From: Pierre Vandevenne (pierre@datarescue.com)
Date: Mon Jun 10 2002 - 13:42:07 EDT
Hello Isherwood,
IJCCAI> MOST received wrong answer ??
IJCCAI> Netstumbler: Wardrive your own campus before they do.
IJCCAI> This is not always a practical, or failsafe method. You might miss
IJCCAI> an area, or your campus might be too big to realistically do this (imagine a
IJCCAI> corporation or Edu that is spread out over a mile or more, and your manpower
IJCCAI> is limited?)
I don't think it is a "wrong" method. As a matter of fact, each time I
have tried it in a favourable environment, it has found many more APs
than other methods combined. If there is one thing that you can't hide
it is the radio traffic. It's true that SNMP can, in some cases, be
disabled. But MAC addresses can be changed as well.
Large campuses are the easiest to scan. Get a high gain antenna and a
golf cart and explore the area boustrophedonically.
The most difficult places to scan are actually medium sized
organizations in a "downton-like" environment, where you pick up a lot
of stuff that doesn't belong to you or where APs will remain hidden
because of the faraday cages properties of some areas.
Interestingly, leaving aside the issue of regulations and power of
emission, it is often much easier to stumble in the US than in Europe
because of the wooden structure of many US buildings.
-- Best regards, Pierre mailto:pierre@datarescue.com ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:22 EDT