Berkeley CSUA MOTD:Entry 41740
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/04/03 [General] UID:1000 Activity:popular
4/3     

2006/2/7 [Computer/Networking] UID:41740 Activity:kinda low
2/6     Here's a security question.  I think my network guy is insane.  We
        have a WiFi connection at work which is set to only allow certain MAC
        addresses, and on top of that it uses WEP.  I have a laptop with WiFi
        which is on our windows domain, but does NOT have the WEP key and its
        MAC is NOT allowed on our WiFi.  Is there a security risk to our
        network if I connect my laptop to a neighbor's open WAP?
        \_ get exploited via neighbor's r00ted box.  bring that shit
        \_ get r00ted via neighbor's r00ted box.  bring that shit
           back to work, connect (wireless, wireless, whatever), boom.
        \_ Home laptops connected to the corporate network are the most common
           virus vector in our company.
        \_ Why did you tell him anything about your neighbor's open WAP?  And
           yes, there is always a security risk moving from one network to
           another.  You hook up to your neighbor's dirty net, get some virus
           then hook up at work and infect everything there skipping most of
           the security in place which is normally designed with external
           threats in mind.  I'm not sure why he lets your laptop on one
           internal net but not the other internal net.  Have you asked him
           to be able to go wireless?  Maybe it isn't technical.  Maybe his
           department charges your department per host and yours hasn't
           coughed up the cash.  Ask.
           \_ The neighbor is a different company.  I'm not on our WiFi for
              different silly reasons.  I want to use the neighbor's WiFi to
              test a server from an expeternal IP.  I am fully patched, using
              a firewall, and not using IE. -op
        \_ Yes there is a risk.  Cracking WEP is not as easy as some people
           make it out to be, but it is pretty easy to catch shit.  We've
           seen some fun trojans around which try various approaches involving
           switching wireless networks.  My question is:  why is the laptop
           on your windows domain if you do not connect it to your local
           network?  If you ever connect that laptop to a fixed newtork
           that is the same as your work's wifi, you are asking for trouble.
           Your network guy is not insane.  Now if the laptop lacking the\
           WEP key is properly secured (firewall, AV, patches, VPN, etc etc)
           then it's no different from connecting via, say, a hotel
           network and you should be fine.  -John
2025/04/03 [General] UID:1000 Activity:popular
4/3     

You may also be interested in these entries...
2012/3/29-6/4 [Computer/HW/Memory, Computer/HW/CPU, Computer/HW/Drives] UID:54351 Activity:nil
3/29    A friend wants a PC (no mac). She doesn't want Dell. Is there a
        good place that can custom build for you (SSD, large RAM, cheap video
        card--no game)?
        \_ As a side note: back in my Cal days more than two decades ago when
           having a 387SX made me the only person with floating-point hardware,
           most machines were custom built.
	...
2011/12/29-2012/2/6 [Computer/Networking, Computer/SW/Security] UID:54277 Activity:nil
12/29   New brute force attack against WPA1/2 base stations based on a flaw
        in WiFi Protected Setup (WPS):
        http://www.kb.cert.org/vuls/id/723755
        http://www.tacnetsol.com/products
        http://sviehb.wordpress.com/2011/12/27/wi-fi-protected-setup-pin-brute-force-vulnerability
	...
2011/9/14-10/25 [Computer/HW/Drives] UID:54173 Activity:nil
9/13    Thanks to Jordan, our disk server is no longer virtualized. Our long
        nightmare of poor IO performance should hopefully be over. Prepare for
        another long nightmare of poor hardware reliability!
        ...
        Just kidding! (I hope)
        In any case, this means that cooler was taken out back and shot, and
	...
2011/5/9-7/13 [Computer/Companies/Apple, Computer/SW/OS/OsX] UID:54106 Activity:nil
5/4     Any thoughts about apple switching to ARM for all machines?
        \_ Could only have happened if the Mac App Store had been a wild, wild
           success, and they were willing to give up Steam. Games/dual-booting
           is strategically valuable to not driving people away from macs.
           A new ARM iOS based device, or opening the Apple TV to iOS apps
           (same thing, really) would be much more likely than sabotaging their
	...