3com 11g Router owners!

Is there a way to set this router to only handle 11g traffic and not b AND
g.

I want to do this for security reasons, since most people use "b" here, when
wardriving and hacking Wireless.

/

"Mary Jane" <(E-Mail Removed)> wrote in message
news:3f8006e6$(E-Mail Removed)...
> Is there a way to set this router to only handle 11g traffic and not b AND
> g.
>
> I want to do this for security reasons, since most people use "b" here,
when
> wardriving and hacking Wireless.
>
> /
>
Why not just use the MAC filtering on the router? Enter the MAC addresses
of the network cards you want to permit. Also, enter "setup" of the router
and set a password.

Steve

All that is done,

but I don't want people to sniff my network.

/

"Steve B." <(E-Mail Removed)> wrote in message
news:blpdvg$f1t9o$(E-Mail Removed)...
>
> "Mary Jane" <(E-Mail Removed)> wrote in message
> news:3f8006e6$(E-Mail Removed)...
> > Is there a way to set this router to only handle 11g traffic and not b
AND
> > g.
> >
> > I want to do this for security reasons, since most people use "b" here,
> when
> > wardriving and hacking Wireless.
> >
> > /
> >
> Why not just use the MAC filtering on the router? Enter the MAC addresses
> of the network cards you want to permit. Also, enter "setup" of the
router
> and set a password.
>
> Steve
>
>

If you use MAC address authentication as your only security mechanism
it's easy for hackers to break in. The MAC (Media Access Control)
address is the supposedly fixed identifier on a network client device.
The system compiles a table (a list) of MAC addresses of devices its
legitimate customers use, and stores the list at each access point.
When a user tries to associate with that access point, it
automatically sends its MAC address as part of the process. The access
point looks up the address in its table and if it's there, allows the
user on the network. If the address is not in the table, it denies
access. Here's the problem. Contrary to what you may believe and what
some vendors may tell you the MAC address on a wireless device can be
changed. The tools to do it are available to original equipment
manufacturers for testing and configuration purposes. Naturally those
tools have now become available to the hacker community. In some
cases, if you know where to look, software is downloadable from the
Web and bulletin boards. The other part of the hacker arsenal needed
to "spoof" a MAC address change the address of a client device so that
it can pretend to be another device is even more readily available.
Using legitimate network management software tools such as Sniffer
Wireless 4.7 from Network Associates Inc., Network Instruments LLC's
Observer Version 8.1 or AiroPeek NX from WildPackets Inc., hackers can
detect wireless traffic and intercept transmissions. Within those
transmissions, they will find legitimate MAC addresses. It's then a
simple matter to change the address on their own device to that of a
valid subscriber/user. The hacker can't associate with that access
point, or probably any other access point in the network, until the
legitimate user with that MAC address logs off. Once the legitimate
user logs off, the hacker can jump on and pose as that user. And
you'll never know. The simplest solution is to implement WEP (Wireless
Equivalent Protocol) encryption on a Wi-Fi network. WEP is the
much-written-about but flawed native encryption scheme for Wi-Fi.
With WEP activated, the hacker can still sniff out a MAC address,
because it's typically sent in the open, but the hacker won't be able
to communicate over the network without an encryption key. WEP
requires no additional hardware or software. However, there is always
a network performance hit when using encryption. Plus, WEP keys can be
broken.

I ONLY WANT TO DISABLE b traffic on my g 3com router! Nothing more or
less... Can any one tell me if this is possible?

/Mary (paranoic)

For the curious:
I have WEP, but I use the more secure WPA. I also regularly spoof my own
MAC-NIC-address, not to reveal my cards real number. I have no DHCP. I use
static IP, with very unusual IP for the gateway and the client. I have a
subnetmask that only allows one client.





<(E-Mail Removed)> wrote in message
news(E-Mail Removed)...
> If you use MAC address authentication as your only security mechanism
> it's easy for hackers to break in. The MAC (Media Access Control)
> address is the supposedly fixed identifier on a network client device.
> The system compiles a table (a list) of MAC addresses of devices its
> legitimate customers use, and stores the list at each access point.
> When a user tries to associate with that access point, it
> automatically sends its MAC address as part of the process. The access
> point looks up the address in its table and if it's there, allows the
> user on the network. If the address is not in the table, it denies
> access. Here's the problem. Contrary to what you may believe and what
> some vendors may tell you the MAC address on a wireless device can be
> changed. The tools to do it are available to original equipment
> manufacturers for testing and configuration purposes. Naturally those
> tools have now become available to the hacker community. In some
> cases, if you know where to look, software is downloadable from the
> Web and bulletin boards. The other part of the hacker arsenal needed
> to "spoof" a MAC address change the address of a client device so that
> it can pretend to be another device is even more readily available.
> Using legitimate network management software tools such as Sniffer
> Wireless 4.7 from Network Associates Inc., Network Instruments LLC's
> Observer Version 8.1 or AiroPeek NX from WildPackets Inc., hackers can
> detect wireless traffic and intercept transmissions. Within those
> transmissions, they will find legitimate MAC addresses. It's then a
> simple matter to change the address on their own device to that of a
> valid subscriber/user. The hacker can't associate with that access
> point, or probably any other access point in the network, until the
> legitimate user with that MAC address logs off. Once the legitimate
> user logs off, the hacker can jump on and pose as that user. And
> you'll never know. The simplest solution is to implement WEP (Wireless
> Equivalent Protocol) encryption on a Wi-Fi network. WEP is the
> much-written-about but flawed native encryption scheme for Wi-Fi.
> With WEP activated, the hacker can still sniff out a MAC address,
> because it's typically sent in the open, but the hacker won't be able
> to communicate over the network without an encryption key. WEP
> requires no additional hardware or software. However, there is always
> a network performance hit when using encryption. Plus, WEP keys can be
> broken.
>

"Mary Jane" <(E-Mail Removed)> wrote in message
news:3f80a565$(E-Mail Removed)...
> I ONLY WANT TO DISABLE b traffic on my g 3com router! Nothing more or
> less... Can any one tell me if this is possible?
>
> /Mary (paranoic)
>
> For the curious:
> I have WEP, but I use the more secure WPA. I also regularly spoof my own
> MAC-NIC-address, not to reveal my cards real number. I have no DHCP. I use
> static IP, with very unusual IP for the gateway and the client. I have a
> subnetmask that only allows one client.
>
>
>
>
>
> <(E-Mail Removed)> wrote in message
> news(E-Mail Removed)...
> > If you use MAC address authentication as your only security mechanism
> > it's easy for hackers to break in. The MAC (Media Access Control)
> > address is the supposedly fixed identifier on a network client device.
> > The system compiles a table (a list) of MAC addresses of devices its
> > legitimate customers use, and stores the list at each access point.
> > When a user tries to associate with that access point, it
> > automatically sends its MAC address as part of the process. The access
> > point looks up the address in its table and if it's there, allows the
> > user on the network. If the address is not in the table, it denies
> > access. Here's the problem. Contrary to what you may believe and what
> > some vendors may tell you the MAC address on a wireless device can be
> > changed. The tools to do it are available to original equipment
> > manufacturers for testing and configuration purposes. Naturally those
> > tools have now become available to the hacker community. In some
> > cases, if you know where to look, software is downloadable from the
> > Web and bulletin boards. The other part of the hacker arsenal needed
> > to "spoof" a MAC address change the address of a client device so that
> > it can pretend to be another device is even more readily available.
> > Using legitimate network management software tools such as Sniffer
> > Wireless 4.7 from Network Associates Inc., Network Instruments LLC's
> > Observer Version 8.1 or AiroPeek NX from WildPackets Inc., hackers can
> > detect wireless traffic and intercept transmissions. Within those
> > transmissions, they will find legitimate MAC addresses. It's then a
> > simple matter to change the address on their own device to that of a
> > valid subscriber/user. The hacker can't associate with that access
> > point, or probably any other access point in the network, until the
> > legitimate user with that MAC address logs off. Once the legitimate
> > user logs off, the hacker can jump on and pose as that user. And
> > you'll never know. The simplest solution is to implement WEP (Wireless
> > Equivalent Protocol) encryption on a Wi-Fi network. WEP is the
> > much-written-about but flawed native encryption scheme for Wi-Fi.
> > With WEP activated, the hacker can still sniff out a MAC address,
> > because it's typically sent in the open, but the hacker won't be able
> > to communicate over the network without an encryption key. WEP
> > requires no additional hardware or software. However, there is always
> > a network performance hit when using encryption. Plus, WEP keys can be
> > broken.
> >
>
>

Mary Jane wrote:
> I ONLY WANT TO DISABLE b traffic on my g 3com router! Nothing more or
> less... Can any one tell me if this is possible?
>
> /Mary (paranoic)
>
> For the curious:
> I have WEP, but I use the more secure WPA. I also regularly spoof my
> own MAC-NIC-address, not to reveal my cards real number. I have no
> DHCP. I use static IP, with very unusual IP for the gateway and the
> client. I have a subnetmask that only allows one client.

I don't know if you can do it with yours, but my netgear WP601 has a tick
box that allows me to limit to g traffic only

"Mary Jane" <(E-Mail Removed)> schreef in bericht
news:3f80a565$(E-Mail Removed)...
> I ONLY WANT TO DISABLE b traffic on my g 3com router! Nothing more or
> less... Can any one tell me if this is possible?
>
From the 3COM webbrowser-app it's NOT possible on a 3COM 802.11g.
With WPA enabled (don't forget the WPA-fixup of Mickey$oft XP), a
MAC-address list, SSID not sending (Enable Broadcast SSID not checked) it
should be pretty safe, even for the paranoid ones ;-)

John Jacobs


--
Posted by news://news.nb.nu