Wireless Hacks. 1917 IndustrialStrength Tips and Tools [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Wireless Hacks. 1917 IndustrialStrength Tips and Tools [Electronic resources] - نسخه متنی

Rob Flickenger

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Main Page

Table of content

Copyright

Credits

About the Author

Contributors

Acknowledgments

Foreword

Preface

Why Wireless Hacks?

How to Use This Book

How This Book Is Organized

Conventions Used in This Book

How to Contact Us

Chapter 1. The Standards

1.1 Hacks #1-12

Hack 1 802.11: The Mother of All IEEE Wireless Ethernet

Hack 2 802.11a: The Betamax of the 802.11 Family

Hack 3 802.11b: The De Facto Standard

Hack 4 802.11g: Like 802.11b, only Faster

Hack 5 802.16: Long Distance Wireless Infrastructure

Hack 6 Bluetooth: Cable Replacement for Devices

Hack 7 900 MHz: Low Speed, Better Coverage

Hack 8 CDPD, 1xRTT, and GPRS: Cellular Data Networks

Hack 9 FRS and GMRS: Super Walkie-Talkies

Hack 10 802.1x: Port Security for Network Communications

Hack 11 HPNA and Powerline Ethernet

Hack 12 BSS Versus IBSS

Chapter 2. Bluetooth and Mobile Data

2.1 Hacks #13-19

Hack 13 Remote Control OS X with a Sony Ericsson Phone

Hack 14 SMS with a Real Keyboard

Hack 15 Photo Blog Automatically with the Nokia 3650

Hack 16 Using Bluetooth with Linux

Hack 17 Bluetooth to GPRS in Linux

Hack 18 Bluetooth File Transfers in Linux

Hack 19 Controlling XMMS with Bluetooth

Chapter 3. Network Monitoring

3.1 Hacks #20-42

Hack 20 Find All Available Wireless Networks

Hack 21 Network Discovery Using NetStumbler

Hack 22 Network Detection on Mac OS X

Hack 23 Detecting Networks Using Handheld PCs

Hack 24 Passive Scanning with KisMAC

Hack 25 Establishing Connectivity

Hack 26 Quickly Poll Wireless Clients with ping

Hack 27 Finding Radio Manufacturers by MAC Address

Hack 28 Rendezvous Service Advertisements in Linux

Hack 29 Advertising Arbitrary Rendezvous Services in OS X

Hack 30 'Brought to you by' Rendezvous Ad Redirector

Hack 31 Detecting Networks with Kismet

Hack 32 Running Kismet on Mac OS X

Hack 33 Link Monitoring in Linux with Wavemon

Hack 34 Historical Link State Monitoring

Hack 35 EtherPEG and DriftNet

Hack 36 Estimating Network Performance

Hack 37 Watching Traffic with tcpdump

Hack 38 Visual Traffic Analysis with Ethereal

Hack 39 Tracking 802.11 Frames in Ethereal

Hack 40 Interrogating the Network with nmap

Hack 41 Network Monitoring with ngrep

Hack 42 Running ntop for Real-Time Network Stats

Chapter 4. Hardware Hacks

4.1 Hacks #43-69

Hack 43 Add-on Laptop Antennas

Hack 44 Increasing the Range of a Titanium PowerBook

Hack 45 WET11 Upgrades

Hack 46 AirPort Linux

Hack 47 Java Configurator for AirPort APs

Hack 48 Apple Software Base Station

Hack 49 Adding an Antenna to the AirPort

Hack 50 The NoCat Night Light

Hack 51 Do-It-Yourself Access Point Hardware

Hack 52 Compact Flash Hard Drive

Hack 53 Pebble

Hack 54 Tunneling: IPIP Encapsulation

Hack 55 Tunneling: GRE Encapsulation

Hack 56 Running Your Own Top-Level Domain

Hack 57 Getting Started with Host AP

Hack 58 Make Host AP a Layer 2 Bridge

Hack 59 Bridging with a Firewall

Hack 60 MAC Filtering with Host AP

Hack 61 Hermes AP

Hack 62 Microwave Cabling Guide

Hack 63 Microwave Connector Reference

Hack 64 Antenna Guide

Hack 65 Client Capability Reference Chart

Hack 66 Pigtails

Hack 67 802.11 Hardware Suppliers

Hack 68 Home-Brew Power over Ethernet

Hack 69 Cheap but Effective Roof Mounts

Chapter 5. Do-It-Yourself Antennas

5.1 Hacks #70-79

Hack 70 Deep Dish Cylindrical Parabolic Reflector

Hack 71 'Spider' Omni

Hack 72 Pringles Can Waveguide

Hack 73 Pirouette Can Waveguide

Hack 74 Primestar Dish with Waveguide Feed

Hack 75 BiQuad Feed for Primestar Dish

Hack 76 Cut Cable Omni Antenna

Hack 77 Slotted Waveguides

Hack 78 The Passive Repeater

Hack 79 Determining Antenna Gain

Chapter 6. Long Distance Links

6.1 Hacks #80-85

Hack 80 Establishing Line of Sight

Hack 81 Calculating the Link Budget

Hack 82 Aligning Antennas at Long Distances

Hack 83 Slow Down to Speed Up

Hack 84 Taking Advantage of Antenna Polarization

Hack 85 Map the Wireless Landscape with NoCat Maps

Chapter 7. Wireless Security

7.1 Hacks #86-100

Hack 86 Making the Best of WEP

Hack 87 Dispel the Myth of Wireless Security

Hack 88 Cracking WEP with AirSnort: The Easy Way

Hack 89 NoCatAuth Captive Portal

Hack 90 NoCatSplash and Cheshire

Hack 91 Squid Proxy over SSH

Hack 92 SSH SOCKS 4 Proxy

Hack 93 Forwarding Ports over SSH

Hack 94 Quick Logins with SSH Client Keys

Hack 95 'Turbo-Mode' SSH Logins

Hack 96 OpenSSH on Windows Using Cygwin

Hack 97 Location Support for Tunnels in OS X

Hack 98 Using vtun over SSH

Hack 99 Automatic vtund.conf Generator

Hack 100 Tracking Wireless Users with arpwatch

Appendix A. Deep Dish Parabolic Reflector Template

Colophon

Index

Index SYMBOL

Index A

Index B

Index C

Index D

Index E

Index F

Index G

Index H

Index I

Index J

Index K

Index L

Index M

Index N

Index O

Index P

Index R

Index S

Index T

Index U

Index V

Index W

Index X

Index Y

Index Z

توضیحات
افزودن یادداشت جدید










Hack 100 Tracking Wireless Users with arpwatch


Automatically keep a database of MAC address to
IP address mappings.

MAC address filters are easily
circumvented using commonly available toolssee [Hack #87]. If your APs are bridged to the
Ethernet segment, there are a couple of utilities you can use to look
for people fiddling with their MAC addresses. One such tool is
arpwatch, available from http://www-nrg.ee.lbl.gov/nrgl.

arpwatch runs as a daemon on any machine, and keeps track of the MAC
address/IP address pairs as ARP replies pass through the network.
When it notices something out of the ordinary, it logs the activity
to syslog, as well as sends an email to the address of your choice.
Aside from looking for suspicious activity, this also gives you a
nice log of every new user on your wireless network. This can be fun
to watch over time, particularly if you are running an open wireless
network.

After you unpack the arpwatch archive, take a look at
addresses.h. This is where the email address is
set, so be sure to update it before you compile arpwatch. Set WATCHER
to whatever you like (the default is
"root," which sends it to root at
the machine that is running arpwatch).

You should be able to build and install the binaries with the usual
commands:

root@florian:~/arpwatch-2.1a11# ./configure; make; make install

Unfortunately, this doesn't install all of the
necessary pieces. In particular, arpwatch expects
/usr/local/arpwatch to exist by default and to
contain the arp.dat database file. It also looks
in this directory for an Ethernet OUI to manufacturer a list to give
more informative information about the machines it sees. Check out
[Hack #27] for more details
about the OUI portion of MAC addresses. Create the necessary
directory and files with the following commands:

root@florian:~/arpwatch-2.1a11# mkdir /usr/local/arpwatch
root@florian:~/arpwatch-2.1a11# cp ethercodes.dat /usr/local/arpwatch
root@florian:~/arpwatch-2.1a11# touch /usr/local/arpwatch/arp.dat

Finally, if you have sufficient space, I highly recommend installing
the man pages as well:

root@florian:~/arpwatch-2.1a11# cp *.8 /usr/local/man/man8

Now you can start arpwatch as a daemon. Specify the interface you
would like to watch with the -i switch.

root@florian:~# arpwatch -i eth0

This should start arpwatch as a daemon. If it
doesn't seem to be running, it will log any problems
to syslog, so take a look at your system logs (particularly
/var/log/messages and
/var/log/syslog).

Now, as machines ARP for each other on the network, arpwatch keeps
track of them. Every time there is new activity, you should get an
email that looks something like this:

From: arpwatch@florian.rob.swn (Arpwatch)
Date: Mon Jun 23, 2003  2:16:51  PM US/Pacific
To: root@florian.rob.swn
Subject: new station (dhcp-68)
hostname: dhcp-68
ip address: 10.15.6.68
ethernet address: 0:30:65:03:e7:8a
ethernet vendor: APPLE COMPUTER, INC.
timestamp: Monday, June 23, 2003 14:16:51 -0700

You will be notified by email whenever a new client is detected, when
an already logged MAC address is seen in use with a new IP address,
and when the MAC address associated with a particular IP changes.
There are a number of legitimate reasons why IP-to-MAC address
mappings may change (particularly if you are running a busy network
with an insufficient number of available DHCP leases). Regardless of
the cause, arpwatch keeps a nice historical log of the traffic it
sees, which can be valuable when tracking down potential miscreants.
Since arpwatch logs to syslog as well as email, you can easily
generate reports or graphs by processing these logs whenever you
like.

While arpwatch faithfully logs everything it sees, it
doesn't actually take any corrective action on its
own. If you need an automated method for reacting to suspicious ARP
or other activity on your network, take a look at
Snort (http://www.snort.org/).

It is possible to provide secure wireless services, but only by fully
understanding the protocol's strengths and
weaknesses and applying a liberal amount of application layer
encryption. I hope that this chapter has made you more aware of the
common pitfalls, and has armed you with some valuable tools for
keeping your wireless networks secure and fun to use.


/ 158