Thread: Re: First time home wireless - how to match PC to router - setup question
View Single Post
  #4 (permalink)  
Old 06-18-2007, 07:03 AM
Jeff Liebermann
Guest
  
Posts: n/a
Default Re: First time home wireless - how to match PC to router - setup question
Roger Harrison <RogerJHarrison2@aol.com> hath wroth:

>On Sun, 17 Jun 2007 19:47:58 -0700, Jeff Liebermann wrote:
>> if I have physical access, I can extract the key from the registry.
>Thanks to you, I am now better informed. I would assume this
>WPA2-Pre-shared-key can also be extracted with a "virus" or a "trojan" ...
>Is that correct?

Yes, I think they can. I don't know of any that do that, but it could
be done. I don't think that's the danger. Walking up to the computah
with a USB dongle and script, and extracting the registry keys, is all
that's required. I think I saw it being done in a busy coffee shop,
but I'm not sure. No keyboard entry required, just an autorun.inf
file and a VBS script.

>I'll spend more time making the WPA2-PSK key longer and harder to guess.
>I've been using all the funky characters and I will try to use at least 30
>characters each week.

John Navas posts this regularly to alt.internet.wireless on selection
of WPA keys.
<http://groups.google.com/group/alt.internet.wireless/msg/631f552840a5bb12>

>> Yep. That's what I've been trying to explain for the last 3 messages.
>> Using DHCP to limit available IP's with a /25 netmask doesn't work.
>As I said, and as you said, I need to bone up on the netmask!

Oops. I mean't /24 network (256 IP's).

>> No. Netstumbler is NOT a passive sniffer.
>> I suggest using backtrack & kismet.
>> That should show client MAC addresses
>I think I'll set up a separate spare PC for that as it sounds interesting.
>I also have Knoppix CDs so I might see if I can somehow use Knoppix with
>Kismet.

Backtrack is based on Knoppix. If Knoppix works, then Backtrack
probably will also work. The difference is that the Backtrack CDROM
has all the nifty hacker tools already installed, working, and tested.

>> They run DD-WRT V23 SP2 and SP3 respectively. Try it:
>> <https://home.LearnByDestroying.com:8080>
>I saw "Suzy", "micron", and "BLITZEN". :)

Suzy is a neighbors laptop. The one labelled * is another laptop at
the same location, but that has no visible machine name. Micron is a
kids desktop at a different neighbor. Blitzen is a customers laptop
on my desk which is currently driving me insane. Note that the list
only includes clients that are issued DHCP addresses. If the client
uses a static IP address, it will NOT show up on the list.

Ooops. I forgot to disable listing of the full MAC address. (fixed).

>I hope to learn more and more and more so I'll go quiet a while so I can
>learn without troubling others!

Good luck.

--
Jeff Liebermann jeffl@cruzio.com
150 Felker St #D http://www.LearnByDestroying.com
Santa Cruz CA 95060 http://802.11junk.com
Skype: JeffLiebermann AE6KS 831-336-2558

Reply With Quote
Sponsored Links