Reset your router to defaults, change all passwords, change IP range, use a stronger WPA key and enable MAC filtering with only the MAC of your devices. This should get the guy/gal annoyed and should block him/her for a while. In the mean time check your router often. Oh and change your SSID and do not advertise it.
--- Andre Courchesne - Consultant http://www.net-forces.com MSN: [email protected] Skype: VoipForces L'information contenue dans le présent document est la propriété de Andre Courchesne. Et est divulguée en toute confidentialité. Cette information ne doit pas être utilisée, divulguée à d'autres personnes ou reproduite sans le consentement écrit explicite de Andre Courchesne. The information contained in this document is confidential and property of Andre Courchesne. It shall not be used, disclosed to others or reproduced without the express written consent of Andre Courchesne. On 2010-07-04, at 1:04 PM, Hroðgar Skjöldung wrote: > Barev, > > On Jul 4, 2010, at 12:45 PM, Vrej Melkonian wrote: > >> Disable wireless and then buy a 50 meter long ethernet cable :) > > Funny, but I had already made one :) wifi is for the laptops :( but > yeah, I know > > >> MAC filter should work. Is he cloning you MAC? > > At first that is what I thought, I have registered MACs only. but sofar > arpwatch hasn't made notice of it. > > > I think I will flash the rom next... > > Shnorhagallem > Hroth > > > >> --- On Sun, 7/4/10, Hroðgar Skjöldung <[email protected]> wrote: >> >>> From: Hroðgar Skjöldung <[email protected]> >>> Subject: [MLUG] what to do...wifi cracker? >>> To: "Montreal Linux Users Group" <[email protected]> >>> Received: Sunday, July 4, 2010, 10:59 AM >>> Hej! -- sorry for >>> the long email/story -- >>> I was suspicious that someone was breaking into my wifi, it >>> was subtile like hijack was throttling in unison with >>> my internet usage. It also looks like he/she is using a >>> homebrew VPN going to unregistered IPs. Unfortunately, I am >>> using a d-link di-524. Since I am monitoring activity >>> via the 'router', stuff like tcpdump is almost >>> useless ( unless there is a technique I am not >>> aware of ) ...I will get a linux based wifi router >>> soon. >>> >>> If you are familiar with the DLink routers could you >>> provide suggestions? Script kiddies can crack WAP/WEP are >>> there alternatives? >>> >>> 1) I have MAC filters on, 2) I have added domain IP >>> filters, 3) I have been changing the pass >>> wrd, 4)I have hidden the SSID >>> The more experienced will know that most of >>> this is useless. There is no gain >>> control on this router! >>> >>> >>> Finally, It turns out that I was right, there is someone on >>> my wifi, but what now? What does one do in >>> Canada/Québec? Do I call the CRTC, my ISP , write an FU2 >>> attack...? Any techniques on triangulating wifi >>> clients? I have a wispy, parabolic dish, and a >>> baseball bat. Just a joke, I dont like base >>> ball ;) ;) >>> >>> BTW: Also, my mac finds the VPN and adds it to my >>> routes!(?) >>> ??route broadcasting on a hijack? any suggestions >>> from the security gurus ? >>> >>> Mange tak,takk fyri >>> Hroth >>> >>> PS. Does anyone know if this is correct? My >>> DLink MACs both seem to be the same address, assigned >>> to "Alpha Networks Inc." >>> >>> >>> _______________________________________________ >>> mlug mailing list >>> [email protected] >>> https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca >>> >> >> >> _______________________________________________ >> mlug mailing list >> [email protected] >> https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca > > _______________________________________________ > mlug mailing list > [email protected] > https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca _______________________________________________ mlug mailing list [email protected] https://listes.koumbit.net/cgi-bin/mailman/listinfo/mlug-listserv.mlug.ca
