This is what i would do, however I'm not sure its a viable solution in your situation.
I would set up two wireless networks. One b network thats crazy locked down all the possible ways you can, and isolated from your other normal network so that it cant reach your local network, only internet. And a second g/n network thats more openly configured but with WPA 2 with AES encryption for the rest of your computers.
Not sure if only internet access is whats needed for your emac and stuff so might not be a viable solution for your particular situation. Also there is of coarse the cost of doing all this as well.
so what do you want me to do? sledgehammer my wireless b cards and my emac?
That sounds harsh, doesn't it? Think of it, however.
You had a parasite leeching off your network. As you say, it was someone with a low skill level. Consider the implications of it having been someone more skilled - at least aware enough to match network names. You'd still be supporting the parasite.
Now go one step further - a downloader. The latest Harry Potter movie went on sale today. Want to bet a rip of the BluRay disc isn't already available? How about someone with an appetite for music?
How long do you want to depend on the lack of skills of your neighbors?
PlainBill
For a number of reasons, both health and personal, I will no longer be active on this board. Any PMs asking for assistance will be ignored.
Never be afraid to try something new. Remember, amateurs built the ark. Professionals built the Titanic.
I've been trying to mess with airodump and such but so far I don't have any wifi adapter with packet injection support, except some desktop atheros adapters. all I want is access to my neighbors 2wire incase my charter goes down, which it always does
but my neighbor where I used to live had an open access point with a linksys router, and didn't changer the username/password
I never did anything, but I could of, even though the prick accused me of 'hacking his network'. even though any idiot with a car and a laptop could of driven by at any time and 'hacked his network'. I asked him to secure it but he had an adapter without wpa support and such shotty wep support he never listened to me
I've been trying to mess with airodump and such but so far I don't have any wifi adapter with packet injection support, except some desktop atheros adapters. all I want is access to my neighbors 2wire incase my charter goes down, which it always does
2wire password is a 10 digit number. On wep you can crack in seconds. With WPA its like 4 or 5 days of cranking on a fast GPU (CPU, forget it).
My suggestion is to lock any wireless signal down as tight as possible. First, you don't want to be broadcasting your browsing and financial activities over the neighborhood. Second, you don't want to have someone else hogging your bandwidth. Most important, you don't want to get a visit from some policeman asking about the 5 gig of kiddie porn that was uploaded from your IP address.
PlainBill
I also read where someone that wanted to get his neighbor in trouble hacked the WEP and sent threatening email to the VP. That brings down the Feds pretty quick.
* Disable SSID broadcast
* Use MAC address filtering
Will prevent access to your network by 95% of morons, however if someone knows how to get past one, they probably know how to circumvent the other as well.
Still don't feel secure? Make sure you're using WPA2 with an insane password - Nobody is going to have much fun attacking your security if your password is A5,6zUWi"Sf,octbe`F7jZ|-.R#*P)XoPlg2dR#8$R#EQl}ah1f#(+aofUSu'wx for example - but you must not use WEP!
Feel really paranoid?
Time to start adding more stuff like RADIUS, SSH, VPN, whatever...
Feeling like being weird? Use something like 802.11a that a lot of cards don't support
"Tantalum for the brave, Solid Aluminium for the wise, Wet Electrolytic for the adventurous"
-David VanHorn
One of the most elementary steps is to use WPA and a good password. GRC's 'Perfect Password Creator' will generate something that presents a real challenge to any hacker - or even if you are just trying to enter it manually.
PlainBill
For a number of reasons, both health and personal, I will no longer be active on this board. Any PMs asking for assistance will be ignored.
Never be afraid to try something new. Remember, amateurs built the ark. Professionals built the Titanic.
Radius woldnt be a bad idea. I believe ddwrt supports radius on an open wifi link and im sure the emac supports it as well. But I have a better idea that I have done a time or two. Set up a portal page with a TOS and anchor free that will genorate ad revinue. Then at the bottom make them put in their adress as the conf that they read the TOS. finally see if she really is a hotgirl and of age, buy some trogens (not the virus) and make your move.
And to whoever had the idea to hijack to kittens and flip everything upside down.... f'ing hillarious! Will try sometime
I've seen a few wireless access points for home use which have an internal RADIUS server (one of them allows up to 16 clients).
TKIP is unfamilar to me, but AES is, since I know that AES is a high-grade encryption standard.
Do you know of any public wireless networks which use a RADIUS server?
My first choice in quality Japanese electrolytics is Nippon Chemi-Con, which has been in business since 1931... the quality of electronics is dependent on the quality of the electrolytics.
Ratdude has some 802.11b clients which do not support WPA. That is why he can not do the standard thing and use WPA with a (possibly randomly generated) pre-shared key.
As already mentioned, chaging SSID, making it not broadcast the SSID and using MAC filtering will ultimately stop most people.
If one needs to have better security than that (and one can not use WPA/WPA2) then more elaborate solutions like using VPN and the like for wireless communication is probably more appropraite.
i ultimately switched it to wpa2 with a broadcasted SSID. linux was not playing well with the hidden network (it made me re-enter it after a long bout of clicks upon every reboot).
Comment