We've all read countless articles about WLAN security. Have they done any good? Based on my experience Saturday afternoon, I'd have to say that all of the press that WLAN (in)security has received hasn't helped. I was bored Saturday afternoon, so I got in the car, hooked up my Netstumbling gear and went for a ride in around a major east coast US city. For the curious, my rig consists of: IBM ThinkPad T21 (P3/800, 512MB RAM, Win2k) sitting on passenger's seat Orinoco Gold USB WLAN device (w/10ft USB cable) sitting on back deck Garmin eTrex GPS with serial interface cable sitting on dashboard Netstumbler 0.3.23 (set to detect APs, but not reconfigure WLAN card) Over the course of about 90 minutes, covering an area about 10 blocks by 30 blocks, driving on only the more "interesting" streets, I discovered 119 Access Points. Of course, my findings here are anecdotal, and may or may not be representative of what's going on out there in general. Thoughts on WEP usage... We all know that WEP is not a reasonable solution for keeping your data private, however, it does help prevent casual lanjacking. Firewalling off the APs from the rest of the network and using IPSec clients to connect between the WLAN clients and the firewall give a much more complete security model. However, WEP is certainly better than nothing. Highlights of my findings: - Only 23.53% of APs found were using WEP - 80.77% of Linksys APs used the default SSID, "linksys" - 2 out of the 3 Apple AirPort base stations had WEP turned on Detailed findings follow: Percentage of Total APs by vendor: Addtron 3 2.52% AMI 2 1.68% Agere (Orinoco/Lucent) 47 39.50% Apple 3 2.52% Cisco (Aironet) 20 16.81% D-Link 4 3.36% Linksys 26 21.85% Netgear 2 1.68% SMC 2 1.68% Other 10 8.40% -------------------------------------- Total 119 WEP Usage By Vendor: Clear WEP % Using WEP Addtron 3 0 0.00% AMI 2 0 0.00% Agere 37 10 21.28% Apple 1 2 66.67% Cisco 11 9 45.00% D-Link 4 0 0.00% Linksys 21 5 19.23% Netgear 2 0 0.00% SMC 1 1 50.00% Other 9 1 10.00% ----------------------------------------------- Total 91 28 23.53% APs With Default SSID By Vendor: Default SSID Other SSID % With Default Addtron 2 1 66.67% AMI 1 1 50.00% Agere 1 46 2.13% Apple 0 3 0.00% Cisco 1 19 5.00% D-Link 2 2 50.00% Linksys 21 5 80.77% Netgear 0 2 0.00% SMC 1 1 50.00% Other 0 10 0.00% -------------------------------------------------------- Total 29 90 24.37% -- Jason Costomiris <>< | Technologist, geek, human. jcostom {at} jasons {dot} org | http://www.jasons.org/ Quidquid latine dictum sit, altum viditur. My account, My opinions.
This archive was generated by hypermail 2b30 : Tue Mar 05 2002 - 17:23:06 PST