LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 10-02-2006, 01:58 PM   #1
Xerop
Member
 
Registered: Jan 2004
Distribution: Suse, Red Hat
Posts: 129

Rep: Reputation: 15
Cable company - wifi unused crack?


Hello I just got cable internet and the cable company put in a wireless cable modem in my house. I do not have any wireless devices nor have any plans to have them.
My question is whether any one can break in to use my internet if I do not use the wireless functionality. (Apparently it must stay on with a wep key) They wouldn't let me turn the wireless off even though I am not going to use it!

I have heard to crack a network you need packets ie data transferred from the access point to a client to do this. Is it possible to crack if no one has the wep key and no one ever connects to this device.

I had a friend do a scan of my network and when he tries to connect to my ap (with a false wep key) it does send one or two packets of data.

So is it possible to crack this ap?
 
Old 10-02-2006, 02:30 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
as i understand it nothign is impossible, but it's amazingly unlikely if you have a 128bit key on there. as you mention, you conventionally crack a wep key by sucking out of the air enough encrypted data to be able to guarentee that use can find a commonality in it and gain access. obviously a 64bit key works the same but is massively more susceptible. But without that data, they're onto a dictionary attack pretty much, and i really wouldn't worry about the changes of them managing that.
 
Old 10-02-2006, 04:22 PM   #3
abegetchell
Member
 
Registered: Mar 2006
Distribution: RHEL, Fedora, Ubuntu
Posts: 32

Rep: Reputation: 15
Quote:
Originally Posted by Xerop
Hello I just got cable internet and the cable company put in a wireless cable modem in my house. I do not have any wireless devices nor have any plans to have them.
My question is whether any one can break in to use my internet if I do not use the wireless functionality. (Apparently it must stay on with a wep key) They wouldn't let me turn the wireless off even though I am not going to use it!

I have heard to crack a network you need packets ie data transferred from the access point to a client to do this. Is it possible to crack if no one has the wep key and no one ever connects to this device.

I had a friend do a scan of my network and when he tries to connect to my ap (with a false wep key) it does send one or two packets of data.

So is it possible to crack this ap?
While several gigabytes of data is needed to crack WEP (regardless of key length, so don't feel that you are more secure by using a 128 bit WEP key), this is easily accomplished by generating WEP IV's using tools readily available on the web, most notably aireplay (http://aircrack-ng.org/doku.php). Using this technique it is possible to crack a WEP key in under ten minutes (and that's generous). If the cable company will not disable wireless access or turn on WPA2, there are very few options available to protect yourself from intrusion.

Last edited by abegetchell; 10-02-2006 at 04:26 PM.
 
Old 10-02-2006, 04:44 PM   #4
Xerop
Member
 
Registered: Jan 2004
Distribution: Suse, Red Hat
Posts: 129

Original Poster
Rep: Reputation: 15
to my knowledge though aireplay can't really help because it needs an ARP packet. The correct ARP packet can only come from a client that successfully connects... taken from http://www.aircrack-ng.org/doku.php?...8b1428813f48d3

no one will be using this ap except for potential intruders.

quote:
Quote:
ARP works (simplified) by broadcasting a query for an IP and the device that has this IP sends back an answer. Because WEP does not protect against replay, you can sniff a packet, send it out again and again and it is still valid. So you just have to capture and replay an ARP-request targeted at the AP to create lots of traffic (and sniff IVs).
unless the offender can think of a way to make the ap talk I dont think much but bruteforcing can help. Although as I mentioned earlier the ap does talk (send a few data packets with IVs) if someone is connecting to it with a false key..

Last edited by Xerop; 10-02-2006 at 04:48 PM.
 
Old 10-02-2006, 04:46 PM   #5
Interdictor
Member
 
Registered: Jul 2006
Location: Runcorn, England
Distribution: Ubuntu 6.06 & 6.1, Mandriva 2007, Knoppix
Posts: 72

Rep: Reputation: 15
Just as a suggestion, does your wireless cable modem have an option to limit access to specific the specific mac addresses of the computers connected via cable?

I'm sure if that would make the overall system more secure, but it may just add a minor extra bit of security.
 
Old 10-02-2006, 05:00 PM   #6
osor
HCL Maintainer
 
Registered: Jan 2006
Distribution: (H)LFS, Gentoo
Posts: 2,450

Rep: Reputation: 79
Just as another suggestion: if push comes to shove, just wrap your modem/ap in tin foil . Seriously. Think about it.
 
Old 10-02-2006, 09:47 PM   #7
Xerop
Member
 
Registered: Jan 2004
Distribution: Suse, Red Hat
Posts: 129

Original Poster
Rep: Reputation: 15
Good idea a metalic net would do the trick... the broadcast wouldn't even get 10 feet away from it... sweet problem solved! ^_^
Thanks for your help!
 
Old 10-02-2006, 11:15 PM   #8
jantman
Member
 
Registered: Nov 2005
Location: New Jersey, USA
Distribution: SuSE
Posts: 492

Rep: Reputation: 31
Just for the same of discussion...

1) If you can adjust the router's settings, set a 128-bit key, or use a randomly-generated alphanumeric password. That'll help any brute-force attempts.

2) Disconnect the antenna.

3) As to the metal shield - it's going a bit overboard, and the wires in and out would defeat some of the usefulness, but you want a Faraday cage
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Best WiFi PCI (or else) card in general for Linux and WiFi network experimentation? ICEMANII Linux - Wireless Networking 2 09-21-2006 05:50 PM
One Cable One Wifi isp how to combine for speed on fedora core 5 zonemikel Linux - Wireless Networking 6 08-16-2006 11:50 PM
Cable Internet & WIFI Matras Linux - Wireless Networking 4 04-20-2005 12:29 AM
Ralink WIFI with Asus@Home WIFI wavemachine Linux - Hardware 0 10-20-2004 04:10 PM
My cable company doesn't support linux voltare Linux - Newbie 3 04-15-2004 12:26 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 04:28 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration