|
Testing my network security
I have set up new security on my home network. I have a neighbor how I KNOW has broken into my network before for downloading purposes. My dad just bought me a Nokia N810 for my birthday, and I was wondering if there was any software I could install on it to try and see if I could access it. I have been reading something called air-theft or something. *Sorry, bad with names*
|
Re: Testing my network security
To access his computer? Or to check your network? There is a tool called autoscan that will show connected devices to a network.
|
Re: Testing my network security
No, I already can access it. I am trying to crack my own network. I think the program is called aircrack. Screwed it up the first time I said it.
|
Re: Testing my network security
How do I connect a usb wifi adapter to my n810? It only has a micro-usb port.
|
Re: Testing my network security
Are you referring to checking the security of your wireless connection? Given that you're gonna use your n810, I'd likely say yes. So with that thought in mind, here's something I created that works.
First, put your wireless router into the most secure mode possible. If it allows AES 128 or 256 bit encryption, do it. I think the n810 will support 128bit AES for certain, but 256 I'm not sure on. Someone else could check that. Also, secure it with as many other forms of wireless security as possible. Lastly, turn on any and all logging on the router. If it can log to a remote location, set that up per the instructions. Once that's done, park a firewall between you and the internet something like this: Internet -> your network -> firewall -> wireless router The idea here is, you want the outside of the firewall facing the wireless router. This way, if he connects to it, he can't go anywhere without the "magic" password. You'll want to be sure that if you use remote logging on your wireless router that the router is aware of how to get logs out to it's remote location. One way to achieve this is to limit access by MacID. Since the internal physical interface's MacID can't be sniffed by an attacker, even if they get inside the wireless router, just setup the firewall to allow traffic from the router to the logging server only on the appropriate ports. Now, you have two options for the firewall setup. One is to use a proxy server for access and authentication. IE, you can get through the firewall, but you have to login first, and unless your thieving neighbor is an uber hacker, they're unlikely to ever get past first base with that setup. If you want to forgo that and really confuse the **** out of your neighbor or any other potential wifi hackers, consider using port knocking on the firewall. It's completely transparent, and unless they know what they're looking at, and actually see you hit the ports when you first connect, they'll never get through. Another option is that you can roll your own solution on this, but this is just two of mine I picked up from working with network security. :D |
Re: Testing my network security
Quote:
|
Re: Testing my network security
I think that for packet injection he may need a usb wifi adapter. I could be wrong but I think unless something has changed with aircrack for maemo we still need a usb adapter for packet injection. If you need a usb adapter you can get a otg-usb cable or get usb host and get this a usb gender changer, or if you are looking for something off the shelf you maybe able to find a usb cable with changeable tips for both sides of the cable. I can't find it now but I remember getting the cable from staples, but since you have an n810 even with the cable you would still need a micro to mini adapter.
|
Re: Testing my network security
My method is internet --> switch --> 2 routers. Each router pulls a public IP. One has wireless enabled, the other doesn't. Then just establish an ssh tunnel or vpn through the unsecured wifi to the other one (which is obviously where you're network is physically plugged into). If you're paranoid you can turn on wpa2/aes on the wifi router.
|
Re: Testing my network security
Lord_Raiden: That was a great article on network security, but I doubt that the OP was really looking for ways to secure his own network. Just sayin'.
|
Re: Testing my network security
Qole: Well, he said he had the connection hijacked by his neighbor before, and was apparently trying to make the network more secure, so I offered one possible solution to that issue. :D
|
Re: Testing my network security
thanks for the info lord raidin. i am more interested in trying the aircrack method. i was doing some more reading up on it. is it something i can do with the n810? hacking my own network?
|
Re: Testing my network security
Quote:
|
Re: Testing my network security
Quote:
|
Re: Testing my network security
Sharpie the question comes to mind why are you trying to hack your network with the N810 when a Lord Raiden put out more than enough network security measures to stop any further attempt on your network?
|
Re: Testing my network security
In any case, it boils down to this:
1) Set your wi-fi router to WPA2 and be done with it, the way it was suggested above. 2) Verify with your N810 that you have to set it to WPA2 and provide the passkey for actually logging in. 3) You're done. No need to set up any cracking tools, because unless something has changed dramatically lately then there's no known exploit for wpa2 with, for example, aes128, and thus there's no support for cracking it in the tools that have been mentioned. Those tools could only be used for cracking WEP, and why would you need that in order to check your own network? Hm? |
Re: Testing my network security
Quote:
|
Re: Testing my network security
Quote:
To be a good Systems Administrator, one must be a good hacker :D. If you don't know what you're fighting, it's difficult to defend against it. In any case.. at least the OP presented the question is such a way as to let whoever helps him remain conscience free ;). No matter how.. "phishy"... it may seem :D |
Re: Testing my network security
Quote:
And if you can't use WPA2 on your router due to problems with a computer on your network, upgrade the computer. There's a patch for Windows XP that you might need to install. Of course, most security breaches exploit the users, not the computer systems. The neighbour shows up at your door wearing a blue shirt and an official-looking badge, and says he's from the ISP, and that your systems are having difficulty, and Grandma lets him sit down at your computer and install a keylogger or something... |
Re: Testing my network security
Well, here's a fun way to stop your neighbor from ever getting onto your router ever again. Leave it open and connected to a honeypot (aka, a server designed to catch bad guys.) Let it capture all his pertinent information, and then display an official looking FBI warning that says, "You have illegally connected to this private, secure network. This is your one and only warning. Any further attempts to connect, and I'll turn you into the FBI. Yes, I know who you are, so stop stealing my internet!"
Guaranteed he'll connect once, see that message, wet himself, and then never touch it again. Also, you could set that up as the default webpage on the proxy so that no matter where he goes, unless he logs into the system and gets proper access to the internet through the router, that's all he'll get. I've done that to a couple guys before. They connected only once, and never ever connected again. hehe. :D |
Re: Testing my network security
Quote:
|
| All times are GMT. The time now is 15:22. |
vBulletin® Version 3.8.8