Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
Am i right in thinking, my wireless connection at home doesnt have any security, so someone could walk up to the house with a wireless laptop, and view any files that happen to be shared over the network?
e.g if i have sage installed on one main PC, and i have to allow 2 other PCs to access that PC, that someone couldview that?
Adam
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
depends, if its got a password or not
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
if what has a password?
I know there is no security password on the wireless connection.
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
when you add computers dont you have a really long code to type in to each device that wants to connect?
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
for what???? lol
Sage? no.
The router? no.
|
Cybermonkey
Member
Registered: 22nd Sep 02
Location: Sydney, Australia
User status: Offline
|
depends if you are WIP'd up
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
??? talk english lol
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
the router has DCHP enabled i reckon.
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
jesus christ, you kids, why waste money on wireless technology if your thick
do you have a network key aka WPA or WEP key?
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
quote: Originally posted by Bart
the router has DCHP enabled i reckon.
thats nice
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
If they join your network, and you have shares, of course they can.
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
i think there is a chance there might be a WEP key, but i do know i dont have to enter the key in order to connect to the router in order to go on the net.
Its not actually my network, is someone else, and he does have sage on the PCs, and 3/4 other PCs use that main sage PC as the server.
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
Where does he live
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
quote: Originally posted by Ian
If they join your network, and you have shares, of course they can.
bloody hell... someone who can just answer the questions... thanks lol.
thats what i thought.
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
well its fuckin obvious!
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
yeah, i just wanted to be 100% sure before i tell him that the professional company he paid to do that for him wants lining up against a wall shooting.
|
Russ
Member
Registered: 14th Mar 04
Location: Armchair
User status: Offline
|
oh lol
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
The router has DHCP enabled, so your guy parked outside gets assigned an address.
He then runs a sweep of pings on the subnet which he's been assigned to look for other computers, or he might not even need to do that if he gets number 5. Just try 4,3,2,1.
He goes opens a the c$ UNC share and logs on as administrator with no password and has a root around the whole hard drive. Quick look around Documents and Settings get some cookies / Outlook dbx files so he can take the file and read your mail offline and take his time over it. Hopefully in the mail are other passwords to other services etc.
Maybe download My Documents if it looks interesting etc.
This is happening as quick as you're reading this as well, woudn't take long.
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
ps. I'm assuming default configs here, it might not be that easy.
I would do a proper audit before coming to any conclusions about the company who did it.
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
audit as in check what?
i know there is no network security for the wireless.
im off there in a min. if i can connect to any accounts computers then im gonna let him know
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
Just run a few checks, basically try what I just posted.
|
Bart
Member
Registered: 19th Aug 02
Location: Midsomer Norton, Bristol Avon
User status: Offline
|
never used/looked at the unc thing.
i just had a quick google at it, and talks about using it in dos.
but ive never tried anything like it.
Is there some quick commands i cant try?
|
Ian
Site Administrator
Registered: 28th Aug 99
Location: Liverpool
User status: Online
|
Start -> Run
\\192.168.0.2\c$
replace the 2 with whatever machine you want to look at. Might also be like
\\10.0.0.2
\\10.0.0.4
whatever.
If you join the laptop and it acquires a DHCP address, do a Start -> Run -> cmd on that and type ipconfig
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
IP Address. . . . . . . . . . . . : 192.168.0.2
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
The 2 is your own address, the 1 is the gateway, your target machines will probably be in the middle of those two numbers as you're last to arrive.
|