Winterlight wrote:
At 11:45 AM 5/3/2006, you wrote:
Hours? Not even.
I don't buy that, I haven't seen anything that supports the notion
that spoofing a MAC address is perfunctory. WEP, yes but let's take a
step back. The best defense is to hide in plain sight. Turn off
broadcasting. You can't hack into what you can't see, or don't know is
there. I know of no good reason to have public broadcast of a private
WAP. Use a password like SSID, turn off broadcasting, and enable MAC
addressing and you have won most of the battle. Add WPA encryption,
and your done.
Hidden SSIDs are easy to find with Kismet.
MAC addresses can be changed (Linux ifconfig eth0 hw ether
C0:FF:EE:C0:FF:EE)
WEP can be broken quickly
WPA is not perfect.
Personally for my home stuff, I use WEP and treat it like a little
padlock on a shed door. You know that by breaking the lock you are
breaking and entering, and not just trespassing. The wardriver/cracker
will just move on to the next AP.
Harry
