Home page logo
/

basics logo Security Basics mailing list archives

Re: Wireless security question
From: Tomas Wolf <tomas () coronadoplace com>
Date: Thu, 23 Dec 2004 11:26:50 -0600

Hello,

As I see it you have a problem when the person communicates over the wireless sending any internal/sensitive data. For such transmission is not encrypted and goes over non-trusted network.

1. Implement port-safe or other measures that will keep track MACs on ports; or disable (if possible) unused ports (that way only approved users can tap into the wired network).

2. Produce policy that will address wireless issues; !!! Educate users !!! about threat that it might be for the company.

3. Might wan to think about buying some cheap AP, turn it on inside the office without plugging it into anything... That will take care of those close-by users who have "associate with anything" settings.

4. Enforce Policy...

5. Buy a lot of microwave ovens and run them all the time... :)

 I hope that helps.

Tomas


Marty wrote:
Hi gang!

Here is a question for you...

We have a secure network with no wireless
connections whatsoever.

One of our laptop came in with credentials to log
on to the network through the Ethernet cable BUT
the person had just added a wireless card to his
laptop.

This situation actually came up and the person
could see external wireless networks (from other
companies around our building) and access
Internet through there. Yeah I know they're
stupid, but it's the real world!

This seems like a potential threat for taking our
data out the back door. Copy files accessed through our network to
another network and voilà! No trace at all of the
mischief.

We monitor internet access and block non-company
Email (Yahoo, Hotmail etc.).

Suggestions?

Thanks and Happy Holidays!

Marty!


__________________________________________________________
Lèche-vitrine ou lèche-écran ?
magasinage.yahoo.ca




  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault