-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Carlos E. R. schreef:
The Monday 2007-09-17 at 17:03 +0200, jdd wrote:
Carlos E. R. wrote:
A cracker can make his PC look like one of yours and connect, instantly. that is a cracker can guess your wep key (don't ask me how :-(), at the moment lurking the net gives him the mac adresse of the various hosts.
Yes, but he didn't say if he is using wep. My point is, that basing security only in giving IPs to known machines, using the hardware address, is not secure. Added to other methods, yes.
And wep... I was told of an ISP technician that installed all routers in his area withe keys of the "012345678901234567890xx" type, the last to digits being related to the customer. The customers were happy because they had a long key that was easy to remember. The crackers were even happier.
the problem is: why should a cracker do this on your network? If this was one of a big company or if your work is highly important, may be.
may be also an evil neigbor
Or one without ISP, and just wanting to send his emails free. I have a friend in that case.
Somebody told me that once he tested his neighbors wifi network, and got in easily. He then captured the traffic, and managed to learn his bank login and password - shame on the bank for sending that in clear -. He even tested it by entering the bank account, and exited. Obviously, that neighbor was using windows. He said that, had he being malign, he would have connected to the bank from a second neighbor network, and sent the money to a third one: there would be no way to track him, and the police would blame the second neighbor.
Anyway, M9 doesn't have neighbors, so he probably doesn't those problems :-)
Looking into my bank-account, he/she would probably get tears in his/her eyes, and in pity, he/she would send some money to my account ;-)) - -- Have a nice day, M9. Now, is the only time that exists. OS: Linux 2.6.22.5-10-default x86_64 Huidige gebruiker: monkey9@tribal-sfn2 Systeem: openSUSE 10.3 (X86-64) Beta3 KDE: 3.5.7 "release 58" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFG78nqX5/X5X6LpDgRAsQbAJ9qZpjkTKNxRVLjpx2WUFlJ9kMo3QCfW4Ie lu7vs9A4096QkXlm+H+shUk= =+jk9 -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org