| Imagine a car equipped with nothing more than a | | | | are using a default SSID), cloaking is pointless. Due |
| laptop computer, a portable GPS receiver, and a | | | | to this, remember to change your SSID from the |
| wireless network card slowly strolls through your | | | | factory default. This is not a 100 percent |
| neighborhood. Unknown to any onlookers, this is | | | | effective method to secure your network, but it |
| no ordinary vehicle; rather, it is a wardriving | | | | is a good first line of defense. |
| machine. As the car strolls past homes and | | | | Change the default password. When you buy a |
| businesses, a wireless network card (available at | | | | router, a factory password is stored. People |
| any electronics store for as low as $25) scans for | | | | experienced in working with routers know the |
| any wireless access points. Anyone with a | | | | default passwords for different routers (and the |
| wireless network (and there are many out there) | | | | make of the router can be seen by wardriver |
| is vulnerable. The computer is looking for what is | | | | software such as netstumbler). It is important |
| called an SSID. An SSID is your wireless network | | | | that you secure your router with a good |
| name and it is being constantly transmitted by | | | | password. |
| your access point, letting computers know of its | | | | Encrypt your wireless communication. I can't |
| presence. The wardriver uses software such as | | | | stress the importance of encrypting your wireless |
| Netstumbler (for windows) or Cismet (for linux) | | | | communication enough. Enable encryption and |
| to scan the airwaves for SSIDs. The program can | | | | enter a key. Most routers are only capable of |
| track various access points at once and monitor | | | | WEP encryption, but if they permit, use EAP |
| the signal strength. These programs can also | | | | encryption, it's more secure than WEP. Like |
| check to see if the network is encrypted. The | | | | cloaking your SSID, encryption is not 100 percent |
| wardriver will generally configure his or her | | | | secure. Given enough time and determination, if |
| software to log any strong unencrypted signals. | | | | someone wants to target you and access your |
| Using the GPS receiver, the coordinates of the | | | | network, WEP encryption can be bypassed using |
| strong signal will be recorded. After this | | | | software such as AirSnort. |
| preliminary drive, the wardriver can return to the | | | | Filter the MAC addresses that are allowed to |
| locations that were recorded, and connect to the | | | | connect to your router. This would require that |
| access point. Once connected to an unencrypted | | | | you enter your router configuration and input the |
| network, the wardriver can use the victim's | | | | MAC address of each wireless card you have. |
| internet access, and can also explore computers | | | | This will restrict access so that only your |
| on the network. If files are being shared within | | | | computers can connect to the router. You will |
| someone's private network, all of that information | | | | need to obtain the MAC address (which is the |
| is susceptible to a wardriver. Furthermore, once in | | | | individual identification address of a network card |
| the network, a wardriver can sniff network | | | | in the form a 12 digit hexadecimal number). If |
| traffic and can view any information such as | | | | someone sniffs traffic and detects the MAC |
| passwords and credit card numbers you send out | | | | address of a computer wirelessly using your |
| to the internet - even SSL secured data. Wireless | | | | network, the wardriver could emulate that |
| network vulnerability is a major problem, and as | | | | address and connect to the router, but this takes |
| more and more households purchase wireless | | | | time. |
| technology, the problem of insecure networks | | | | If you configure file sharing on your computers, |
| increases. Sound scary? Well this happens every | | | | make sure it is password protected. You should |
| day, and it doesn't take an expert to pull off. It | | | | not share files on your networked computers |
| doesn't take an expert to protect against either, | | | | unless it requires an authenticated user to access. |
| however. | | | | Set up the same user accounts on your machines |
| Steps you can take to protect against wardrivers: | | | | so that your computers can share files. |
| There are a number of very simple steps you | | | | With these relatively simple steps, wireless |
| can take to protect your wireless network. For | | | | network users can secure their networks from |
| many of these, you will have to access your | | | | wardrivers. Wireless networks are inherently |
| router configuration utility (check your manual on | | | | insecure, and these tips will merely help you |
| how to do this, you will generally need to type an | | | | greater secure your network. If someone is really |
| IP address into your browser such as 192.168.0.1 | | | | determined to gain access to your network, given |
| or 192.168.1.1). | | | | enough time, a good hacker can get access. |
| Don't broadcast your SSID. If you are | | | | These tips will deter the average wardriver from |
| broadcasting your SSID, this is the first thing a | | | | gaining access to your network, however. |
| program will pickup and recognize. If you configure | | | | Although these methods are not definite security |
| your router to not broadcast your SSID, it will be | | | | measures, they will change your network from |
| difficult to detect (but not impossible, for some | | | | being something that can be hacked in a matter |
| software can sniff wireless communication, so if | | | | of seconds, to something that will take a |
| you are using your wireless network, the SSID | | | | determined hacker days if not weeks of work, all |
| can be revealed). If you are not broadcasting | | | | of which will have to be done while in close |
| your SSID, but it can be guessed (such as if you | | | | proximity to your network. |