Wifi Security
Niels Bakker
niels=nanog at bakker.net
Mon Nov 21 18:12:10 UTC 2005
* joelja at darkwing.uoregon.edu (Joel Jaeggli) [Mon 21 Nov 2005, 18:52 CET]:
>On Mon, 21 Nov 2005, Stephen J. Wilcox wrote:
>>On Mon, 21 Nov 2005, Patrick W. Gilmore wrote:
>>>Why would you even need to set up an AP? Why not just sit and sniff
>>>traffic? Gets you the _exact_ same information.
>>
>>man in the middle is easier if you are the gateway, no need to steal arp
>
>you don't have to steal arp on a wireless network, you just sniff the
>frames as they go by.
As others pointed out (to me as well), for a _man in the middle_ attack
(e.g. impersonating www.paypal.com) it is necessary to play ARP games or
otherwise insert yourself in the flow of traffic.
-- Niels.
More information about the NANOG
mailing list