Hi Patrick, > That is interesting to consider. I wonder how the psychology works > out. Are hidden networks "off the radar", or do they look like juicier > targets, because somebody is trying to hide them?
I could imagine the latter. When faced with N networks to attack and limited resources, it probably won't be a random choice. And if someone has set their own SSID, and thinks `tvdetectorvan' is amusing, then they may be doing a lot of the set up themselves thus making mistakes. > Are attackers even looking for SSIDs that stand out? I would, if the alternative is mindnumbing homogenous lists. A neighbour here has house number plus first word of street name. Or someone does that wants to pretend to be that neighbour. :-) > Some attackers might actually be attracted to default-sounding SSIDs, > in the hope of finding an easy target with a weak password. By having some kit that's not Sky's, for example, have a `SKY*' SSID, then perhaps that's a slight impediment to their assumptions. > I think WPA2-PSK uses mutual authentication of the client and access > point. Yes, a Pairwise Master Key is achieved through the Four-Way Handshake that shows both parties knew the secret. WPA2-EAP also achieves this. One other point; there's no Forward Secrecy with WPA2 so an attacker can record encrypted data in the hope of one day gaining access and decrypting their backlog. That might be because you give it to them as a visitor knowing you're not doing anything yourself with wifi at the time and thinking you'll change it as soon as they've gone. Cheers, Ralph. -- Next meeting: Bournemouth, Tuesday, 2017-02-07 20:00 Meets, Mailing list, IRC, LinkedIn, ... http://dorset.lug.org.uk/ New thread: mailto:[email protected] / CHECK IF YOU'RE REPLYING Reporting bugs well: http://goo.gl/4Xue / TO THE LIST OR THE AUTHOR
