02-16-2007, 14:43
|
#1
|
Area Commander
Join Date: Nov 2005
Posts: 1,403
|
Change your router's password!
If you have a home router, make sure that you change the password from the factory default (the user id is usually admin and the pasword is password) The exploit described below will probably pop up pretty quickly now that it's been described.
Check your documentation or visit the vendor web site to get instructions on how to change the password. Include numbers and special characters for a strong password.
Symantec Sounds Warning on Router Passwords
Edited: link fixed.
__________________
mugwump
“Klaatu barada nikto”
Last edited by mugwump; 02-17-2007 at 09:01.
|
mugwump is offline
|
|
02-16-2007, 18:04
|
#2
|
Moderator
Join Date: Feb 2004
Location: Central Florida
Posts: 3,045
|
If someone buys a router for the house and doesn't change the default password they deserve everything they get, (or have taken from them). That's just plain stupid.
When in doubt, RTFM
(your link doesn't work)
__________________
"Are you listening or just waiting to talk?"
Light travels faster than sound. This is why some people appear bright until you hear them speak.
"Fate rarely calls upon us at a moment of our choosing."
Optimus Prime
|
Kyobanim is offline
|
|
02-16-2007, 22:18
|
#3
|
Quiet Professional
Join Date: Jan 2004
Location: DFW Texas Area
Posts: 4,741
|
I set up a Wireless Network a while back and, for the "Wireless Access" side of it, I set up the router to only allow access by specific MAC Addresses.
People driving by can see the WAP, but they can't access it.
Later
Martin
__________________
Martin sends.
|
Ambush Master is offline
|
|
02-16-2007, 22:34
|
#4
|
Quiet Professional
Join Date: Jan 2004
Location: LA
Posts: 1,653
|
Quote:
Originally Posted by Ambush Master
I set up a Wireless Network a while back and, for the "Wireless Access" side of it, I set up the router to only allow access by specific MAC Addresses.
People driving by can see the WAP, but they can't access it.
Later
Martin
|
I did too. Well, the guy that set it up did. I have no idea how to change a router password.
__________________
Somewhere a True Believer is training to kill you. He is training with minimal food or water, in austere conditions, training day and night. The only thing clean on him is his weapon and he made his web gear. He doesn't worry about what workout to do - his ruck weighs what it weighs, his runs end when the enemy stops chasing him. This True Believer is not concerned about 'how hard it is;' he knows either he wins or dies. He doesn't go home at 17:00, he is home.
He knows only The Cause.
Still want to quit?
|
NousDefionsDoc is offline
|
|
02-16-2007, 22:42
|
#5
|
Quiet Professional
Join Date: Jan 2004
Location: DFW Texas Area
Posts: 4,741
|
Quote:
Originally Posted by NousDefionsDoc
I did too. Well, the guy that set it up did. I have no idea how to change a router password.
|
If you want to Skype, give a shout and I'll walk'ya through it!!
Later
Martin
__________________
Martin sends.
|
Ambush Master is offline
|
|
02-17-2007, 08:59
|
#6
|
Area Commander
Join Date: Nov 2005
Posts: 1,403
|
At home, I wouldn't need an ISP at all. I could leech off of any one of 3 unsecured wireless connections of my neighbors. All 3 are called "Linksys". I'd bet a month's mortgage payment that all still have the default settings.
__________________
mugwump
“Klaatu barada nikto”
|
mugwump is offline
|
|
02-17-2007, 09:03
|
#7
|
Area Commander
Join Date: Nov 2005
Posts: 1,403
|
Quote:
Originally Posted by Kyobanim
(your link doesn't work)
|
Link fixed. At least the link didn't go to a midget porn site. I hate when that happens.
__________________
mugwump
“Klaatu barada nikto”
|
mugwump is offline
|
|
02-17-2007, 14:00
|
#8
|
Quiet Professional
Join Date: Sep 2005
Location: NC for now
Posts: 2,418
|
Sec
Besides changing the routers password I also use Air Alarm/Air Snare. Don't remember the exact name, I am not at my house now to check. This program sounds an alarm when someone not in your network is using it or trying to hack in, it was free off a cd that came with windows magazine. I live on a farm and the alarm went off one day. I drove out to the main road and no shit there was a guy sitting in his car. I didn't get a good look but I am 90% sure he had a laptop sitting on his lap. When I pulled up behind him and got out he sped off. I was wearing my pistol rig so this might of spooked him. Gave his license to the cops but of course there was nothing they could do, go figure. No law against sitting in your car on the side of the road. No way to proove what he was doing.
I am sure there are a few free programs on the net like the one I use. Anyone using something similar out there? I plan on hard wiring my home network when I return home. I couldn't imagine having a wireless network living in the suburbs. I would like to find a program that ID'S the computer that is hacking you. Not just the IP number but the name of the computer would be great. Last question, is there a program that will tell you if your emails are being monitored on a network.
__________________
Sounds like a s#*t sandwhich, but I'll fight anyone, I'm in.
|
kgoerz is offline
|
|
02-17-2007, 14:35
|
#9
|
Quiet Professional
Join Date: Jun 2006
Location: Raeford, NC
Posts: 41
|
Awesome, this is a topic that I might be able to contribute to.
You have to understand that the problem with your network is that it is broadcast. If you set your network to only access a specific MAC address that will allow you to limit the traffic but not the visibility to the network. Most routers/access points allow you to decide whether you would like to broadcast the SSID. If you record this SSID on the router and turn that option off then your router will not be read by windows based machines without very advanced software. Beware though if you have a wireless network it can be easily read and accessed by apple computers. Just as Apple computer can usually bypass the security at pay-and-use internet wireless cafes, such as Starbucks(think about that for your next computer purchase).
Those two measures are good but a dedicated firewall between your computer and the access point is key. And i'm not talking about Windows Firewall. Most routers/access points have built in features that can help you. You just have to get someone to help you at this point because it involves data packet handling and port restrictions that if not done properly can help accelerate balding.
If you block the SSID from being broadcast and apply at least WPA "personal" encryption it should be good enough to keep that guy sitting in his car at bay. Most of the time without the right equipment and dedication they will drive right past. Just realize that your 2.4GHz router can be read from 3 miles or more. I've done it with a "cantenna" just to prove that very point to a farmer who didn't believe that it was worth paying me, a poor college student at the time, 20 bucks to set security up for him. Now he wasn't a fellow professional but those steps I listed above will prevent someone from being able to do just that for the most part. (He almost pissed himself when I proved it to him)
Remember that email is sent over the air in plain text. Every email. If you want to send stuff that is private then buy a program such as Truecrypt or Steganos and use that to send encrypted "volumes" or packages. Just make sure that the other side has the key to open them and the same program. That will provide you with a bit of security. Hope that helps a little.
Ricky
|
sfbaby1982 is offline
|
|
02-17-2007, 14:54
|
#10
|
Quiet Professional
Join Date: Sep 2005
Location: NC for now
Posts: 2,418
|
Sec
Thanks for the info. Good stuff
__________________
Sounds like a s#*t sandwhich, but I'll fight anyone, I'm in.
|
kgoerz is offline
|
|
02-17-2007, 18:22
|
#11
|
Quiet Professional
Join Date: Jun 2006
Location: Raeford, NC
Posts: 41
|
Hey! I may be a killer but I'm totally confident in my Geek! Don't judge me!
(Totally Joking...your welcome, any time man)
Ricky
|
sfbaby1982 is offline
|
|
02-18-2007, 23:44
|
#12
|
Quiet Professional
Join Date: Jan 2006
Location: N.E.WA
Posts: 1,137
|
Good Shit Ricky.....I may have to pick your brain at some point!!!! (such as that Mac Starbucks bypass....that would be helpful!!!!!)
__________________
"Most of us here can attest that we never took the easy way. Easy just is............easy. Life is a work in progress, and most of the time its a struggle." ~ Me
"Every normal man must be tempted at times to spit upon his hands, hoist the black flag, and begin slitting throats." -Henry Louis Mencken (1880-1956)
"A Government that is losing to an insurgency is not being outfought, it is being out governed." Bernard B. Fall
|
LongWire is offline
|
|
02-19-2007, 06:24
|
#13
|
Quiet Professional
Join Date: Jun 2006
Location: Raeford, NC
Posts: 41
|
Sure thing man.
R
|
sfbaby1982 is offline
|
|
02-19-2007, 08:19
|
#14
|
Guerrilla
Join Date: Dec 2006
Location: Atlanta, GA
Posts: 243
|
SF Geeks? There's hope for me yet!
Good advice.
|
Sionnach is offline
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -6. The time now is 12:26.
|
|
|