Security Basics mailing list archives

Re: Demonstrate to users- insecure APs

From: Manuel Arostegui Ramirez <manuel () todo-linux com>
Date: Mon, 4 Jun 2007 20:43:24 +0200

El Lunes, 4 de Junio de 2007 18:51, WALI escribió:

Suppose I leave my Access Point in Unsecured Mode, no WEP/WPA etc.

Someone connects to my AP and receives an IP assignment via it's DHCP.

Is it possible to sniff all the traffic from all the machines that get's
connected and browse the Internet/LAN through this AP?

I mean, apart from the usual money saving aspect of having a free ride on
other people's money, ( at home) what else is the risk?


You can easily show them how insecure is that, by performing the typical man 
in the middle attack, and sniffing everthing going over the network

All the best
-- 
Manuel Arostegui Ramirez.

Electronic Mail is not secure, may not be read every day, and should not
be used for urgent or sensitive issues.

Current thread:

Demonstrate to users- insecure APs WALI (Jun 04)
- RE: Demonstrate to users- insecure APs Peter Marshall (Jun 04)
- Re: Demonstrate to users- insecure APs Nicholas Chapel (Jun 04)
- Re: Demonstrate to users- insecure APs Adam Crosby (Jun 04)
- RE: Demonstrate to users- insecure APs Murda Mcloud (Jun 04)
- Re: Demonstrate to users- insecure APs Manuel Arostegui Ramirez (Jun 05)
- <Possible follow-ups>
- Re: Demonstrate to users- insecure APs bruce_mcculley (Jun 04)
- Re: Demonstrate to users- insecure APs krymson (Jun 04)