Windows Wireless vulnerability



Brian Krebs has a post today on a Windows wireless networking “feature” which can be somewhat of a security risk. You see, it seems that With wireless networking enabled, Windows remembers the last wireless SSID that you connected to, so let’s say you were at a public Wireless access point called “Bob’s hotel” and you carry your laptop somewhere else. When the machine boots up, Windows tries to find “Bob’s hotel”, but of course, it’s not available at this other location, so… it assigns a 169.254.x.x ip address and broadcasts looking for “Bob’s hotel” the most recent wireless lan.


So, that makes it very easy for another person on another pc to find the broadcasts and quickly get put in the same 169.254.x.x subnet and voila the two machines have set up an ad-hoc wireless network (without the awareness of the user who had made use of Bob’s Hotel wireless networking… (In fact they may not have been aware that their laptop had made use of THAT wireless connection.) Of course, with a firewall enabled you’ve mitigated a large degree of the risk of this. Another solution is to switch off your wireless radio. (Many laptops now have a little on off button or switch that will enable/disable the wireless. Many times there’s a led light to indicate that it’s active.)

Another way to work around this is to set Windows to only associate with “infrastructure” networks and not ad-hoc networks.

To do this, go to “Start,” “Control Panel,” “Network Connections,” and then right click on the entry labeled “wireless network connection” and select “Properties” from the drop down menu. Then click on the “Wireless Networks” tab, and then on the “Advanced” tab at the bottom of that window. A box should pop up that gives you three buttons to choose from: Select the one next to “Access point (infrastructure) networks only.”

Microsoft exects to change Windows default behavior in this area with the next round of Service Packs. (SP3 of XP.) Bottom line, if you have wireless built in on your laptop, be aware of how to enable/disable it AND make sure that your laptop has a software firewall.

Related Posts

Blog Traffic Exchange Related Posts
  • Ernst & Young loses laptop, exposes almost 250k hotels.com customers - database mayhem roundup The Register is reporting on Ernst & Young's loss of a laptop which had information on around 243,000 hotels.com customers. Apparently Hotels.com was notified on May 3rd. Apparently the laptop made use of a password as the only security measure. From the article.... "Recently, Hotels.com was informed by its outside......
  • Remote Tech Support with x11vnc and wrapper script So, the idea is that I wanted something "like" the Ultranvnc Single Click download, only for linux. The main idea being is that if someone is looking for a bit of desktop tech support on linux, we don't need to be giving instructions for 5 different package managers, or source......
  • New Xandros review There is a review of Xandros 3.0 Business edition up at xyzcomputing Xandros is a linux distribution designed for Windows users (or at least those migrating from Windows.) The review hits the highlights of features that make it able to integrate well with Windows machines. They mention the filesystem compatibility,......
Blog Traffic Exchange Related Websites
  • | David Wood | Empower Network | Internet Network Marketing | Empower Network has taken the internet by storm,so who is David Wood? I really don't know, but his marketing has sucked me in for the past several months.  I keep buying his stuff. He has a great approach to selling online. Especially in the internet network marketing industry. All......
  • Ad Fish Review - Money Making From AdFish Affiliate Network Ad Fish is one of the performance based affiliate network a division of Trancos Inc., and its ranked 90 on Inc Magazine in the America's 500 Fast growing companies. There are tonnes of affiliate network available in the market and every day new companies are coming in-and-out of the industry.......
  • Why Would You Like To Join An Affiliate Internet Marketing Network? Affiliate internet marketing is the latest trend internet. With so many products to offer and services available, sometimes featuring it upon one internet site isn’t enough. Thus, publishers or stores need affiliate marketers, some sites which are going to display ads for your particular cost. On other hand, this can......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site