Home page logo

basics logo Security Basics mailing list archives

Re: Wireless security question
From: Liran Cohen <theog () tehila gov il>
Date: Thu, 23 Dec 2004 10:42:33 +0200

Actually I don't think it is possible to prohibit wireless networks from laptops, since some laptops come with their wireless card built in, what more, I do believe that one should concentrate most of the efforts in finding the solution on one's network, and not on the clients side to solve such problems. How about creating a separate LAN for mobile devices? which will be heavily monitored and limited in it's services (maybe even wireless :) ) and require port authentication on every switch on you're LAN (IEEE 802.1X) so that you'll know who's connected where, and the laptop computers will be forced to that "special" LAN, on which you may restrict and monitor traffic easier.

BTW, in my opinion, USB mass storage devices (disk on key etc...) pose a higher threat than Laptops. :)

Liran Cohen

Marty wrote:
Hi gang!

Here is a question for you...

We have a secure network with no wireless
connections whatsoever.

One of our laptop came in with credentials to log
on to the network through the Ethernet cable BUT
the person had just added a wireless card to his

This situation actually came up and the person
could see external wireless networks (from other
companies around our building) and access
Internet through there. Yeah I know they're
stupid, but it's the real world!

This seems like a potential threat for taking our
data out the back door. Copy files accessed through our network to
another network and voilà! No trace at all of the

We monitor internet access and block non-company
Email (Yahoo, Hotmail etc.).


Thanks and Happy Holidays!


Lèche-vitrine ou lèche-écran ?

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]