Wireless Security: 6 Ways to Stop and Catch Hackers and War Drivers
By Eric Meyer

War drivers are in the business of finding wireless access points, documenting them and uploading their locations to the web. Why would someone do this, well for several reasons:

First they want free internet access. Next they could just be war driving as a hobby; finally they could be targeting your network for financial gain.
One of the most asked questions is how do you stop hackers from trying to hack your wireless lan and how to catch them in the act.

Stopping Wardrivers:

1. Use directional antennas: One of the most under stated uses of directional antennas are how they keep your wireless signal within your area of operation. If you are using a Omni directional antenna that is causing half the signal to travel outside your building, you have a major security problem. Also while using your wireless directional antenna turndown transmit power to reduce your signal strength if you can.

2. Blend your wireless antennas into your buildings architecture or keep them low profile. This is not expensive, the whole point is not letting your antennas stick out like a sore thumb so anyone driving by doesn’t say, wow they have a wireless network. Once again the best way to stop people from trying to hack your wireless network is to keep it hidden.

3. Use Kismet or Airsnort – Make a cheap wireless Intrusion detection system. Use an older desktop computer install Linux, install a USB wireless adapter or PCI wireless adapter and boom you have your wireless war driver stopper. Both Kismet and airsnort will alert you when wireless clients are probing your network. If a wireless client is using netstumber and not joining networks they will be found by Kismet. Their wireless adapters MAC address will be logged and other details of the operating system. Most of the time these could be false hits but if you notice a pattern of the same MAC address probing networks you could have hacker issues.

4. Security Cameras – No matter how hard you try not to have your signal bleed outside your operations area it will…to a point. Probe your own network as if you were a wardriver. Don’t just use a standard wireless adapter to find out where you still can detect your network. You will want to use a highly directional antenna to see how far away you can detect your own network. Once you know your weak points setup some cheap security cameras to monitor those areas.

5. Setup a Honey Pot – Give the Wardriver what they want, a network to hack. Take an access point connect it to a standalone switch with another junk computer connected to that switch. Name the SSID something sounding important like server WLAN and name the computer Database. Finally use a weak password or just leave the access point without any security. Script kiddies who say they “hack networks” really are only connecting to open wireless lans with no security. If you give them a “Important sounding SSID with a “database to hack” this will keep them occupied until you can track them down. There are many honeypot programs free and commercial that will simulate networks or servers but are really just recording all the hackers’ information and types of attacks.

6. Use a RADIUS Server – RADIUS servers require Wireless clients to authenticate with a username and password not just with a PSK (Pre- Shared Key). With out a RADIUS server you really don’t know who is on your WLAN. With a RADIUS server you know who is accessing your WLAN and when they accessed it. Also a RADIUS server gives you the ability of creating policies for times your WLAN can be accessed and other required security features the wireless clients must have enabled their computers.

Now let’s put this all together to catch our hacker. First you are going through your daily routine of checking logs on your Kismet IDS server and you notice the same MAC address probing networks but not joining. Next you check your help tickets and notice that in one area of the building clients were having trouble connecting to the wireless network or they had trouble staying connected.
Flags go up in your head, so you go over to your honeypot server and check that . You notice it was accessed around the same time of the Kismet logs showed a client probing the network. The honey pot recorded the MAC address of the WAR driver and the operating system and the computer name.

Next you check your security cameras for that time but don’t really notice anything. So for the next couple days you keep monitoring your honey pot server and watch the hacker try and crack the WLAN and the database server. The whole process of cracking wireless encryption is actually two steps. The first step is gathering enough packets for your cracking program to crack. This whole process of gathering enough packets can takes days or weeks not five minutes. Now once you do have enough packets 64 bit WEP encryption can be cracked in less that five minutes. 128 bit encryption can take many times longer, WPA with TKIP and AES encryption can takes months to crack.

My whole point is that you have some time to catch your hacker because he will be back many times, assuming that you already have at least the basic security features in place.
Now once you have all your logs compiled and your honey pot data you should have a good idea how the hacker behaves. Check your security cameras and you probably notice the same car or person in the area around that time. Take that information to your in house security and tell them to watch for that vehicle or person and call the police.

If you are lucky security or police will spot him and apprehend him. Convicting him or her will be tough but with your compiled logs and video you should have a lot of evidence to help your case.

Simple and secure wireless solutions. Join the most popular wireless networking newsletter on the internet at http://www.wirelessninja.com Keep your home and family safe with Ninja certified wireless hidden cameras [http://www.wirelessninja.com/wireless_hidden_cameras.htm]

Getting Started With Ubuntu – How To Connect To The Internet And Do Common Window Tasks
By David Babble

Download the latest version of Ubuntu from their official site and burn the downloaded ISO file to a blank CD. Any good CD burning software should be able to handle writing ISO files to a disc.

When the CD finishes remove it and put it back into the drive so it auto plays and followed the instructions to boot into the Live CD. Live CD allows you to temporarily run Ubuntu and most of its features without doing anything to your installation of Windows. This is a good chance to see if you really like what Ubuntu has to offer before really committing.

After playing around in Ubuntu’s environment for a bit you’ll notice an examples folder on the desktop that has various types of files that can be opened using Ubuntu’s default programs installed. For example, Ubuntu will use Open Office (a free alternative to Microsoft Office) to open DOC files.

Connecting to the Internet in Ubuntu

There was no obvious signs of how to connect to the Internet. After looking around the help pages built into the operating system you’ll notice that connecting to the Internet is pretty simple, unless you have a USB ADSL modem. Being on an Orange broadband basic package means a USB ADSL modem has to be used unless you own a router separately.

Being on the basic package means connecting to the Internet using a USB modem, not an Ethernet Live box that Orange provides on the upgraded package. So rebooting the computer and finding a web page came up with the instructions to extract some firmware, write a boot script etc. just to get the modem to connect.

After completing the modem installation in the Ubuntu’s Live CD environment you’ll be prompted to restart Ubuntu to get started. Restarting Ubuntu whilst using Live CD will just restart into Windows, so that’s no good!

There had to be another answer. At this point I got fed up and went back to Windows. A few months later I plucked up the courage to try Ubuntu again but the Internet connection issue was still stick in my mind. So I searched around on Google more and searched the Ubuntu Forums. This is when I came across some luck. I found a thread in a forum thread where a guy made a USB ADSL modem manager program!

Was this going to end the problem? I thought. So after checking out the USB Modem Manager site and then following the link to the latest version, I downloaded the Debian file for it, .DEB. First thought was, being used to Windows, what the hell do I do with a Debian file? Is it a Ubuntu version of a Windows zip file or what?

I double clicked the Debian file downloaded to my desktop and voilà, it started to install the modem manager, great, must be just Ubuntu’s version of a windows .EXE file. The program prompted me to unplug and plug my modem back in and it still didn’t work. So after a couple of times of re-extracting the firmware, disconnecting and reconnecting using the options in the manager, the progress bar for the Internet connection located in the top right went fully green, it must’ve worked.

I opened Firefox, typed in a URL and hey presto, the Internet worked. Fortunately, this USB modem manager doesn’t require a restart so it’s possible to run and test the Internet while using the Live CD, which I highly recommend doing.

Taking the Plunge with Ubuntu

With this caveat fixed, I took the plunge, backed up all my files onto an external hard drive and fully installed Ubuntu over Windows.

After trying it for just over 24 hours I became convinced that this was an operating system that I would be using for the long term. I can copy large amounts of files from one hard drive to the other without my PC noticeably slowing or making music stutter, file transfers are seamless whilst doing other tasks.

I tried opening a video file and Ubuntu complained that it couldn’t play that type of file, but it promptly came up with a message telling me I can download the required files to get it to work, so a click of the OK button and it was fixed. I tried playing an MP3 and the same happened, just a click of a message and Ubuntu located and installed the required files to play my music. These files need to be downloaded separately due to propriety issues.

A few things take a while to get used to, such as the folder views it has and the prompts that come up occasionally requesting your password to be entered. This might seem odd to have to enter a password just to change the date/time. With Windows latest operating system, Vista, prompting for requests on more admin type tasks, the odd one or two from Ubuntu are manageable.

Playing Video Games and other Windows Software in Ubuntu

I don’t play games much and haven’t attempted to do so yet, but I’ll try WINE sometime and see if that works. WINE is a program to let you play Windows only software in Ubuntu. Could come in handy for Photoshop since the free equivalent, GIMP, just doesn’t cut it for some things I want to do, such as batch image processing.

Ubuntu is a flavour of Linux that is becoming a popular, free alternative to Windows. To get started, go to the Ubuntu site.

Conclusion

Hopefully this guide will help the average computer user out there decide whether they really want to take the plunge with a different, but free operating system. In summary, if you’re prepared to spend a few hours to get used to it and to get it working the way you want, go for it!

http://launchpad.net/usb-adsl-modem-manager – USB ADSL Modem Manager for Ubuntu

http://www.babblestorm.co.uk/search.php?search=ubuntu – Ubuntu related news