Results 1 to 10 of 15

Thread: some one boardcasting a wireless signal with same ssid as mine

Hybrid View

  1. #1
    Just burned his ISO
    Join Date
    Jul 2009
    Posts
    14

    Default some one boardcasting a wireless signal with same ssid as mine

    hello

    I'm broadcasting a wireless internet to 20 clients,and I'm using pppoe , but some one is broadcasting with the same SSID as mine and with many different mac addresses , many of my clients have a bad net and disconnecting many times and tow of them even don't connect to my network ...

    so,what you think i can do to solve this problem ?

    PS :
    i can't hide my signal because i need new client to know me and even if i change it he will know it

    my clients are using 2.4MHz Grid like this
    hxxp://dmsichina.com/grid/SP242409-400.jpg

    And i'm using omni antenna to broadcast

    i search a lot for a solution for this problem and even talked with many people in yahoo chat rooms and they all say that i must broadcast with a stronger signal , the problem is there is a high noise in my area and if i did this my net will be so slow ...

    I don't know if you need other information ,best regards

  2. #2
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Nothing you can do. That's one of the main problems with Wifi. Anyone can broadcast any damn SSID that they want.

    The noise from them will interfere with your own network, but there are some third party connection managers you can install on your clients so they will only connect to certain AP's on a MAC whitelist. It's not a good solution because if someone is being really malicious, they could change their MAC's to match yours, but there's really not much else you can do about it.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  3. #3
    Just burned his ISO
    Join Date
    Jul 2009
    Posts
    14

    Default

    Quote Originally Posted by streaker69 View Post
    Nothing you can do. That's one of the main problems with Wifi. Anyone can broadcast any damn SSID that they want.

    The noise from them will interfere with your own network, but there are some third party connection managers you can install on your clients so they will only connect to certain AP's on a MAC whitelist. It's not a good solution because if someone is being really malicious, they could change their MAC's to match yours, but there's really not much else you can do about it.
    exactly , and he know how to change his mac to be exactly like mine therefore i can't use these connections managers too

    i think i have only one solution , and that solution is changing my mac address and hide my SSID , at least i wont lose my current clients

    do you think it's a good one ?

    thanks

  4. #4
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by memo2009 View Post
    exactly , and he know how to change his mac to be exactly like mine therefore i can't use these connections managers too

    i think i have only one solution , and that solution is changing my mac address and hide my SSID , at least i wont lose my current clients

    do you think it's a good one ?

    thanks
    The only way to truly hide your SSID is to turn off your AP.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  5. #5
    Just burned his ISO
    Join Date
    Jul 2009
    Posts
    14

    Default

    Quote Originally Posted by streaker69 View Post
    The only way to truly hide your SSID is to turn off your AP.
    well , i hope he doesn't have AirMagnet or AirJack or something like that.

  6. #6
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by memo2009 View Post
    well , i hope he doesn't have AirMagnet or AirJack or something like that.
    ...or <gasp> Backtrack.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  7. #7
    Senior Member MikeCa's Avatar
    Join Date
    Jan 2010
    Location
    DC
    Posts
    129

    Default

    Is the network protected with WPA? If so, you ought to be able to configure the clients to only connect to your AP if the connection was made with a supplied password (because he doesn't know your password).

    Of course, there is a weakness here, which is that your clients will likely try authenticating with his AP with their secret key and he could see what keys they are trying to use.

    Does this attack have a name -- where you create an AP with the same name as a WPA protected AP then sniff off the passwords as clients try to connect to you?

  8. #8
    Very good friend of the forum Virchanza's Avatar
    Join Date
    Jan 2010
    Posts
    863

    Default

    Quote Originally Posted by mikec View Post
    Does this attack have a name -- where you create an AP with the same name as a WPA protected AP then sniff off the passwords as clients try to connect to you?
    I've heard people refer to it as the "evil twin".
    Ask questions on the open forums, that way everybody benefits from the solution, and everybody can be corrected when they make mistakes. Don't send me private messages asking questions that should be asked on the open forums, I won't respond. I decline all "Friend Requests".

  9. #9
    My life is this forum Barry's Avatar
    Join Date
    Jan 2010
    Posts
    3,817

    Default

    Quote Originally Posted by Virchanza View Post
    I've heard people refer to it as the "evil twin".
    I think I hear a skinny Canadian dude up in Alberta screaming.....

  10. #10
    Just burned his ISO
    Join Date
    Jul 2009
    Posts
    14

    Default

    Quote Originally Posted by mikec View Post
    Is the network protected with WPA? If so, you ought to be able to configure the clients to only connect to your AP if the connection was made with a supplied password (because he doesn't know your password).

    Of course, there is a weakness here, which is that your clients will likely try authenticating with his AP with their secret key and he could see what keys they are trying to use.

    Does this attack have a name -- where you create an AP with the same name as a WPA protected AP then sniff off the passwords as clients try to connect to you?
    no it's not protected with WPA , and the attack name is as Virchanza mentioned .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •