Network security – what does arp spoofing mean for wireless?



So, if you haven’t already had enough cause to tighten your wireless security…. we’ve been talking about arp poisoning (spoofing) and the basic conclusion is that IF an attacking machine is on the same subnet as your machine (same IP address range), they can “own” all traffic from you machine to the gateway. It doesn’t matter if you’re using wireless or wired for your machine. As a demonstration I connected my laptop to my wireless access point…..


It received an address in the same IP range as my wired machines. (We’ll say they’re all in the 192.168.100.* subnet.) Now the laptop is the ONLY wireless client, all others are wired. Conventional wisdom would be that ONLY the wireless data transmissions could be picked up (sniffed) by the laptop and without arp poisoning (spoofing) that’s true.

However, since the laptop is in the same subnet…. it can hijack traffic from the other machines to the gateway. Doing this I captured the “on the wire” connection between my server and the gateway (complete with mailserver addresses and logins/passwords), also I hijacked an https session on my desktop (accepted the fake certificate to test) and saw the username/password information as it transfered.

So, the bottom line is this. If anyone has easy access to your network, wired or wireless it would be trivial to capture most all of your network traffic, wired or wireless. Of course, this assumes that you’ve not taken some special measures.

What steps can be taken to have an open wireless access seperated from a safe network?

Related Posts

Blog Traffic Exchange Related Posts
  • I've NEVER liked UPNP.... now I have another reason.... I remember the first Windows XP vulnerability was a Upnp vulnerability. I have made one of my first visits on any new XP system a visit to grc.com to disable it on an XP workstation. But, it's the great thing - makes life so much easier for setting up network......
  • Wireless ethernet security Flexbeta has an article giving a good primer on the different approaches to wireless security that are currently available and what seems to be on track for the next generation of wireless networking. One thing that is worth noting, if it's transmitted through the air it can be intercepted. Breaking......
  • What a week.... I think it's time to pass along a long story of what's gone on over the last week or so here and some of the reasons there hasn't been anything posted. Generally, I would say that work has been busy, but something happened last week that went a bit beyond......
Blog Traffic Exchange Related Websites
  • Why You Need a Good Home Security System There are many unexpected things which can happen these days. The world can seem pretty cruel at times. This is when you want to be able to come home and feel safe. After all, your home is a place where you want to be able to feel your best......
  • How to Install a Home Security System: Most Common Pitfalls Installing a home security system might seem easy. To be sure, it’s a lot easier to install one today than it was just a decade ago. Inexpensive consumer electronics components combined with robust wireless technology means that even an amateur can put in a decent system. Just because it’s easy,......
  • 10 Tips for Setting Up an Office Network Your business has grown beyond its first computer, so now is the time to get your network in place. By networking your computers together, you can share centralized resources such as an Internet connection, programs, files and printers. You can even fax and scan over the network if you have......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site