Mail client messed up copy paste?. clipboard limit?. sorry for repost

A May 20, 2012, às 4:10 PM, Obluda Nemá Jméno Obluda Nemá Jméno Obluda Nemá Jméno escreveu:

>
> A May 18, 2012, às 8:09 PM, Vic Vandal escreveu:
>
>> Jon,
>>
>> If you have Cisco APs strategically deployed around your building the Cisco Wireless Access Controller can use its DB of authorized access points to detect rogue APs and triangulate their location. That triangulation ensures that you're not picking up APs or other wireless devices that are outside of your building.
>
> There's always the chance that an attacker can spoof either the BSSID or any other info that identifies the AP on the network.
>
>> You can also buy wireless jammers that DoS unknown APs on the network.
>
> Wireless jamming isn't legally allowed in some countries, here you have some examples http://en.wikipedia.org/wiki/Mobile_phone_jammer#Legalities
>
>>
>> -Vic
>>
>> ----- Original Message -----
>> From: "Marcus Adams" <marcus.adams (at) virtuesecurity (dot) com [email concealed]>
>> To: "Jon D" <rekcahpmip (at) gmail (dot) com [email concealed]>
>> Cc: security-basics (at) securityfocus (dot) com [email concealed]
>> Sent: Thursday, May 17, 2012 7:15:30 PM
>> Subject: Re: Tool to find rouge wireless access points?
>>
>> Hi Jon,
>>
>> Wired detection of rogue APs has two possible downsides. The first is
>> that you are simply relying on the MAC address in use to be authentic.
>> This can be easily modified by most home routers. The second is that
>> even when you do detect a rogue AP via MAC address, you may not know
>> where the device actually exists (depends on your network).
>
> Remember that an AP can be posed by any laptop.
>
>>
>> Doing an actual wireless war walk is the only sure way to root out any
>> rogue access points. The best way to do this is with something like
>> airodump. I also recommend using an external wifi card to get the best
>> signal reading possible. If you play around with it enough, you will
>> see its pretty easy to consistently get within a few feet of any
>> access point. You should just ensure you are scanning a/b/g/n bands
>> and also watch for APs with non-broadcasting ESSIDs.
>>
>> In addition to doing war walks, you may also want to evaluate a WIDS
>> that can monitor, triangulate, and alert in real time if rogue access
>> points crop up.
>>
>> Good Luck!
>> Marcus
>>
>>
>> On Mon, May 14, 2012 at 11:28 AM, Jon D <rekcahpmip (at) gmail (dot) com [email concealed]> wrote:
>>>
>>> Does anyone know of a tool to find rouge wireless access points?
>>> I know of a lot of the various wireless scanners, but with those, it's
>>> impossible to know if it's an AP on your network, or another companies
>>> network. Especially in office buildings where there are other
>>> companies above, below, and beside you.
>>>
>>> It seems like the only way to do it is to scan on the wired network
>>> for APs of any make/model, but I'm not aware of a tool that does it.
>>>
>
> I'll develop on my previous reply at the end of this reply, and remember this IS case specific. I'll only talk about WPA/WPA2 Enterprise infrastructures.
>>>
>>>
>>> Thanks,
>>> Jon
>>>
>>> ------------------------------------------------------------------------

>>> Securing Apache Web Server with thawte Digital Certificate
>>> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>>>
>>> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
>>> ------------------------------------------------------------------------

>>>
>>
>>
>>
>> --
>> Marcus Adams
>> Senior Security Consultant | CISSP | CE|H
>> Virtue Security - http://www.virtuesecurity.com
>> Marcus.Adams (at) virtuesecurity (dot) com [email concealed]
>>
>> ------------------------------------------------------------------------

>> Securing Apache Web Server with thawte Digital Certificate
>> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>>
>> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
>> ------------------------------------------------------------------------

>>
>>
>> ------------------------------------------------------------------------

>> Securing Apache Web Server with thawte Digital Certificate
>> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>>
>> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
>> ------------------------------------------------------------------------

>>
>
>
> Consider this scenario,
>
> 1- the network as a RADIUS server used to authenticate users
> 2- the company that owns the network provides a certificate for each user to install and have each supplicant (client) compare it with the one provided by the RADIUS server.
>
> Given that not every supplicant cares about this certificate, an attacker could mount a so called rogue AP with a spoofed BSSID, a fake certificate and perform an impersonation attack on the network.
>
> To identify this given rogue AP you would have to install your own 'rogue' AP that connects to all the likely valid AP's and check the certificate against the ones given by each one. If one gives a fake certificate, there you have it, rogue AP found!
>
> If by any means the rogue AP is installed using a real certificate (the one you are supposed to safely guard) well?. you're owned and should change the certificate ASAP, and perform any kind of pen-test on your systems.
>
> Either than this I believe it's always possible to deceive the network, and spoof whatever you want. Wirelessly speaking of course.
>
> Hope this helps.
>
> If you need more info just ask.
>
> Cheers,
>
> Obluda
> Systems Developer and Operator
>
>
>

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]