http://www.geeknewscentral.com/2004/02/17/wifi-honeypots/ Geek News Central is the technical site for Geeks. We Spin tech for the common man. With a Family of Tech Shows and Content. Wed, 08 Feb 2012 16:38:36 +0000 hourly 1 http://wordpress.org/?v=3.3.1 http://www.geeknewscentral.com/2004/02/17/wifi-honeypots/comment-page-1/#comment-930 elf Wed, 18 Feb 2004 14:54:05 +0000 http://www.geeknewscentral.com/?p=2132#comment-930 Whenever using any open wireless network, one should only use encrypted services. SSH Tunnel's are a great way to protect services like POP and SMTP or use a VPN. If you aren't tunneled or VPN'd make sure log into webmail/web services via https. <span class="mt-export2wp"></span> I worry less about Honeypots if you aren't doing anything wrong, and if someone is monitoring your use, encryption will keep your packets clear. <span class="mt-export2wp"></span> I am one of those people who support making your wireless open to the public (for internet access). All wireless nodes that I have set up have been open with no WEP. In order to get to your internal resources I either: a) set up a 'captive portal' and require a secure login (https) that sets your IP address as a "allow only". Then the router will let your packets through to internal resources. 2) have a VPN server, and have people VPN to access their corporate resources. This has a great side effect. It is the same software/solution for getting into their internal resources regardless of what wireless internet connection they are using. <span class="mt-export2wp"></span> To clarify, no wep doesn't mean full open internet access for guest, Only certain ports are allowed (and not SMTP so someone can't spam through the access). <span class="mt-export2wp"></span> Whenever using any open wireless network, one should only use encrypted services. SSH Tunnel’s are a great way to protect services like POP and SMTP or use a VPN. If you aren’t tunneled or VPN’d make sure log into webmail/web services via https.

I worry less about Honeypots if you aren’t doing anything wrong, and if someone is monitoring your use, encryption will keep your packets clear.

I am one of those people who support making your wireless open to the public (for internet access). All wireless nodes that I have set up have been open with no WEP. In order to get to your internal resources I either: a) set up a ‘captive portal’ and require a secure login (https) that sets your IP address as a “allow only”. Then the router will let your packets through to internal resources. 2) have a VPN server, and have people VPN to access their corporate resources. This has a great side effect. It is the same software/solution for getting into their internal resources regardless of what wireless internet connection they are using.

To clarify, no wep doesn’t mean full open internet access for guest, Only certain ports are allowed (and not SMTP so someone can’t spam through the access).

]]> http://www.geeknewscentral.com/2004/02/17/wifi-honeypots/comment-page-1/#comment-929 Lizking Tue, 17 Feb 2004 21:12:28 +0000 http://www.geeknewscentral.com/?p=2132#comment-929 I know someone who was leeching off someone's unsecured network for the best part of a week. After a while, he started feeling guilty, and sent the guy a message via his printer to install some form of firewall. I know someone who was leeching off someone’s unsecured network for the best part of a week. After a while, he started feeling guilty, and sent the guy a message via his printer to install some form of firewall.

]]>