finding a stolen access point
a buddy of mine somehow came across a cisco access point
(says he bought it off craigslist) and now wants to install it in his home, he did a factory reset, did some configuring (changed ssid) and secured it via wep? –
now he wants to know if its possible for the original owners to track this access point?
if he used wep, he didn’t secure it.
If it was stolen then he technically commited a crime by receiving it (since he obviously knew that it was stolen). It can be tracked during warranty returns. Technically they could identify it if it trys to update its software… but it’s unlikely that they actually use it for that.
Overall, I’d return it to the rightful owner, since it’s the right thing to do. In the future, do not purchase stolen property, and report illegal ebay auctions.
if the original owner is smart, they can track the mac of the access point. not too hard, i can run istumbler on my mac and see several access point’s mac and vendor ID’s
Anyone actively attempting to break into his AP is going to be able to get past WPA/2+AES as well. No consumer solution is truly going to be secure.
You need a RADIUS server, or a truly random password consisting of random numbers and letters that takes up the entire available length and has zero resemblance to any real word.
Anything like that for pc?
|
Anyone actively attempting to break into his AP is going to be able to get past WPA/2+AES as well. No consumer solution is truly going to be secure.
You need a RADIUS server, or a truly random password consisting of random numbers and letters that takes up the entire available length and has zero resemblance to any real word. |
That’s why I use passwords like…
f13ld$0fG0ld
i+$ab34ut!fuld4y1n+heneig3b0rh00d…
g0$$am3rw!ng$
…and so on. Very hard to guess, especially when the WAP will only accept their hexadecimal equivalents.
thanks for the replys
so, if they do track that mac its possible to find out his address or where he lives?
|
That’s why I use passwords like…
f13ld$0fG0ld …and so on. Very hard to guess, especially when the WAP will only accept their hexadecimal equivalents. |
Not good enough. John the Ripper, etc, will mutate words beyond their basics to things such as that.
Edit: Had a link here explaining how to do it, but I figure that’s probably against the forum rules.
As pointed out previously, you need a RADIUS server to really secure a wireless network; pre-shared keys are just for keeping honest people honest, which is all the security most people will ever need. No honest person is going to invest the effort necessary to figure out any of the passwords I posted above.
|
thanks for the replys
so, if they do track that mac its possible to find out his address or where he lives? |
In theory, yes.
Closing this. Can’t advocate the "hiding" of stolen equipment. Sorry.
No related posts.
Related posts brought to you by Yet Another Related Posts Plugin.