Wednesday, August 30, 2006
Go for wifi… and leave trasquilado
As we saw in a previous post, the Palm is ideal for practising wardriving or warwalking (search wifi open wireless networks, connect to "loan"). However, although most open networks (ie, that do not require user name and password) are so well because they have been left intentionally, or because whoever has installed ignores the most basic respect to security in wifi networks, there are also times when the cause is another, and the person behind this network knows what it does. And might actually knows what he does.
This is true of this wasp (not to call him otherwise), which has decided to laughing a bit of its neighbours, who are using its wireless network to surf the Internet. The process is simple but effective:
- First divides its network into two ", configuring the DHCP server for that of their teams (known as MAC address) of an IP" good part "because all other one of the" bad side ".
/ etc / dhcpd.conf
ddns-updates off; ddns-update-style interim; authoritative; shared-network local subnet *.*.*.* netmask 255.255.255.0 ((range *.*.*.* *.*.*.*; option routers *.*.*.*;-Option subnet mask 255.255.255.0; option domain-name "XXXXX"; option domain-name-servers *.*.*.*; deny unknown-clients; host trusted1 (hardware ethernet *: *:*:*:*:*; Fixed-address *.*.*.*;)) subnet 192.168.0.0 netmask 255.255.255.0 (range 192.168.0.2 192.168.0.10; option routers 192.168.0.1; option subnet mask - 255.255.255.0; option domain-name-servers 192.168.0.1; allow unknown-clients;))
- Once this is done, there are many ways to have fun. The first is through Iptables (a module packet filtering, including in the Linux kernel), making all traffic coming / refer to a team of "bad network" always be redirected to another machine that we decide. The result is that when our neighbours surf the Internet, go to the page you will always end up in being in the right direction we have chosen. I leave it to readers to think about what page will be more fun to do something like that. So we could make one ourselves, for example with a warning from the CIA, informing them that they will be investigated by the road "dangerous".
/ sbin / iptables-A PREROUTING-s-p tcp 192.168.0.0/255.255.255.0-j DNAT - to-destination 64.111.96.38
- But this man has it happened another way to "have fun", even more original. He has installed Squid on your computer, a web proxy that is used in many networks as an intermediary between users and the Internet, and has combined with mogrify, a script of the package of image processing ImageMagik, which permits from the command line, perform operations on images, such as resize, rotate, etc.. In fact, he has used vertically to give back all the images that are downloaded from the Internet. Then the trick before, has redirected the navigation of its neighbours towards this proxy. The process is transparent to those who browse, and the result is extremely curious:
The setback Website (click to enlarge)
Script to "retouch" images
#! / usr / bin / perl $ | = 1; $ count = 0; pid = $ $ $; while (<>) (chomp $ _; if ($ _ = ~ / (.* \. jpg) / i ) ($ Url = $ 1; system ( "/ usr / bin / wget", "-q", "-O", "/ space / WebPages / images / $-$ count.jpg pid", "$ url") ; System ( "/ usr / bin / mogrify", "-flip", "/ space / WebPages / images / pid $-$ count.jpg"); print "http://127.0.0.1/images/ $ pid - $ count.jpg \ n ";) elsif ($ _ = ~ / (.* \. gif) / i) ($ url = $ 1; system (" / usr / bin / wget ","-q "," -- Or "," / space / WebPages / images / $-$ count.gif pid "," $ url "); system (" / usr / bin / mogrify ","-flip "," / space / WebPages / images / $-$ pid count.gif "); print" pid http://127.0.0.1/images/ $-$ count.gif \ n ";) else (print" $ _ \ n ";) $ count ;)
- By changing the parameters of mogrify, also can make all the images that their neighbors unloaded from the Internet are feathered, to achieve what he calls the Internet blurred.
The Web blurred (click to enlarge)
In short, when you get to use the wireless network's neighbor, taking into account not only the veis you, but he also he sees you, and may end up being the target of his jokes. So do not desespoir focus on the monitor image, because you can see everything that is blurred by other cause ...
By: Mark Gonzalez Troyas General
| RSS comments | Trackback | 
Print this post
Related articles
Subscribe to stay abreast of developments in this blog
Menudo Tingle is mounted so that people will not steal the connection
I have $ Homa WiFi (WPA) with ACL by MAC and nobody has ever tried to connect…
The bad news is that with my Tungsten C can not use WPA, and the WiFi card from PalmOne (which I still have when used with the T | 5) nor
They say out there that Palm is considering-this time in earnest-as the drivers for the Treo… is it true?
Greetings, Marco!
Yes, I found the relevant topic because I know that many Palm users have to stop leaving the network without WPA.
The use of the wifi neighbor is not always so bad. A friend of mine was able to enter the IM and browsing in the village where he was on vacation, through the linking of someone, and the width of banda using was negligible.
And what he has found mania call Framework!
jeje because the penalty is worth putting a wifi only by this diversion
can not connect my palm rescue elviog_921700@hotmail.com
Already Discovered… which has fun with neighbors you yourself Marcos… jejejejeje
Leaving aside the jokes there are people who share their philanthropic WiFi… there is a project called FON that allows flashing the router's firmware and allow free to donate part of the width of your connection banda… the idea is to create a network of infinite Hot Spots… I think that unfortunately has had only boom in Spain and at least here in Chile there is no FONeros…
But on the other hand… that I would donate for free something that costs me my money and not others? I have a MAC filtering and WEP on my WiFi and on the other hand is only undetectable…… I know that there is true that good?
FON is on the right track, but I do not think that is the solution coverage What I am going to give me, living in a 5 th floor? It falls the signal or the street. Furthermore there is one detail: if somebody does something illegal using your connection, then I think the responsibility is yours.
Here in Spain and Telefonica is offering its hotspots for use throughout the country for a monthly fee. I suppose that at a time coverage will be decent, and will be included in the price of ADSL.
definitely! I ina palm t / x. I achievement connect to a network wi fi. but when wing put a page, tells me wrong: that the requested page is spelled incorrectly. aa write back .. and therefore I am confident that this well Escritt. that happens, I have to do. and I want to use this system.
What curious to meet this post just a few hours ago when I was going something like, but nothing fun. The premise is that drove the person who owns the wifi could bring a kind of "honeypot" that he would obtain passwords and personal data of those who browse. I personally strikes me as a serious matter…
Yes, when entering a network unknown you are exposed to that, a honeypot is the same thing as a protective measure that, as you say, as a way to take advantage of users "Candide".
It goes without much sophistication. With a simple protocol analyzer can expect some sort of traffic containing passwords, if not encrypted.