Who visits my AP?

My main computer is wired CAT5 to a Seimens router/AP/switching hub
from the DSL modem.

The AP is activated with an SSID and I can connect to it from a second
computer using an Orinoco card. Connect, meaning I can get Internet
access, log on to URLs, check my Email...
The AP works.

Now, someone using Net Stumbler sees my AP/SSID and are within range,
so they can also connect to my AP and use it for WWW surfing.

How would I know if- when- this happens? How can I tell if someone has
connected to my AP?

Like an application that detects a visitor and pops up a message
telling me so.

Nothing in the Help files for the router about this...

Would appreciate any help with this, thanks

In article <(E-Mail Removed)>, nb1443
@hotmail.com says...
| How would I know if- when- this happens? How can I tell if someone has
| connected to my AP?
|
| Like an application that detects a visitor and pops up a message
| telling me so.
|
| Nothing in the Help files for the router about this...
|
| Would appreciate any help with this, thanks
|
|

An easy way to prevent this is to find out what the MAC addresses of
the units you wish to allow access are and set the AP so that only
these MAC's are allowed access. The MAC is unique and hard coded into
every NIC, including wireless ones. It is not fool proof, with some
difficulty MAC's can be spoofed, but it is better than nothing.


--
Regards,
Harry (M1BYT)...

Remove the 'NOSPAM' in my email address to reply.

Free Amateur Radio Courses:-
http://www.ukradioamateur.org

Don't forget to use and only allow WEP !

Ok, it's crackable, but > 99% of people don't do this, it's only the VERY
determined that would try, and would probably only bother if it was a company
network they wanted to get into.

It'll keep everyone else out.

Clive

Due to the large number of AP's about WEP will deters people unless they
think you have something they want

<(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
>
> Don't forget to use and only allow WEP !
>
> Ok, it's crackable, but > 99% of people don't do this, it's only the VERY
> determined that would try, and would probably only bother if it was a
company
> network they wanted to get into.
>
> It'll keep everyone else out.
>
> Clive
>

"How would I know if- when- this happens? How can I tell if someone has
connected to my AP?"

"Is there an application that detects a visitor and pops up a message
telling me so?"

Whats the answer to the above?


"Norman B" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> My main computer is wired CAT5 to a Seimens router/AP/switching hub
> from the DSL modem.
>
> The AP is activated with an SSID and I can connect to it from a second
> computer using an Orinoco card. Connect, meaning I can get Internet
> access, log on to URLs, check my Email...
> The AP works.
>
> Now, someone using Net Stumbler sees my AP/SSID and are within range,
> so they can also connect to my AP and use it for WWW surfing.
>
> How would I know if- when- this happens? How can I tell if someone has
> connected to my AP?
>
> Like an application that detects a visitor and pops up a message
> telling me so.
>
> Nothing in the Help files for the router about this...
>
> Would appreciate any help with this, thanks
>
>

On Wed, 24 Sep 2003 13:57:16 GMT, in alt.internet.wireless , "pete"
<(E-Mail Removed)> wrote:

>"How would I know if- when- this happens? How can I tell if someone has
>connected to my AP?"

by examining your AP logs for unusual or strange entries. The same
basic way you'd know if someone had been using your Pc, or sleeping in
your house.

>"Is there an application that detects a visitor and pops up a message
>telling me so?"

Not even sure how possible it is, unless you institute appropriate
security measures, such as firewalling the AP from the rest of your
n/w. How otherwise to determine a "rogue" wireless unit from a "legal"
one? They're just MACs to the AP.

Mark McIntyre

There is intrusion detection software about that will monitor every thing
tapping at your ap. I don't recall the name but i'm sure u could google it.
Mind the first few dozen $12,000 apps and move to the freeware. Rather
simple to use so i hear.

"Norman B" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> My main computer is wired CAT5 to a Seimens router/AP/switching hub
> from the DSL modem.
>
> The AP is activated with an SSID and I can connect to it from a second
> computer using an Orinoco card. Connect, meaning I can get Internet
> access, log on to URLs, check my Email...
> The AP works.
>
> Now, someone using Net Stumbler sees my AP/SSID and are within range,
> so they can also connect to my AP and use it for WWW surfing.
>
> How would I know if- when- this happens? How can I tell if someone has
> connected to my AP?
>
> Like an application that detects a visitor and pops up a message
> telling me so.
>
> Nothing in the Help files for the router about this...
>
> Would appreciate any help with this, thanks
>
>

Norman B <(E-Mail Removed)> writes:

> Now, someone using Net Stumbler sees my AP/SSID and are within range,
> so they can also connect to my AP and use it for WWW surfing.

> How would I know if- when- this happens? How can I tell if someone has
> connected to my AP?

Give this a try -

http://home.comcast.net/~jay.deboer/airsnare/

Billy Y..

BTW -
the SSID is only the first step -

1 - find SSID -
2 - next, how to get on the local network & get an IP address ?
Are you serving up DHCP ?
If NOT, then how would a simple intruder
determine your IP addressing scheme ?

That's why I run static vs DHCP on my home network -
I think I know all the computers that should be on the network

Phil -

In article <ovlcb.6449$(E-Mail Removed) >,
(E-Mail Removed) says...
> BTW -
> the SSID is only the first step -
>
> 1 - find SSID -
> 2 - next, how to get on the local network & get an IP address ?
> Are you serving up DHCP ?
> If NOT, then how would a simple intruder
> determine your IP addressing scheme ?
>
> That's why I run static vs DHCP on my home network -
> I think I know all the computers that should be on the network
>
> Phil -
>
An intruder would run a sniffer to find what IP addresses were in use on
your network. They would then be able to set their system to an unused
IP address. Easy enough. If you were not tracking what IP addresses were
in use on your network in real-time, you would not notice their use of
your network.

---Matthew