Security Basics mailing list archives

RE: Demonstrate to users- insecure APs

From: "Peter Marshall" <petermmarshall () hotmail com>
Date: Mon, 4 Jun 2007 13:34:05 -0400

Absolutely, all they have to do is mac spoof your gateway and they can get
all of the info going to the internet.  Check out Cain and Abel (oxid.it)
for examples.  They can also stage attacks on your machines and root them
for even more access.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of WALI
Sent: Monday, June 04, 2007 12:51 PM
To: security-basics () securityfocus com
Subject: Demonstrate to users- insecure APs

Suppose I leave my Access Point in Unsecured Mode, no WEP/WPA etc.

Someone connects to my AP and receives an IP assignment via it's DHCP.

Is it possible to sniff all the traffic from all the machines that get's 
connected and browse the Internet/LAN through this AP?

I mean, apart from the usual money saving aspect of having a free ride on 
other people's money, ( at home) what else is the risk?

Current thread:

Demonstrate to users- insecure APs WALI (Jun 04)
- RE: Demonstrate to users- insecure APs Peter Marshall (Jun 04)
- Re: Demonstrate to users- insecure APs Nicholas Chapel (Jun 04)
- Re: Demonstrate to users- insecure APs Adam Crosby (Jun 04)
- RE: Demonstrate to users- insecure APs Murda Mcloud (Jun 04)
- Re: Demonstrate to users- insecure APs Manuel Arostegui Ramirez (Jun 05)
- <Possible follow-ups>
- Re: Demonstrate to users- insecure APs bruce_mcculley (Jun 04)
- Re: Demonstrate to users- insecure APs krymson (Jun 04)