!
::)
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
Thanks TB, clear as mudd now. :-[ :-[ :-? :-?How can I tell, my laptop loads automaticaly when I switch it on. :D
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
Thanks TB, clear as mudd now. :-[ :-[ :-? :-?How can I tell, my laptop loads automaticaly when I switch it on. :D
unless you have specifically set it, it will be wep
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
Thanks TB, clear as mudd now. :-[ :-[ :-? :-?How can I tell, my laptop loads automaticaly when I switch it on. :D
unless you have specifically set it, it will be wep
I had to put a long number in when I first set it up, I assumed this was for security, just this thread made me wonder. :)
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
Thanks TB, clear as mudd now. :-[ :-[ :-? :-?How can I tell, my laptop loads automaticaly when I switch it on. :D
unless you have specifically set it, it will be wep
I had to put a long number in when I first set it up, I assumed this was for security, just this thread made me wonder. :)
probably wep key.
Seeing as I refuse to have such a piece of junk in the house, I'll leave to someone else to describe step by step how you set this up
-
Now you got me worried.
How do I know if I am secure, I think I am, i am sure I had to put a number in to get it going. I am on a bt home hub. There is one other neighbour near me and I tried once signing on his and it would not allow.
Please only in plain easy english thanks.
:D :D :D
BT Homehub was released inherently insecure (the OEM, Thomson, were told to remove WPA in the BT specific version (its a Speedtouch 7)), though later updates have given options for securing, but are quite hidden.
Thanks TB, clear as mudd now. :-[ :-[ :-? :-?How can I tell, my laptop loads automaticaly when I switch it on. :D
unless you have specifically set it, it will be wep
I had to put a long number in when I first set it up, I assumed this was for security, just this thread made me wonder. :)
probably wep key.
Seeing as I refuse to have such a piece of junk in the house, I'll leave to someone else to describe step by step how you set this up
:y :y :y
-
I have changed the password on my home hub from default, I also check what is connected, still console, console, PVR, PC.
There are 4 or 5 wifis around here, only tried ours, my wife failed to get the DS to connect to a homehub - wrong one ;D ;D
Might try the other wifis one day, but can't decide which device to try as PC and PVR use Ethernet, PS3 needs a keyboard for ease of use and I can't be bothered messing with Wiiiiii
-
`Take security really-seriously here:
Hidden SSID
Wireless-notebook operates in DMZ....important stuff on LAN-only PC.
WPA-PSK encrytion (not a word-key I use a long string of letters/numerals/symbols)
MAC filtering
Router transmitter-output setting reduced to practical minima
Router login/pass specified
Hardware firewall
My Domains are hosted by a proxy registrant
Passwords changed weekly
Paranoid; moi? ;D
-
`Take security really-seriously here:
Hidden SSID
Wireless-notebook operates in DMZ....important stuff on LAN-only PC.
WPA-PSK encrytion (not a word-key I use a long string of letters/numerals/symbols)
MAC filtering
Router transmitter-output setting reduced to practical minima
Router login/pass specified
Hardware firewall
My Domains are hosted by a proxy registrant
Passwords changed weekly
Paranoid; moi? ;D
All that protection just for a handbag !!!!! ....... :)
-
I scratched my head for a while having built up a new PC once. Couldn't get it to see other devices in my network. Then it dawned on me that I hadn't entered the key for MY WLAN. Could surf the net quite happily though. :-/
It had just stumbled onto an open access point in the neighbourhood and conencted.
Kevin
-
`Take security really-seriously here:
Hidden SSID
Wireless-notebook operates in DMZ....important stuff on LAN-only PC.
WPA-PSK encrytion (not a word-key I use a long string of letters/numerals/symbols)
MAC filtering
Router transmitter-output setting reduced to practical minima
Router login/pass specified
Hardware firewall
My Domains are hosted by a proxy registrant
Passwords changed weekly
Paranoid; moi? ;D
All that protection just for a handbag !!!!! ....... :)
;D....Despite my farm`s setting in a rural idyl, wireless security is still a concern.
When I first got a wireless router I was stunned to discover the range they can give....down in the valley; 300 ft. lower and 1.75 miles from here (direct line of sight) there`s a roadside restaurant with an 'ordinary' retail wireless router being used as a simple hotspot for diners: ' I can could login from here with 60% signal strength! :o
-
advise them and charge them for the advice !!
-
Using WPA2 here. Although due to the amount of walls, and interference from everything in town, I have to use the rangebooster just to get a decent signal strength in my living room - where my media PC streams hi-def content!
-
Reading this thread makes me wonder whether the security procedures I have at home are a little light. :o
All I did was connect up the wireless router Sky gave me and typed in the code to access it wirelessly.
But in answer to the original moral dilemma: I would go along with the suggestion of an anonymous readme.txt on their desktop ::)
-
whilst i wouldn't do anything bad nor would i go looking in their files/folders, i would have a field day with wall paper, screensavers, random .txt files on the desktop and the opening and closing of the CD drawer.....and if they have two fo them then wayhey, twice as much fun