I brought this to the attention of our wireless vendor, Aruba, when it first came out a month or two ago. The first version of it was almost immune to any wireless DoS attacks, but I've tested the second and third versions and DoS attacks work well against those versions. So while Bradford can defend against it on the host side, your wireless vendor should be able to take care the clients trying to connect to it on the wireless side.
If you program Bradford to quarantine those computers who have the software installed, don't use the registry checker. The uninstaller leaves roughly 6 registry keys behind so even though you may uninstall it, you may still fail the scan. I already contacted Connectify support on it to make sure they were aware of it. It is a very nice tool though like you said in certain settings. From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[email protected]] On Behalf Of Lee H Badman Sent: Monday, December 07, 2009 12:49 PM To: [email protected] Subject: [WIRELESS-LAN] Heads Up- Rogue Wireless Utility- Get Yourself in Trouble With Windows 7 Given that we had one instance of this today, it stands to reason that we'll see more. Connectify ( www.connectify.me <http://www.connectify.me/> ) is a soft-router developed for Windows 7. It lets you "Take any Internet connection and share it wirelessly with no additional hardware!" Other than being a slick tool that has worthy applications in the right setting, it is also a rogue wireless service that is as problematic as any Airport or Linksys-style wireless device popped up where it doesn't belong, causing issues for clients in the vicinity and worries for the rest of us. Thankfully, it is also extremely easy to locate on the network for mitigation (so far). -Lee Lee H. Badman Wireless/Network Engineer Information Technology and Services Adjunct Instructor, iSchool Syracuse University 315 443-3003 ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
