| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9
Comments:
<0> or they can still ping google and perform DNS lookups without authenticating
<0> you know what would be funny
<1> what?
<0> if somebody at an internet cafe (or public hotspot) ran a SOCKS server or NAT router
<0> for people to route via them
<1> hehe
<2> actually
<2> that's not too bad of an idea
<0> I know ;)
<2> wouldn't you need 2 wireless nics ?
<0> not for SOCKS
<2> or you could do what they did at the hack con ... and sniff all the http picture requests and replace it with goatse
<2> :D
<0> hehe
<0> ngrep ;)
<2> and watch people peak out
<0> er, netsed
<0> hehe
<2> **** ... I want a lappy with 2 nics
<2> I would sit around all day doing that
<0> cardbus man, cardbus :)
<2> just laughin my *** off
<0> you can hijack somebody's connection with 1 nic
<2> well the origional plan for that taking over the http pictures with goatse had 2 nics
<2> maybe they refined it since then ?
<0> well there are many different ways of doing it
<0> I suppose if you performed ARP posioning to become the router (MITM attack between the router and its users)
<0> you would need two interfaces
<0> but just to hijack one person you would not
<3> is it a wired LAN?
<0> are you thinking 802.1x, Blejdfist ?
<3> no
<0> aha
<3> but still switch-based security
<3> but not quite on that level though
<2> well ...
<2> I would want to **** everyone over
<0> Blejdfist: oh?
<2> there is no point in ****ing anything over unless it's everyone :D
<0> tssssssk. bad guk!
<0> ;)
<2> hey ...
<2> you want to shoot your wireless beams near my laptop
<2> I may do what I want
<0> hahaha
<3> i was thinking about what i did at home.. VMPS-server putting all unknown clients in a quarantine VLAN where they could authenticate and be switched over to another VLAN
<0> true
<2> if your laptop chooses to listen to my laptop ... well that's not my problem now is it
<0> Blejdfist: alot of 'hotspots' use that technique
<0> you're isolated in a vlan until you're authenticated..
<3> ok
<3> it's really easy to surf without authenticating on an unencrypted hotspot though
<0> e.g.. none auth are in 192.168.1.0/24 and authed are in 10.0.0.0/8
<3> if there is atleast one other authenticated client connected
<2> yeah
<2> clone the mac
<3> you can piggyback on that connection by cloning the MAC and using a VPN-tunnel ;)
<3> on UDP
<3> and dropping everything else
<2> but even an encrypted hotspot ... just decript it :) if it's WEP ... which it prolly is it won't take you long to get enough info to do so
<0> hopefully though you have a refined firewall policy and do not allow such nonsense ;)
<0> I beleive puff daddy once said..
<0> "AUTH OR DIE MOTHER F*CKER, AUTH OR DIE"
<3> i found an encrypted WLAN close to my appartment, the signal was weak, but if i hung my laptop in my window i could get a signal
<0> haha
<3> so i ran a cable from my laptop, SSHed into it and used it as a remote antenna
<3> took about 20mins to crack the WEP ;)
<3> bah, cheating :P
<0> There are 13 APs in my street
<0> 11 of them use WEP
<2> heh ... lucky you
<0> guk: nahh
<0> noisey spectrum
<2> I got one I can get on ... it's open too
<2> get a wrt
<2> and pump out 251mW of wireless
<2> just ****ing obliverate the rest
<0> everyone else must use 1 or 6, haha
<2> crank it
<0> GS and G
<0> hehe nah
<2> like just go nuts
<0> pj33r the EIRP
<2> I find 175mW is enough for me
<2> it boosts my signal tons
<3> i think there is about 40 APs around me
<2> im only using WEP tho for my wrt ...
<3> if i walk down the street
<2> I don't even care ... if someone wants on ... giver but im logging everything ;)
<3> i have a WRT54GL
<0> When I went to NYC.. jesus christ
<0> manhatton is AP city
<2> yeah ... I would be doing so much stealing
<2> it's not even funny
<0> from my hotel room (nothing but solid brick for miles around) my PDA scrolled off the screen with APs
<2> get my little wrt to run kismet ... and airsnort would be my friend
<3> mine is unencrypted, i need to VPN in to my network
<3> and it logs ALL other traffic :P
<3> so people can surf etc
<3> but i get their p***words.. mwahhaha
<0> psst
<2> yeah ... mines like 64bit encryption or somthing silly ... just enough to keep out the casuals
<0> you're all malicious and hostile!
<2> all port 80 traffic is routed to my linux machine and processed through there ...
<0> I beleive I use WPA AES on my wireless network.
<3> and all pictures exchanged with goatse?
<2> actually
<2> at one time I had my wireless do nothing but goto goatse
<3> haha
<2> but then people came over to my house and got pissed when msn.com or hotmail.com was a guy stretching his anus
<0> is that you!?
<0> ;)
<4> haha
<2> so now I run 64bit WEP ... my sister has a 11mbit cheapo wireless card ...
<2> so it works alright I guess ... from the looks of it tho ... ive had no one try to get in
<4> I'd rather allow traffic but sniff for p***words and stuff
<4> capture all their emails
<4> msn p***words
<4> etc
<2> those are encrypted ?
<0> to what end though :(
<0> you can perform MITM attacks against SSL, guk
<4> Napta, fun?
<0> on a one to one basis
<2> oh yeah ?
<0> yep
<2> ive never messed around with that
<2> im not that sick of a ****
<0> the certificate comes up as invalid, but most people just click ok
<0> because they wouldn't think otherwise
<0> "secure environment" ;)
<2> hmm ... I should look into that more ;)
<2> im sure squid could handle most of that work
<4> most don't encrypt their email traffic
<2> yeah
<2> but who is going to park infront of my house
<0> just generate a self signed cert with similer information to the site you want to forge
<2> and connect to there pop3 server or imap server
<0> I'd ssh in to my server
<0> and run mutt
<0> infact
<2> yeah ...
<0> you can even capture SSH p***words
<0> its very easy
<4> I run openvpn from my laptop to encrypt all my traffic =)
<4> when I'm using wireless
<2> yeah ... but if I see that little man in the middle warning ... and im on wireless ;) it gets the no no
<0> When someboy connects to a server via SSH.. you perform a MITM attack, and tell the victim the server only supports SSH protocol version 1
Return to
#debian
or
Go to some related
logs:
tcfd11
#cph
#politics
#bsd
canadian military daed
To make my computer to hebrow
#hardware
#hardware
#nhl
#politics
|
|