-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The Monday 2007-09-17 at 17:03 +0200, jdd wrote:
>
> Carlos E. R. wrote:
>
> > A cracker can make his PC look like one of yours and connect, instantly.
>
> that is a cracker can guess your wep key (don't ask me how :-(), at the moment
> lurking the net gives him the mac adresse of the various hosts.
Yes, but he didn't say if he is using wep. My point is, that basing
security only in giving IPs to known machines, using the hardware address,
is not secure. Added to other methods, yes.
And wep... I was told of an ISP technician that installed all routers in
his area withe keys of the "012345678901234567890xx" type, the last to
digits being related to the customer. The customers were happy because
they had a long key that was easy to remember. The crackers were even
happier.
> the problem is: why should a cracker do this on your network? If this was one
> of a big company or if your work is highly important, may be.
>
> may be also an evil neigbor
Or one without ISP, and just wanting to send his emails free. I have a
friend in that case.
Somebody told me that once he tested his neighbors wifi network, and got
in easily. He then captured the traffic, and managed to learn his bank
login and password - shame on the bank for sending that in clear -. He
even tested it by entering the bank account, and exited. Obviously, that
neighbor was using windows. He said that, had he being malign, he would
have connected to the bank from a second neighbor network, and sent the
money to a third one: there would be no way to track him, and the police
would blame the second neighbor.
Anyway, M9 doesn't have neighbors, so he probably doesn't those problems :-)
- --
Cheers,
Carlos E. R.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Made with pgp4pine 1.76
iD8DBQFG7tzZtTMYHG2NR9URAs4DAJ4gF0cIRTCbnoxZkCzem71IxlJY4wCeP5Gh
dRrUP1UmwJ9VGoRC4WvqRTs=
=Uyxg
-----END PGP SIGNATURE-----
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
