Comments on: Airport Snooping http://adam.rosi-kessel.org/weblog/2007/01/27/airport_snooping Technology, law, and personal stories Tue, 27 Jul 2010 16:21:10 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: gouki http://adam.rosi-kessel.org/weblog/2007/01/27/airport_snooping/comment-page-1#comment-2767 gouki Sun, 28 Jan 2007 22:05:06 +0000 http://adam.rosi-kessel.org/weblog/security/airport_snooping.html#comment-2767 <p>Ewan Marshall,</p> <p>I don't believe there is a solution. If the homepage of a Access Point is well designed, pretty much everyone will fall for that and give in their password.</p> <p>Like bonobo said, even SSL can be tricked. A simple Man-in-the-Middle attack will work.</p> <p>What I've startad to do what is use ICMP tunneling. Most of the AP's are not configured to block ICMP traffic, so I connect to one of them and then use ptunnel to SSH into a computer I own. Lynx, Mutt, IRSSI and NAIM. All work like a charm! (=</p> Ewan Marshall,

I don’t believe there is a solution. If the homepage of a Access Point is well designed, pretty much everyone will fall for that and give in their password.

Like bonobo said, even SSL can be tricked. A simple Man-in-the-Middle attack will work.

What I’ve startad to do what is use ICMP tunneling. Most of the AP’s are not configured to block ICMP traffic, so I connect to one of them and then use ptunnel to SSH into a computer I own. Lynx, Mutt, IRSSI and NAIM. All work like a charm! (=

]]> By: gouki http://adam.rosi-kessel.org/weblog/2007/01/27/airport_snooping/comment-page-1#comment-1 gouki Thu, 01 Jan 1970 00:00:00 +0000 http://adam.rosi-kessel.org/weblog/security/airport_snooping.html#comment-1 <p>Hi Adam,<br/><br/>Regarding the use of 'real' infrastructure-mode for 'evil' purposes I'm affraid to tell you that it is already done. A couple of months ago I tried a little something which can be done with some ease on airports.<br/><br/>It consists of using a WRT54G router and a firmware from the The Shmoo Group[0].<br/><br/>[0] - http://airsnarf.shmoo.com/rogue_squadron/index.html</p> Hi Adam,

Regarding the use of ‘real’ infrastructure-mode for ‘evil’ purposes I’m affraid to tell you that it is already done. A couple of months ago I tried a little something which can be done with some ease on airports.

It consists of using a WRT54G router and a firmware from the The Shmoo Group[0].

[0] – http://airsnarf.shmoo.com/rogue_squadron/index.html

]]> By: bonobo http://adam.rosi-kessel.org/weblog/2007/01/27/airport_snooping/comment-page-1#comment-2 bonobo Thu, 01 Jan 1970 00:00:00 +0000 http://adam.rosi-kessel.org/weblog/security/airport_snooping.html#comment-2 <p>Even standard SSL based browser can be easily tricked, even for advance users. The router can run a croaked DNS which redirects everything to its own password capturing site. All it need is a verisign signed cert.<br/><br/>Who would check if the server is the real one(and how as many banks choose oddball domain names).</p> Even standard SSL based browser can be easily tricked, even for advance users. The router can run a croaked DNS which redirects everything to its own password capturing site. All it need is a verisign signed cert.

Who would check if the server is the real one(and how as many banks choose oddball domain names).

]]> By: Ewan Marshall http://adam.rosi-kessel.org/weblog/2007/01/27/airport_snooping/comment-page-1#comment-3 Ewan Marshall Thu, 01 Jan 1970 00:00:00 +0000 http://adam.rosi-kessel.org/weblog/security/airport_snooping.html#comment-3 <p>Solution?<br/><br/>GNU/Linux / Macos</p> Solution?

GNU/Linux / Macos

]]>