• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

How easy is it to hack a non-secure wireless router?

L

LiekOMG

Golden Member
For one reason and another I can't use any kind of WEP or WPA security on my router. All I have activated is MAC address filtering, so hopefully most people won't be able to just casually log on and use my internet. But even if they DO, thats not all that big a deal for me.

However, my concern is not of people using my internet, but others seeing what i'm doing online - what websites i'm browsing, passwords, etc. Just how easy is it for someone to snoop my wireless signal and see what websites i'm browsing to, or be able to see usernames/passwords.
 
It's a piece of cake to access a non-secured router or computer attached to an unsecure connection.

This belongs in the networking section.
 
Originally posted by: Googer
It's a piece of cake to access a non-secured router or computer attached to an unsecure connection.
Click to expand...


Thanks, but that doesn't answer my question. What can someone see once they access it?
 
Originally posted by: DOACleric
Originally posted by: Googer
It's a piece of cake to access a non-secured router or computer attached to an unsecure connection.
Click to expand...


Thanks, but that doesn't answer my question. What can someone see once they access it?
Click to expand...

All your password belongs to me!
 
All the data that you transmit to the internet including bank information, entire websites, login names, passwords, anandtech postings, plus I can get access to all the files on your hard drive, and as a bonus I can steal the ink and paper from your printer! Muahahahaha!
 
they would be able to see and capture everysingle thing you are doing and where you are going. Even install key loggers on your PC and capture every single thing you do and type. including bank and secure site passwords.

not to scare you or anything. but it really is that easy. your stuff is being broadcast over the air.
 
although, the SSL traffic is encrypted (wired or wireless) so your bank stuff SHOULDN'T be as easy as grabbing the right packets. Seeing websites and any non encrptyed un/passwords is cake though. I would fix/replace your router.
 
Originally posted by: nweaver
although, the SSL traffic is encrypted (wired or wireless) so your bank stuff SHOULDN'T be as easy as grabbing the right packets. Seeing websites and any non encrptyed un/passwords is cake though. I would fix/replace your router.
Click to expand...

keylogger FTW!
 
Originally posted by: nweaver
although, the SSL traffic is encrypted (wired or wireless) so your bank stuff SHOULDN'T be as easy as grabbing the right packets. Seeing websites and any non encrptyed un/passwords is cake though. I would fix/replace your router.
Click to expand...

Its not the routers fault, but the wireless USB adapter that I use on my parents computer. The Belkin drivers for it don't save any settings, and my parents are too... simple... to connect themselves everytime they turn the computer on, so I just wrote a simple script to log on without encryption everytime the OS loads. Thus, I can't have encryption on. But i'll look into this for sure.
 

You should at least turn off SSID broadcast and restrict access by MAC address. This might be just enough to make the casual attacker move on to an easier target.



 
Originally posted by: DOACleric
Originally posted by: nweaver
although, the SSL traffic is encrypted (wired or wireless) so your bank stuff SHOULDN'T be as easy as grabbing the right packets. Seeing websites and any non encrptyed un/passwords is cake though. I would fix/replace your router.
Click to expand...

Its not the routers fault, but the wireless USB adapter that I use on my parents computer. The Belkin drivers for it don't save any settings, and my parents are too... simple... to connect themselves everytime they turn the computer on, so I just wrote a simple script to log on without encryption everytime the OS loads. Thus, I can't have encryption on. But i'll look into this for sure.
Click to expand...

I'd return it. Sounds defective.
 
Originally posted by: Atheus

You should at least turn off SSID broadcast and restrict access by MAC address. This might be just enough to make the casual attacker move on to an easier target.
Click to expand...


MAC filtering is already on, but I can't turn of SSID broadcast cause then the stupid drivers can't find the router. I assume having MAC filtering on doesn't keep people from seeing what i'm doing, right?

EDIT: Also, if i'm sending files over wireless from computer to computer, will others be able to download or access these files too? I know they don't have access to the computer, but maybe as the file is being sent...?
 
Originally posted by: DOACleric
Originally posted by: Atheus

You should at least turn off SSID broadcast and restrict access by MAC address. This might be just enough to make the casual attacker move on to an easier target.
Click to expand...

I assume having MAC filtering on doesn't keep people from seeing what i'm doing, right?
Click to expand...

You assume correctly.

EDIT: Also, if i'm sending files over wireless from computer to computer, will others be able to download or access these files too?
Click to expand...

Yes.

I know they don't have access to the computer
Click to expand...

Depending on your local security (i.e. on each individual PC) it's a relatively small step to gain access to your computers once behind the router.


 
Yeah man, get a setup that actually works. As a general rule assume that EVERYTHING you transmit over the air is going to be listened to, regardless of WEP-128 or whatever. Like one of the previous posters said, if you take certain precautions then the would-be hacker is likely to move on to another easier target.

Sorta like installing a car alarm -- your stereo is still vulnerable, but the thief might move on to the next car....
 
Wireless Router are very inexpensive you might think of getting a better Router.:thumbsup:

However as an exercise of Logic.

SSID On or Off would Not matter, http://www.ezlan.net/faq#ssid

MAC Filter secures you against casual leecher and "Big Mouths" that pretend that they know it all but usually are too lazy to learn, and thus really do not know how to brake Wireless Network with MAC filtering.

It is Not hard to learn how to sniff and spoof MAC however 98% of Wireless users have No clue how to go about it.:shocked:

If you must to stay with No encryption arrangement you can add few more simple security means.

Use Switch Off DHCP and use only Static addresses, or if you Router can do IP reservation put the range of the DHCP to be the same as number of computers and reserve all the IPs.

In addition, you can install NetBEUI, unbind File sharing from TCP/IP and bind it to NetBEUI.

By doing so some, one might steal Internet but would Not get to you Files.

This is really an Interesting measure since ?Macho Net? that tends to Hack would not be caught "Dead" with NetBEUI on their computers.:brokenheart:

If you want to go further get Airsnare (needs WinPcap to work) and install it on one computer that is always On. You can configure it is a way that it is alerting you every time a Wireless connection is added to your Network.

Download WinPcap...
http://winpcap.polito.it/
Download AirSnare...
http://home.comcast.net/~jay.deboer/airsnare/

:sun:
 
Originally posted by: JackMDS
If you must to stay with No encryption arrangement you can add few more simple security means.

Use Switch Off DHCP and use only Static addresses, or if you Router can do IP reservation put the range of the DHCP to be the same as number of computers and reserve all the IPs.

In addition, you can install NetBEUI, unbind File sharing from TCP/IP and bind it to NetBEUI.

By doing so some, one might steal Internet but would Not get to you Files.

This is really an Interesting measure since ?Macho Net? that tends to Hack would not be caught "Dead" with NetBEUI on their computers.:brokenheart:

If you want to go further get Airsnare (needs WinPcap to work) and install it on one computer that is always On. You can configure it is a way that it is alerting you every time a Wireless connection is added to your Network.

Download WinPcap...
http://winpcap.polito.it/
Download AirSnare...
http://home.comcast.net/~jay.deboer/airsnare/

:sun:
Click to expand...
Err, none of that is going to stop people from sniffing what he's sending out. Might make it harder for kiddies but that's not Security.
 
Originally posted by: JackMDS
Wireless Router are very inexpensive you might think of getting a better Router.:thumbsup:

However as an exercise of Logic.

SSID On or Off would Not matter, http://www.ezlan.net/faq#ssid

MAC Filter secures you against casual leecher and "Big Mouths" that pretend that they know it all but usually are too lazy to learn, and thus really do not know how to brake Wireless Network with MAC filtering.

It is Not hard to learn how to sniff and spoof MAC however 98% of Wireless users have No clue how to go about it.:shocked:

If you must to stay with No encryption arrangement you can add few more simple security means.

Use Switch Off DHCP and use only Static addresses, or if you Router can do IP reservation put the range of the DHCP to be the same as number of computers and reserve all the IPs.

In addition, you can install NetBEUI, unbind File sharing from TCP/IP and bind it to NetBEUI.

By doing so some, one might steal Internet but would Not get to you Files.

This is really an Interesting measure since ?Macho Net? that tends to Hack would not be caught "Dead" with NetBEUI on their computers.:brokenheart:

If you want to go further get Airsnare (needs WinPcap to work) and install it on one computer that is always On. You can configure it is a way that it is alerting you every time a Wireless connection is added to your Network.

Download WinPcap...
http://winpcap.polito.it/
Download AirSnare...
http://home.comcast.net/~jay.deboer/airsnare/

:sun:
Click to expand...


I'm not really worried about anyone using my internet or breaking into my computer since i'm running OS X. My worry is about people seeing what i'm doing online or taking files that I transmit.

One small question - In order for me to upgrade my network i'll need to get rid of the crappy USB receiver on my parents computer, and instead get one that works over the ethernet port (so that its driverless). The thing is, i'm a bit confused as to what these are called. Some places seem to call them ethernet bridges, others call them access points.
I need to find one that support WPA (duh) and is the cheapest available. Any recommendations?
 
Originally posted by: DOACleric
The thing is, i'm a bit confused as to what these are called. Some places seem to call them ethernet bridges, others call them access points.
Click to expand...
Those are something other than what you need. They may actually be able to do the job, but that's not exactly what they're designed for. You just need a PCI wireless adapter. Here's one at Newegg - no idea whether it's particularly good, but it's cheap and does WPA.

BTW, I'm not entirely convinced that this Belkin gizmo you've got really can't use WPA. I mean, there's a lot of crappy gear out there aimed at the BestBuy crowd, but I'd think that if a wireless adapter is requiring auth info at every boot, then it's either defective or misconfigured. Perhaps your parents are running as Limited Account and the Belkin adapter is trying to write the auth info to a system directory?

 
Originally posted by: cleverhandle
Originally posted by: DOACleric
The thing is, i'm a bit confused as to what these are called. Some places seem to call them ethernet bridges, others call them access points.
Click to expand...
Those are something other than what you need. They may actually be able to do the job, but that's not exactly what they're designed for. You just need a PCI wireless adapter. Here's one at Newegg - no idea whether it's particularly good, but it's cheap and does WPA.

BTW, I'm not entirely convinced that this Belkin gizmo you've got really can't use WPA. I mean, there's a lot of crappy gear out there aimed at the BestBuy crowd, but I'd think that if a wireless adapter is requiring auth info at every boot, then it's either defective or misconfigured. Perhaps your parents are running as Limited Account and the Belkin adapter is trying to write the auth info to a system directory?
Click to expand...

I can't use PCI because the computer doesn't have any PCI slots. USB and ethernet is the only option. Since I don't want to be using USB anymore and have to rely on crappy drivers, I was hoping someone could recommend a good, cheap wireless ethernet bridge that also supports WPA.
 
Originally posted by: DOACleric

I can't use PCI because the computer doesn't have any PCI slots. USB and ethernet is the only option. Since I don't want to be using USB anymore and have to rely on crappy drivers, I was hoping someone could recommend a good, cheap wireless ethernet bridge that also supports WPA.
Click to expand...

The Netgear WGPS606 Wireless Print Server works for me (~ $80). It does WPA-PSK and gives me good connectivity, throughput, and simple setup. I don't have a very challenging environment / distance though -- if you have, then you'll have to check them out for yourself.

It even works as a print server for my printer! /golfclap

(I'll probably replace it when I see an affordable 802.11n setup though - can always use more throughput in a bridge in theory at least.)
 
Originally posted by: Madwand1
Originally posted by: DOACleric

I can't use PCI because the computer doesn't have any PCI slots. USB and ethernet is the only option. Since I don't want to be using USB anymore and have to rely on crappy drivers, I was hoping someone could recommend a good, cheap wireless ethernet bridge that also supports WPA.
Click to expand...

The Netgear WGPS606 Wireless Print Server works for me (~ $80). It does WPA-PSK and gives me good connectivity, throughput, and simple setup. I don't have a very challenging environment / distance though -- if you have, then you'll have to check them out for yourself.

It even works as a print server for my printer! /golfclap

(I'll probably replace it when I see an affordable 802.11n setup though - can always use more throughput in a bridge in theory at least.)
Click to expand...


I already plan on picking up a new wireless router with print server capability. However, I still need a bridge, and i'm not looking to spend more than $40-50, and the lower the better, as long as it supports WPA.
 
Originally posted by: DOACleric
I'm not really worried about anyone using my internet or breaking into my computer since i'm running OS X.
Click to expand...

LOL. Running a particular OS will not prevent people using your connection or breaking into your computer.


 
Originally posted by: Atheus
Originally posted by: DOACleric
I'm not really worried about anyone using my internet or breaking into my computer since i'm running OS X.
Click to expand...

LOL. Running a particular OS will not prevent people using your connection or breaking into your computer.
Click to expand...


I know the OS has nothing to do with others being able to use my conneciton. I simply stated that I do not really care if others use my conneciton. However, the OS would have a lot to do with someone breaking into my computer, especially if I have nothing shared and there are no OS vulnerabilities.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top