SSID can be "cloaked" - not broadcasted by the AP. However, when a client associates
with the AP the SSID is transmitted in a management frame. This is alo picked up by
Kismet. Also, if there are no client associations for a long time, the attacker may
produce noise thus causing the client to disassociate or the attacker may transmit a
spoofed management frame for disassociation. This waill cause the client to
re-associate thus revealing the SSID. This further emphasizes that the SSID cannot
totally be prevented from being transmitted. A well configured VPN solution may be the
right choice for securing the wireless network.
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/
