LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking > Linux - Wireless Networking
User Name
Password
Linux - Wireless Networking This forum is for the discussion of wireless networking in Linux.

Notices


Reply
  Search this Thread
Old 06-27-2018, 02:12 AM   #1
Lynxlyon
LQ Newbie
 
Registered: Jun 2018
Posts: 9

Rep: Reputation: Disabled
How do you counter a death attack


So basically, there are about 30 morons near where I live who keep sending me deauthentication attacks every 10 minutes or so. In particular when I start airodump.

I tried dropping their packets using iptables, but Iím still being disconnected.
(When someone is sending packets, their data packets on airodump is very high, higher even than mine, so I tried blocking their Mac addresses). But it did not work.

Any idea people?
 
Old 06-27-2018, 06:51 AM   #2
wpeckham
Senior Member
 
Registered: Apr 2010
Location: Continental USA
Distribution: Debian, Ubuntu, RedHat, DSL, Puppy, CentOS, Knoppix, Mint-DE, Sparky, VSIDo, tinycore, Q4OS,Manjaro
Posts: 4,093

Rep: Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904Reputation: 1904
Who is providing the WIFI? The provider should be involved in solving this.
What is the security on this WIFI? WPA-PSK is the minimum I would recommend.
 
Old 06-27-2018, 11:24 AM   #3
onebuck
Moderator
 
Registered: Jan 2005
Location: Summer Midwest USA, Central Illinois, Winter Central Florida
Distribution: Slackwareģ
Posts: 13,763
Blog Entries: 37

Rep: Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946Reputation: 2946
Moderator response

Moved: This thread is more suitable in <Linux - Wireless Networking> and has been moved accordingly to help your thread/question get the exposure it deserves.
 
Old 06-27-2018, 12:26 PM   #4
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 24,303

Rep: Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147
Quote:
Originally Posted by Lynxlyon View Post
So basically, there are about 30 morons near where I live who keep sending me deauthentication attacks every 10 minutes or so. In particular when I start airodump.

I tried dropping their packets using iptables, but Iím still being disconnected.
(When someone is sending packets, their data packets on airodump is very high, higher even than mine, so I tried blocking their Mac addresses). But it did not work.

Any idea people?
Why, exactly, are you surprised that this is happening? You say nothing about your environment, but there are a good number of well-set-up networks that detect things (like jokers using airodump and other wifi hacking tools), and drop them.

Do these same 'morons' drop you when you're NOT using airodump???
 
1 members found this post helpful.
Old 06-27-2018, 05:05 PM   #5
Lynxlyon
LQ Newbie
 
Registered: Jun 2018
Posts: 9

Original Poster
Rep: Reputation: Disabled
Well I have WPA2, so encrypted. My wifi provider is bell.

And starting airodump should not drop your connections.

A simple scan. I get internet connections dropped, and CD traps popping out. Last I check, that was a chor doing their work.
And like I said, on airodump, the packets sent over my network would be like 5 and that sent over the others would be like 300.

Way more than mine even
 
Old 06-27-2018, 07:20 PM   #6
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 24,303

Rep: Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147
Quote:
Originally Posted by Lynxlyon View Post
Well I have WPA2, so encrypted. My wifi provider is bell.
Your ISP is not your environment. Is this your home network, dorm, business, public, what??
Quote:
And starting airodump should not drop your connections.
Wrong; it COULD be the trigger. As stated, a well monitored/managed network detects such things, and actively PREVENTS them. How it does that varies...could be a disconnect, could be a MAC address permaban, could be someone visiting your location and asking what you're up to.
Quote:
A simple scan. I get internet connections dropped, and CD traps popping out. Last I check, that was a chor doing their work. And like I said, on airodump, the packets sent over my network would be like 5 and that sent over the others would be like 300. Way more than mine even
So then back to "a managed and monitored network", since it's obviously not traffic based, but behavior based.
 
Old 06-28-2018, 11:44 PM   #7
Lynxlyon
LQ Newbie
 
Registered: Jun 2018
Posts: 9

Original Poster
Rep: Reputation: Disabled
Well, my CD tray also pops out. I think thatís a hack.

But assuming youíre right, what do I do? Move on to playing on another network?
 
Old 06-29-2018, 10:08 AM   #8
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 24,303

Rep: Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147Reputation: 7147
Quote:
Originally Posted by Lynxlyon View Post
Well, my CD tray also pops out. I think thatís a hack.
Really?? Much more likely than some dust in a microswtich, or accidentally bumping the eject button, right??
Quote:
But assuming youíre right, what do I do? Move on to playing on another network?
You don't 'play' on networks....that is a great way to get banned/arrested. If you want to use airodump and other such tools, you have ONE NETWORK to do it on....YOUR OWN. That's it, unless you're getting paid to do network security testing.
 
Old 06-29-2018, 10:24 AM   #9
dugan
LQ Guru
 
Registered: Nov 2003
Location: Canada
Distribution: distro hopper
Posts: 10,189

Rep: Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753Reputation: 4753
Quote:
Originally Posted by TB0ne View Post
Your ISP is not your environment. Is this your home network, dorm, business, public, what??
Quote:
Originally Posted by TB0ne View Post
Do these same 'morons' drop you when you're NOT using airodump???
Could we have clear answers to these please? These are important.

I mean, one way to read your question is that you're running cracking tools on other people's networks, you think you're getting caught and counterhacked by "30 morons", and you're asking how to avoid getting counterhacked. That's not what you're asking, is it?

Last edited by dugan; 06-29-2018 at 12:44 PM.
 
3 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Detection and Prevention of Blackhole Attack, Wormhole Attack in MANET Using ACO in ns2 neda_71 Linux - Software 5 08-13-2016 03:43 PM
Detection and Prevention of Blackhole Attack, Wormhole Attack in MANET Using ACO in ns2 neda_71 Linux - Virtualization and Cloud 1 07-30-2016 07:15 AM
PHP - POST variables named with counter: $_POST[${"variable$counter"} winairmvs Programming 1 08-06-2010 05:56 PM
cedega and counter-strike + cheat-death Metallic Linux - Games 4 02-23-2005 07:51 AM
winex 3.1 & counter-strike with cheathing-death russian_knight Linux - Games 0 10-28-2003 02:30 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking > Linux - Wireless Networking

All times are GMT -5. The time now is 10:00 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration