Monitor Wireless Router & Users:

Discussion in 'other software & services' started by apathy, Jun 21, 2008.

Thread Status:
Not open for further replies.
  1. apathy

    apathy Registered Member

    Joined:
    Dec 10, 2004
    Posts:
    461
    Location:
    9th Circle of Hell(Florida)
    I've been having a few problems with people trying to brute force my WPA2/AES 300 bits password(good luck). I have showed examples to businesses how even secured wifi is accessed if you are patient. I used to use airsnare back in the days which only looked at mac addresses and DHCP to see if there was a new user on your router. I'd like something more comprehensive than that.

    If you have any ideas let me know.

    Danke.
     
  2. MikeNAS

    MikeNAS Registered Member

    Joined:
    Sep 28, 2006
    Posts:
    697
    Location:
    FiNLAND
    Why not just block all other mac addresses and IPs than yours?

    EDIT:

    My router with special firmware can log all non specified connections.
     
  3. HAN

    HAN Registered Member

    Joined:
    Feb 24, 2005
    Posts:
    2,080
    Location:
    USA
    I'd be interested in learning about a program too! :)

    Does your AP/router have a active connections tab/table/page in it's admin setup? Or a log as MikeNAS notes?

    As for securing your AP, I have used MAC filtering but now consider it less effective than I once thought. (Still, using it won't hurt either.) If I really had an AP that was being continually attacked, I'd set a major league admin password, limit the number of allowed connections and completely disable DHCP (meaning using only static IP addresses.) I'd also disable WiFi based AP administration. Only allow changes via hard wired connections.

    **EDIT**
    Couple minor changes.
     
    Last edited: Jun 21, 2008
  4. apathy

    apathy Registered Member

    Joined:
    Dec 10, 2004
    Posts:
    461
    Location:
    9th Circle of Hell(Florida)
    Because you can use software to spoof the mac address of the router or client. I already use mac filtering but I don't rely on it. There is software for linux, mac and windows that allows you to spoof any mac address already connected to the router. Disabling DHCP is a good idea and setting up static leases. If anything funny happens I will atleast see an ip confliction.

    I was looking at this app and another to monitor my router. If you have anything better let me know.
     
    Last edited: Jun 21, 2008
  5. MikeNAS

    MikeNAS Registered Member

    Joined:
    Sep 28, 2006
    Posts:
    697
    Location:
    FiNLAND
    Ip filtering help a lot with it :D
     
  6. apathy

    apathy Registered Member

    Joined:
    Dec 10, 2004
    Posts:
    461
    Location:
    9th Circle of Hell(Florida)
    Very true also I could start to use WPA2 Enterprise with RADIUS to make sure that the passwords aren't getting stale. Although a password that is 300 bits is not going to be brute forced so easily.
     
Loading...
Thread Status:
Not open for further replies.