Wep not secure - trust me

Little hacking experiment

Setup Home network
Netgear Wg602 wifi access point ( 54g)
Router with broadband connection 1 MB
P4
Encryption WEP 64 bit

Receiver laptop
ADVENT Amd 64
With own internal wifi card


Hacking laptop
As above but with DWL-AG650 wifi card.


Ok I have a wifi network at home and started to get a bit paranoid at the
security of WEP encryption so I got myself a new network card DWL-AG650
(Atheros chip set) for my laptop, downloaded the driver to put the card in
to monitor mode.

On my home wifi setup I logged on to P2P network and tagged about 100 mg of
files for download. another way is to run ICMP Ping Flood.

From my hacking laptop I then ran airodump to collect the traces of packets
flying through the air, being generated by my wifi network.
I left it running for approx 3 hours and collected approx 200000 class IV
packets.

Once completed dragged the file into aircrack, set fudge factor to 4,
encryption to 64 started it off, within less than 2 minutes it found the
key.

Conclusion

64 bit encryption not secure enough, I will try the same experiment with 128
encryption.
2-3 hours is not that long a time to sit out side someone's house or factory
( as long as there is a lot of wifi traffic).
From these findings I now unplug my wifi when doing internet banking etc. I
don't think I will drop the wifi as I find the flexibility very useful
accessing the net from anywhere in the house or garden, but will now look
into WPA.

"wps" <(E-Mail Removed)> wrote in message
news:BwrTd.215282$(E-Mail Removed) .uk...
> Little hacking experiment
>
<hack>


> 2-3 hours is not that long a time to sit out side someone's house or factory
> ( as long as there is a lot of wifi traffic).
>
Yeah but 2-3 days is what it takes for 128 bit, I think by then the same car sat
outside your house might be a bit obvious. There was a recent case in the USA
where a couple of wanabee l33t Haxors were parked outside a company for several
nights working on a 128 bit decrypt, funnily enough they were arrested, (AIR
they did actually break it first).

recursor wrote:
> "wps" <(E-Mail Removed)> wrote in message
> news:BwrTd.215282$(E-Mail Removed) .uk...
>
>>Little hacking experiment
>>
>
> <hack>
>
>
>>2-3 hours is not that long a time to sit out side someone's house or factory
>>( as long as there is a lot of wifi traffic).
>>
>
> Yeah but 2-3 days is what it takes for 128 bit, I think by then the same car sat
> outside your house might be a bit obvious. There was a recent case in the USA
> where a couple of wanabee l33t Haxors were parked outside a company for several
> nights working on a 128 bit decrypt, funnily enough they were arrested, (AIR
> they did actually break it first).
>
>
http://www.securityfocus.com/infocus/1814

"wps" <(E-Mail Removed)> wrote in message
news:BwrTd.215282$(E-Mail Removed) .uk...
> Little hacking experiment
>
> Setup Home network
> Netgear Wg602 wifi access point ( 54g)
> Router with broadband connection 1 MB
> P4
> Encryption WEP 64 bit
>
> Receiver laptop
> ADVENT Amd 64
> With own internal wifi card

As you say, WEP isn't secure, it isn't new news, it has never been secure.
However, if you enable wep, the chances are that any little wardriver
wannabe's will not bother with your network. Why should they when 5 mins
away will be an open one.

If you have sensitive data on your network, treat wireless as totally open,
even if you do enable WEP. Don't use DHCP, and put the wifi on a separate
subnet. Only allow predefined MAC addresses to connect the network.
All of it is 'spoofable', but it will really deter all but the most
dedicated intruders. In other words, unless they REALLY, REALLY, really
really really, want access to your network, they wont bother.

Also, somebody fairly recently released a program that will crack wep in
about (IIRC) a third of the packets that used to be required. I can't
remember what it was called though. Just a little side note for you.

Having said that, if you do have wep enabled, the chances of being "hacked"
are probably far less then the chances of your Windows computer being broken
into - You are using Internet Explorer, right? ;o)

Sleep well, and don't let the wardrivers bite.

[snip]
All well known. Know of a similar analysis of WPA-PSK (?) which uses
rotating keys?

Thanks,
Paul DS.

Paul D.Smith wrote:
> [snip]
> All well known. Know of a similar analysis of WPA-PSK (?) which uses
> rotating keys?
>
> Thanks,
> Paul DS.
>
>
http://www.nwfusion.com/news/2004/11...ictionary.html

O
> Yeah but 2-3 days is what it takes for 128 bit, I think by then the same
> car sat outside your house might be a bit obvious. There was a recent case

Ah, you change cars each night <g>.

Dave

--
For what we are about to balls up may common sense prevent us doing it
again
in the future!!

"Dave Stanton" <(E-Mail Removed)> wrote in message
news(E-Mail Removed)...
> O
>> Yeah but 2-3 days is what it takes for 128 bit, I think by then the same
>> car sat outside your house might be a bit obvious. There was a recent case
>
> Ah, you change cars each night <g>.
>
> Dave
>
Lol, that's what the idiots in the USA example I gave should have done, but it
does change wardriving from a cheap hobby into quite an expensive one