Security Basics mailing list archives
RE: wireless access point
From: "Christopher Harrington" <charrington () syseng com>
Date: Fri, 6 Jun 2003 14:39:00 -0400
There is a difference between a blank SSID and not broadcasting a SSID. Higher end AP's allow you to disable the SSID broadcasts. Most of the AP's I have played with allow a blank SSID to be broadcasted. Did you see a vendor on the one's you speak of? I would guess that you saw Belkin / Linksys / Netgear. --Chris -----Original Message----- From: Myers, Marvin [mailto:MRMyers () anteon com] Sent: Friday, June 06, 2003 2:34 PM To: Christopher Harrington; lod () acmesecurity org; security-basics () securityfocus com Subject: RE: wireless access point That is not entirely true. Netstumbler does in fact detect AP's that do not broadcast their SSID, it just takes longer. I have proven this on more than one occasion using NetStumbler on XP with both Orinoco and Netgear cards. -----Original Message----- From: Christopher Harrington [mailto:charrington () syseng com] Sent: Friday, June 06, 2003 1:23 PM To: lod () acmesecurity org; security-basics () securityfocus com Subject: RE: wireless access point Netstumbler does not detect AP's that do not broadcast their SSID. I know Kismet and Wellenreiter do, I cant speak for the others. --Chris -----Original Message----- From: Luiz Otávio Duarte [mailto:lod () acmesecurity org] Sent: Thursday, June 05, 2003 9:54 PM To: security-basics () securityfocus com Subject: RE: wireless access point Hi,
Is there any way of detecting wireless access point that doesn't broadcast the SSID?
Yep, It's possible. I will tell you why: We have two probing modes for channels in a 802.11 network. - Activing probe - Is when the prober machine exchange some probe frames with the AP. - RFMON - Radio Frequency Monitor (Passive probe) - when the probe machine capture all data in the channel and try to find some SSID (Service Set Identification) You can find AP that does not broadcast the SSID using any probe technique. You can use: Netstumbler, DStumbler, Kismet, Wellenreiter, THC-RUT, WEPCrack, AirSnort, .... That's All Folks! -- ## # Luiz Otávio Duarte (lod at acmesecurity dot org) # www.acmesecurity.org/~lod ## # ACME! (Computer Security Research) # www.acmesecurity.org ## # Unesp - São José do Rio Preto - São Paulo - Brazil ## --------------------------------------------------------------------------- ---------------------------------------------------------------------------- --------------------------------------------------------------------------- ---------------------------------------------------------------------------- --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Re: wireless access point, (continued)
- Re: wireless access point Jon Baer (Jun 04)
- Re: wireless access point Salvatore Poliandro (Jun 04)
- Re: wireless access point Mark Kockerbeck (Jun 04)
- RE: wireless access point Keith A. Pachulski, PPS, GCIH, GCFW (Jun 04)
- RE: wireless access point David Gillett (Jun 04)
- Re: wireless access point Jon Baer (Jun 04)
- Re: wireless access point leifg (Jun 04)
- RE: wireless access point Luiz Otávio Duarte (Jun 06)
- RE: wireless access point Christopher Harrington (Jun 06)
- RE: wireless access point Myers, Marvin (Jun 06)
- RE: wireless access point Christopher Harrington (Jun 06)
- RE: wireless access point Myers, Marvin (Jun 06)
- RE: wireless access point Bo Mendenhall (Jun 06)
- RE: wireless access point David Gillett (Jun 06)
- RE: wireless access point David J. Jackson (Jun 09)
- RE: wireless access point Myers, Marvin (Jun 09)
- RE: wireless access point Myers, Marvin (Jun 20)