I feel like an idiot for asking, but I'm wondering. Like, if someone was parked outside your house, possibly "borrowing" your wireless internet, is it possible that they could also be seeing what you're doing, and possibly hacking?
2007-03-01 18:12:57 · 2 answers · asked by I Like C 1 in Computers & Internet ➔ Internet
Hey, it's how we learn by asking questions and trying for yourself. Yes, if the wireless connection has a broadcasting SSID, no access list or isn't encrypted, its very easily hacked or borrowed. Encryption is crackable especially WEP compared to WPA. But either one can be compromised given time with the right tools. Broadcasting the SSID annouces the presence of an access point making it a lure like moths are to lights. An access list can keep track of MAC addresses which all networking computers must have in order to communicate. This can act as a bouncer would at a dance club or bar. They are fakable, like a fake id is for a bar, but still it delays them.
Regarding if they can see what you're doing or hijack your session, yes. Once they find an access-point, get past encryption or access lists they either try to participate with network communications or save it to play back and decrypt later. When they actively participat, they use a program that allows them to act as an access point or a transparent proxy. Both ways allows them to hijack a session or capture passwords.
To prevent this, it's important to avoid making the accesspoint SSID broadcasted and an access list to prevent unauthorized access, if possible. If at a coffee shop where this isn't practical, encryption such as WPA is your best bet. Furthermore when browsing sites that contain confidential information or entering passwords. Make sure that the address contains a HTTPS not HTTP and you can see a closed pad-lock on the address bar for IE7 or in the lower-right corner in older versions or browsers. Some sits might not have this intially at logon, but send the password encrypted and the later screens are HTTPS. If you see a warning message saying that a certificate is not signed or validated, that can be a red flag. The certificate is digitally signed by a third-party called a root authority. They keep a list of secure sites and their signature verifies the site's identity.
However, some sites don't have a signed certifcate, and this is where you need to use best judgement. When you browse in unsecured sites or unsigned sites, this is where you're most vulnerable. When you're done browsing clean the cache and cookies because some cookies contain passowords or can be used for tracking purposes.
2007-03-04 04:20:36 · answer #1 · answered by Elliot K 4 · 0⤊ 0⤋
at the same time as cracking a prompt safe practices key's particularly of a grey section legally, utilizing someone elses internet without permission is a criminal offense. yet, a google search for for WEP cracking would factor you in proper route, yet no cautioned to succeed in this.
2016-12-05 03:28:04 · answer #2 · answered by ? 4 · 0⤊ 0⤋