A word of caution

[mejinks]

A friend of mine has been receiving letters from his ISP saying he had been going over his usage blah blah, but he cannot see how he has as he works mostly into late evening and only lightly browses the internet in the night.

I took a look this evening and found he was using his wireless connection for his laptop and everything was dog slow for a broadband line. It would have been slow for dial up standards. I notice the ADSL status light on his Netgear flickering away like a madman, so I think "hello?!?" and dive into the router.

Even though he had WEP set up, there appeared to be a local leech who had sniffed his key and was using his connection to download things.

I've just spent the latter part of the evening removing keyloggers and setting him up on WPA. As his wireless card is from the ark, we needed a trip to PC world to buy a new network card.

I was gutted as this is the first time I have ever seen this, I now realise maybe I should have left everything the way it was and called the police, but alas, alarm bells ringing and hunger made me do some rash decision making and previous experience of the local plod made me nervous.

The moral is, check you aren't on WEP, use WPA as a minimum and if like me you have a decent router, set up internal RADIUS authentication for wireless clients and keep an eye on suspicious things.

[Flibster]

Also, deny all MAC addresses apart from yours.

[Joe 90]

cables all over the house FTW

no1 can hack my CAT5

[Garp]

WPA is still hackable. Sure it'll generally take a lot longer than hacking WEP, but its perfectly feasible. Wireless is insecure, full stop.

If you want to try it for yourself the tools you'll need are right here:
http://www.grape-info.com/doc/linux/...ck-ng-0.6.html

They are *nix based, but you could run them within a cygwin session on a Windows box, and there are almost certainly going to be Windows variants out there somewhere.

[Daz]

Your router should have a screen to show you.

[Feek]

A lot of routers have an option to display who is connected - I know mine does, but I can't tell you where. Have a plonk around the front end in a browser and see if it's there somewhere. What router do you have?

[Davey_Pitch]

In your router management there should be a page which shows all connected deviced. For me there are usually 3 - my 2 pc's and my Xbox 360. If I ever saw more than that I'd be checking it out to find out who it is.

[Garp]

3 responses in as many minutes... anyone spot a bunch of bored geeks around here?

[CliffyG]

WEP / WPA doesnt really matter, if they want in bad then they can get in. MAC address filtering helps a little as does not being DHCP'd but these are all easy to get round as with a little packet sniffing and spoofing you'd be in.

[Daz]

Aye, the best you can do is keep out the opportunists, if somebody really wants to get in they can do. There are other ways beyond encryption and access control to 'secure' wireless access, but they're technologies not directly related to wireless, and require infrastructure.