Wireless Security

I need clairification on a wireless issue.

If 2 seperate LAN systen are running. The first LAN is NOT
connected to the Internet for security reasons. The second
LAN is using the Wireless Microsoft MN-500 Wireless router
and does have an Internet connection through High Speed
cable. Can the signal emmisions emmitted from the
unshielded CAT5 wireing on LAN(1) be broadcasting inside
of the wireless bubble. And if a hacker (with a wireless
reciever NIC) gets in into the wireless LAN (which is no
doubt possible) could they then grab the packets floating
around from LAN system (1).

This is what I heard and I'm wondering if this is actually
true, because as I understand it, if the hacker connected
to the Wireless LAN , which has it's own DNS, DHCP,
Gateway and Subnet can they sniff packets that might be
floating around that are from an entirely different DNS,
DHCP, Gateway and Subnet? Or if they have a wireless
reciever NIC can they just scan within the bubble for any
packets of information without needing to make a
connection to either Network?

I hope I explained it properly, but if you would like to
help with this situation and need further details, just
ask.

Thanks

Lanwench
Thu Aug 14 14:46:49 CDT 2003

I don't see how that could happen. Make sure you're at least using 128-bit
WEP on all wireless traffic (force it), if LEAP isn't an option - WEP isn't
unbreakable, but it's better to have a deadbolt on the door than a
hook-and-eye lock.

Neil Thibeault wrote:
> I need clairification on a wireless issue.
>
> If 2 seperate LAN systen are running. The first LAN is NOT
> connected to the Internet for security reasons. The second
> LAN is using the Wireless Microsoft MN-500 Wireless router
> and does have an Internet connection through High Speed
> cable. Can the signal emmisions emmitted from the
> unshielded CAT5 wireing on LAN(1) be broadcasting inside
> of the wireless bubble. And if a hacker (with a wireless
> reciever NIC) gets in into the wireless LAN (which is no
> doubt possible) could they then grab the packets floating
> around from LAN system (1).
>
> This is what I heard and I'm wondering if this is actually
> true, because as I understand it, if the hacker connected
> to the Wireless LAN , which has it's own DNS, DHCP,
> Gateway and Subnet can they sniff packets that might be
> floating around that are from an entirely different DNS,
> DHCP, Gateway and Subnet? Or if they have a wireless
> reciever NIC can they just scan within the bubble for any
> packets of information without needing to make a
> connection to either Network?
>
> I hope I explained it properly, but if you would like to
> help with this situation and need further details, just
> ask.
>
> Thanks

S
Fri Aug 15 07:42:11 CDT 2003

The MN-500 doesn't support WPA or EAP/PEAP. LEAP is Cisco proprietary, not
an option for any purpose, really.

I never heard that signal emissions from Ethernet cables can be received and
analysed using Wi-Fi equipment - completely different frequencies and...
hmm... encoding. So there's nothing to worry about, really

--
Svyatoslav Pidgorny, MS MVP, MCSE
-= F1 is the key =-

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in message
news:OsDSPAqYDHA.2548@TK2MSFTNGP09.phx.gbl...
> I don't see how that could happen. Make sure you're at least using 128-bit
> WEP on all wireless traffic (force it), if LEAP isn't an option - WEP
isn't
> unbreakable, but it's better to have a deadbolt on the door than a
> hook-and-eye lock.
>
> Neil Thibeault wrote:
> > I need clairification on a wireless issue.
> >
> > If 2 seperate LAN systen are running. The first LAN is NOT
> > connected to the Internet for security reasons. The second
> > LAN is using the Wireless Microsoft MN-500 Wireless router
> > and does have an Internet connection through High Speed
> > cable. Can the signal emmisions emmitted from the
> > unshielded CAT5 wireing on LAN(1) be broadcasting inside
> > of the wireless bubble. And if a hacker (with a wireless
> > reciever NIC) gets in into the wireless LAN (which is no
> > doubt possible) could they then grab the packets floating
> > around from LAN system (1).
> >
> > This is what I heard and I'm wondering if this is actually
> > true, because as I understand it, if the hacker connected
> > to the Wireless LAN , which has it's own DNS, DHCP,
> > Gateway and Subnet can they sniff packets that might be
> > floating around that are from an entirely different DNS,
> > DHCP, Gateway and Subnet? Or if they have a wireless
> > reciever NIC can they just scan within the bubble for any
> > packets of information without needing to make a
> > connection to either Network?
> >
> > I hope I explained it properly, but if you would like to
> > help with this situation and need further details, just
> > ask.
> >
> > Thanks
>
>

Lanwench
Fri Aug 15 14:34:20 CDT 2003

I'm using LEAP right now - so it's an option for *some* purposes. :-)

S. Pidgorny [MVP] wrote:
> The MN-500 doesn't support WPA or EAP/PEAP. LEAP is Cisco
> proprietary, not an option for any purpose, really.
>
> I never heard that signal emissions from Ethernet cables can be
> received and analysed using Wi-Fi equipment - completely different
> frequencies and... hmm... encoding. So there's nothing to worry
> about, really
>
>
> "Lanwench [MVP - Exchange]"
> <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
> message news:OsDSPAqYDHA.2548@TK2MSFTNGP09.phx.gbl...
>> I don't see how that could happen. Make sure you're at least using
>> 128-bit WEP on all wireless traffic (force it), if LEAP isn't an
>> option - WEP isn't unbreakable, but it's better to have a deadbolt
>> on the door than a hook-and-eye lock.
>>
>> Neil Thibeault wrote:
>>> I need clairification on a wireless issue.
>>>
>>> If 2 seperate LAN systen are running. The first LAN is NOT
>>> connected to the Internet for security reasons. The second
>>> LAN is using the Wireless Microsoft MN-500 Wireless router
>>> and does have an Internet connection through High Speed
>>> cable. Can the signal emmisions emmitted from the
>>> unshielded CAT5 wireing on LAN(1) be broadcasting inside
>>> of the wireless bubble. And if a hacker (with a wireless
>>> reciever NIC) gets in into the wireless LAN (which is no
>>> doubt possible) could they then grab the packets floating
>>> around from LAN system (1).
>>>
>>> This is what I heard and I'm wondering if this is actually
>>> true, because as I understand it, if the hacker connected
>>> to the Wireless LAN , which has it's own DNS, DHCP,
>>> Gateway and Subnet can they sniff packets that might be
>>> floating around that are from an entirely different DNS,
>>> DHCP, Gateway and Subnet? Or if they have a wireless
>>> reciever NIC can they just scan within the bubble for any
>>> packets of information without needing to make a
>>> connection to either Network?
>>>
>>> I hope I explained it properly, but if you would like to
>>> help with this situation and need further details, just
>>> ask.
>>>
>>> Thanks

S
Sat Aug 16 08:22:10 CDT 2003

Sorry, I mean - new implementations :)

reg Slav

"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in message
news:Oyz4lX2YDHA.2136@TK2MSFTNGP10.phx.gbl...
> I'm using LEAP right now - so it's an option for *some* purposes. :-)
>
> S. Pidgorny [MVP] wrote:
> > The MN-500 doesn't support WPA or EAP/PEAP. LEAP is Cisco
> > proprietary, not an option for any purpose, really.
> >
> > I never heard that signal emissions from Ethernet cables can be
> > received and analysed using Wi-Fi equipment - completely different
> > frequencies and... hmm... encoding. So there's nothing to worry
> > about, really
> >
> >
> > "Lanwench [MVP - Exchange]"
> > <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
> > message news:OsDSPAqYDHA.2548@TK2MSFTNGP09.phx.gbl...
> >> I don't see how that could happen. Make sure you're at least using
> >> 128-bit WEP on all wireless traffic (force it), if LEAP isn't an
> >> option - WEP isn't unbreakable, but it's better to have a deadbolt
> >> on the door than a hook-and-eye lock.
> >>
> >> Neil Thibeault wrote:
> >>> I need clairification on a wireless issue.
> >>>
> >>> If 2 seperate LAN systen are running. The first LAN is NOT
> >>> connected to the Internet for security reasons. The second
> >>> LAN is using the Wireless Microsoft MN-500 Wireless router
> >>> and does have an Internet connection through High Speed
> >>> cable. Can the signal emmisions emmitted from the
> >>> unshielded CAT5 wireing on LAN(1) be broadcasting inside
> >>> of the wireless bubble. And if a hacker (with a wireless
> >>> reciever NIC) gets in into the wireless LAN (which is no
> >>> doubt possible) could they then grab the packets floating
> >>> around from LAN system (1).
> >>>
> >>> This is what I heard and I'm wondering if this is actually
> >>> true, because as I understand it, if the hacker connected
> >>> to the Wireless LAN , which has it's own DNS, DHCP,
> >>> Gateway and Subnet can they sniff packets that might be
> >>> floating around that are from an entirely different DNS,
> >>> DHCP, Gateway and Subnet? Or if they have a wireless
> >>> reciever NIC can they just scan within the bubble for any
> >>> packets of information without needing to make a
> >>> connection to either Network?
> >>>
> >>> I hope I explained it properly, but if you would like to
> >>> help with this situation and need further details, just
> >>> ask.
> >>>
> >>> Thanks
>
>

David
Sat Aug 16 08:39:28 CDT 2003

i don't think he is talking about pickup of stray signals from the 'secure'
lan. more likely he is thinking that like on a hub where one port can see
packets for the whole network, that the wireless lan segment will broadcast
packets from the other lan segment. i would think that depends on how the
routers/hubs/switches for the two segments are set up. if they are going
through just a hub that feed the wireless access port and the only
separation of the lan's is by ip address then it might be possible... though
i would expect the wireless access point would be set up for only the ip
address range that is on the unsecure lan. if the two lans are on different
physical wires/hubs/routers then there should be no way to get the secure
data from the wireless access.


"S. Pidgorny [MVP]" <slavickp@yahoo.com> wrote in message
news:e0R06l$YDHA.1620@TK2MSFTNGP12.phx.gbl...
> Sorry, I mean - new implementations :)
>
> reg Slav
>
> "Lanwench [MVP - Exchange]"
> <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
message
> news:Oyz4lX2YDHA.2136@TK2MSFTNGP10.phx.gbl...
> > I'm using LEAP right now - so it's an option for *some* purposes. :-)
> >
> > S. Pidgorny [MVP] wrote:
> > > The MN-500 doesn't support WPA or EAP/PEAP. LEAP is Cisco
> > > proprietary, not an option for any purpose, really.
> > >
> > > I never heard that signal emissions from Ethernet cables can be
> > > received and analysed using Wi-Fi equipment - completely different
> > > frequencies and... hmm... encoding. So there's nothing to worry
> > > about, really
> > >
> > >
> > > "Lanwench [MVP - Exchange]"
> > > <lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in
> > > message news:OsDSPAqYDHA.2548@TK2MSFTNGP09.phx.gbl...
> > >> I don't see how that could happen. Make sure you're at least using
> > >> 128-bit WEP on all wireless traffic (force it), if LEAP isn't an
> > >> option - WEP isn't unbreakable, but it's better to have a deadbolt
> > >> on the door than a hook-and-eye lock.
> > >>
> > >> Neil Thibeault wrote:
> > >>> I need clairification on a wireless issue.
> > >>>
> > >>> If 2 seperate LAN systen are running. The first LAN is NOT
> > >>> connected to the Internet for security reasons. The second
> > >>> LAN is using the Wireless Microsoft MN-500 Wireless router
> > >>> and does have an Internet connection through High Speed
> > >>> cable. Can the signal emmisions emmitted from the
> > >>> unshielded CAT5 wireing on LAN(1) be broadcasting inside
> > >>> of the wireless bubble. And if a hacker (with a wireless
> > >>> reciever NIC) gets in into the wireless LAN (which is no
> > >>> doubt possible) could they then grab the packets floating
> > >>> around from LAN system (1).
> > >>>
> > >>> This is what I heard and I'm wondering if this is actually
> > >>> true, because as I understand it, if the hacker connected
> > >>> to the Wireless LAN , which has it's own DNS, DHCP,
> > >>> Gateway and Subnet can they sniff packets that might be
> > >>> floating around that are from an entirely different DNS,
> > >>> DHCP, Gateway and Subnet? Or if they have a wireless
> > >>> reciever NIC can they just scan within the bubble for any
> > >>> packets of information without needing to make a
> > >>> connection to either Network?
> > >>>
> > >>> I hope I explained it properly, but if you would like to
> > >>> help with this situation and need further details, just
> > >>> ask.
> > >>>
> > >>> Thanks
> >
> >
>
>