| War drivers are in the business of
| |
| | this will keep them occupied until you
|
| finding wireless access points,
| |
| | can track them down. There are many
|
| documenting them and uploading their
| |
| | honeypot programs free and commercial
|
| locations to the web. Why would someone
| |
| | that will simulate networks or servers
|
| do this, well for several reasons:First
| |
| | but are really just recording all the
|
| they want free internet access. Next they
| |
| | hackers' information and types of
|
| could just be war driving as a hobby;
| |
| | attacks.6. Use a RADIUS Server - RADIUS
|
| finally they could be targeting your
| |
| | servers require Wireless clients to
|
| network for financial gain.
| |
| | authenticate with a username and password
|
| One of the most asked questions is how
| |
| | not just with a PSK (Pre- Shared Key).
|
| do you stop hackers from trying to hack
| |
| | With out a RADIUS server you really don't
|
| your wireless lan and how to catch them
| |
| | know who is on your WLAN. With a RADIUS
|
| in the act.Stopping Wardrivers:1. Use
| |
| | server you know who is accessing your
|
| directional antennas: One of the most
| |
| | WLAN and when they accessed it. Also a
|
| under stated uses of directional antennas
| |
| | RADIUS server gives you the ability of
|
| are how they keep your wireless signal
| |
| | creating policies for times your WLAN can
|
| within your area of operation. If you are
| |
| | be accessed and other required security
|
| using a Omni directional antenna that is
| |
| | features the wireless clients must have
|
| causing half the signal to travel outside
| |
| | enabled their computers.Now let's put
|
| your building, you have a major security
| |
| | this all together to catch our hacker.
|
| problem. Also while using your wireless
| |
| | First you are going through your daily
|
| directional antenna turndown transmit
| |
| | routine of checking logs on your Kismet
|
| power to reduce your signal strength if
| |
| | IDS server and you notice the same MAC
|
| you can.2. Blend your wireless antennas
| |
| | address probing networks but not joining.
|
| into your buildings architecture or keep
| |
| | Next you check your help tickets and
|
| them low profile. This is not expensive,
| |
| | notice that in one area of the building
|
| the whole point is not letting your
| |
| | clients were having trouble connecting to
|
| antennas stick out like a sore thumb so
| |
| | the wireless network or they had trouble
|
| anyone driving by doesn't say, wow they
| |
| | staying connected.
|
| have a wireless network. Once again the
| |
| | Flags go up in your head, so you go over
|
| best way to stop people from trying to
| |
| | to your honeypot server and check that .
|
| hack your wireless network is to keep it
| |
| | You notice it was accessed around the
|
| hidden.3. Use Kismet or Airsnort - Make
| |
| | same time of the Kismet logs showed a
|
| a cheap wireless Intrusion detection
| |
| | client probing the network. The honey pot
|
| system. Use an older desktop computer
| |
| | recorded the MAC address of the WAR
|
| install Linux, install a USB wireless
| |
| | driver and the operating system and the
|
| adapter or PCI wireless adapter and boom
| |
| | computer name.Next you check your
|
| you have your wireless war driver
| |
| | security cameras for that time but don't
|
| stopper. Both Kismet and airsnort will
| |
| | really notice anything. So for the next
|
| alert you when wireless clients are
| |
| | couple days you keep monitoring your
|
| probing your network. If a wireless
| |
| | honey pot server and watch the hacker try
|
| client is using netstumber and not
| |
| | and crack the WLAN and the database
|
| joining networks they will be found by
| |
| | server. The whole process of cracking
|
| Kismet. Their wireless adapters MAC
| |
| | wireless encryption is actually two
|
| address will be logged and other details
| |
| | steps. The first step is gathering enough
|
| of the operating system. Most of the time
| |
| | packets for your cracking program to
|
| these could be false hits but if you
| |
| | crack. This whole process of gathering
|
| notice a pattern of the same MAC address
| |
| | enough packets can takes days or weeks
|
| probing networks you could have hacker
| |
| | not five minutes. Now once you do have
|
| issues.4. Security Cameras - No matter
| |
| | enough packets 64 bit WEP encryption can
|
| how hard you try not to have your signal
| |
| | be cracked in less that five minutes. 128
|
| bleed outside your operations area it
| |
| | bit encryption can take many times
|
| will...to a point. Probe your own network
| |
| | longer, WPA with TKIP and AES encryption
|
| as if you were a wardriver. Don't just
| |
| | can takes months to crack.My whole point
|
| use a standard wireless adapter to find
| |
| | is that you have some time to catch your
|
| out where you still can detect your
| |
| | hacker because he will be back many
|
| network. You will want to use a highly
| |
| | times, assuming that you already have at
|
| directional antenna to see how far away
| |
| | least the basic security features in
|
| you can detect your own network. Once you
| |
| | place.
|
| know your weak points setup some cheap
| |
| | Now once you have all your logs compiled
|
| security cameras to monitor those
| |
| | and your honey pot data you should have a
|
| areas.5. Setup a Honey Pot - Give the
| |
| | good idea how the hacker behaves. Check
|
| Wardriver what they want, a network to
| |
| | your security cameras and you probably
|
| hack. Take an access point connect it to
| |
| | notice the same car or person in the area
|
| a standalone switch with another junk
| |
| | around that time. Take that information
|
| computer connected to that switch. Name
| |
| | to your in house security and tell them
|
| the SSID something sounding important
| |
| | to watch for that vehicle or person and
|
| like server WLAN and name the computer
| |
| | call the police.If you are lucky security
|
| Database. Finally use a weak password or
| |
| | or police will spot him and apprehend
|
| just leave the access point without any
| |
| | him. Convicting him or her will be tough
|
| security. Script kiddies who say they
| |
| | but with your compiled logs and video you
|
| "hack networks" really are only
| |
| | should have a lot of evidence to help
|
| connecting to open wireless lans with no
| |
| | your case.Simple and secure wireless
|
| security. If you give them a "Important
| |
| | solutions.
|
| sounding SSID with a "database to hack"
| |
| |
|
