Open Wireless AP...find the owner?

Bob Ferrier boblist at kc.rr.com
Sat Jul 12 07:38:46 CDT 2003 

 Lets start at the beginning...  If you find an open access point, so 
far law precedent states that you cannot be sued, or prosecuted for 
accessing the internet through that access.   however, accessing the 
computers, and or peripherals shared through that network fall under 
the standard anti hacking laws...    any type of access could 
possibly land you jail time/fines.

second...   this could be a "honeypot" a test system dedicated to 
pinpointing intrusions and situations as described above.

third.   if you are getting good signal, then pinpointing them is 
fairly simple...   either they are really really close...   *less 
than 150ft.~ 250ft*  or they are really really powerful...   see omni 
directional antenna's..   

if they are setup to use omni's to increase power then they might be 
doing this on purpose.

now... here are some tools that you could use in your network...   
and or use in wardriving, and or in the securing of your own network.

you are aware of netstumbler  www.stumbler.net  so you have half the 
tools already.  a working knowledge of its use... (or a similar 
program)

next is either a computer with a usb wlan nic, or a laptop with a 
pcmcia card...    why either of these?   

well...   lets look at the tech spec's of 802.11b (this is an 
assumption per the email didn't say.)  

2.4ghz is absorbed very well by one very common material:
water.

Since the human body is mostly water we can find the ap by 
interposing your body, or even your hand, to eliminate directions 
that the signal can be coming from. when the signal fades, the ap is 
behind you.  (or behind your hand)

keep in mind that your neighbor may not be happy to see you.

here are a few additonal links that may provide additional 
information:

Yagi (cantenna)  *these are powerful directional antenna's.*
www.netscum.com/~clapp/wireless.html 

Pringles Yagi *scroll down to the all in the can version*
www.oreillynet.com/cs/weblog/view/wlg/448
I have gotten a 14 dBi gain using this small, 8 dollar solution. 
(may cost more if you buy a pigtail, i just soldiered the wire 
direction into a pcmcia card.)

yet another web page of interest:
www.wireless.org.au/~jhecker/

There is a solution using a compaq ipaq, (and possibly other winCE or 
linux based handhelds...   but this can run anywhere from 250 to 1000 
to put together...   

the gps is only needed if you are actually trying to scan an area or 
a route, as stopping and jotting down the closest intersection is 
dangerous and impractical...   (not that it can't be done.)

(The only reason I know any of this, is cause when I was working in 
the Outbound Services section of Compusa, my boss wanted to research 
alternate sources of income to our department. He never implemented 
my proposals, and hence, never made any money off of it.  I have a 
business model of sorts worked out, and would be happy to 
demonstrate, train, and develop equipment solutions for someone 
interested in implementing it as a business.

And on a side note, at my last count, 6 months or so ago, there where 
2146 unsecured residential waps, and 7 insecure business waps in 
Johnson county, KS.   Similar numbers can be found in other parts of 
town.

On a side side note, one of those insecure business waps is located 
at the Olathe PD station near 135th and I35.) 

-- 
Bob Ferrier, boblist at kc.rr.com on 07/12/2003

On Fri, 11 Jul 2003 23:48:39 -0500, Matt G wrote:
>So, I got my new wireless network setup today, and the first thing I
>did was
>enable wep, turn off broadcasting, and make sure it didn't accept
>ssid
>"any".  So, I'm fooling around with it, and it's working great.  I
>installed
>netstumbler just to make sure I couldn't find my ap like that.
>Mine didn't
>show up, which is good, but I found 2 others.  One seems to be
>protected,
>but one of them is totally open.  I can get an ip and get online 
etc.
>
>Is there any way to find out who they are??  I need to help this guy
>get his
>network buttoned down.  I'm getting full strength signals.  There
>are no
>shared drives that I can find, and no shared printers (so I can't
>leave a
>file note, or print a note.)   Anyone know any tricks?
>
>Matt
>
>
>
>
>
>majordomo at kclug.org

More information about the Kclug mailing list