Home page logo

basics logo Security Basics mailing list archives

Re: About War Driving ..
From: Romain Gaucher <romain.gaucher () nist gov>
Date: Tue, 20 Feb 2007 17:48:37 -0500

You cannot only block the MAC ADDRESS; it's too easy to change (lots of drivers
implements the MAC ADDRESS - so as software, so easy to modify).

How about blocking the MAC ADDRESS? of those two computers IPs?

most wireless routers have an allow/disallow MAC Filter

David Turnage wrote:

You could try nbtstat -A  Netbios is turned on by default
on a windows pc and if they don't have a firewall turned on this will
tell you the machine name and if it is a pc on a corporate domain or
not.  Sometimes people or corporations name their pcs with the
company_name1, or username.  It might give you a place to start looking.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Jure Krasovic
Sent: Thursday, November 30, 2006 11:50 PM
To: gaurav saha
Cc: security-basics () securityfocus com
Subject: Re: About War Driving ..

gaurav saha pravi:

Hi , 
I was wondering if it is possible to locate and catch
a guy who is connecting to our wep wireless network
and downloading stuff from torrents and using up our
bandwidth .. 
I checked up with arp scan and found 2 unknown IPs and 247 
Is there anyway of locating the guy in a building of 7
floors and how to stop this ..I have tried changing
the Wep keys so . he is cracking the wep key.
Any Suggestion People ?



Do you Yahoo!?
Everyone is raving about the all-new Yahoo! Mail beta.


Did you think on rising up encryption to WPA... and may be use of Radius

server for authentication. It would help a lot.




Romain Gaucher
Web Apps Scanner Evaluation

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]