[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Wireless access points

To: sbernard@xxxxxxx
Subject: Re: [Full-disclosure] Wireless access points
From: neil davis <rg.viza@xxxxxxxxx>
Date: Tue, 06 Jun 2006 10:00:47 -0400

They aren't always accurate. Our load balancer gets ID'd as a D-Link WAP
every time it's scanned. The idiots call us and tell us we have a WAP in
our network every month. Same scan tool, same idiots, same IP. The
scanners are a great tool, but you need to use them intelligently and
take it all with a grain of salt.

They are fairly accurate but not perfect.

On Tue, 2006-05-16 at 17:37 -0400, sbernard@xxxxxxx wrote:
> Most vulnerability scanners have the ability to identify APs on the wired 
> side, although it's primarily done by parsing banners or SNMP.  Nmap has some 
> fingerprints as well.  I've seen wireless security products that purport to 
> have more accurate means for identification, but it's probably just that they 
> concentrated on creating more AP specific fingerprints than Nmap and the like.
> 
> 
> Steve
> 
> ----- Original Message -----
> From: wilder_jeff Wilder <wilder_jeff@xxxxxxx>
> Date: Tuesday, May 16, 2006 4:58 pm
> Subject: [Full-disclosure] Wireless access points
> 
> > 
> > Is anyone aware of a method to scan your network for wireless 
> > devices using 
> > the ethernet side of the device rather then the wireless?   I have 
> > a remote 
> > location that I need to scan for wireless deivces and am looking 
> > for a 
> > method execute them remotely.
> > 
> > 
> > any ideas?
> > 
> > -Jeff
> > 
> > 
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> > 
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] Is your security 6/6/6 ready?
Next by Date: Re: [Full-disclosure] Re: blocking tor is not the right way forward. It may just be the right way backward.
Previous by thread: [Full-disclosure] [SECURITY] [DSA 1090-1] New spamassassin packages fix remote command execution
Next by thread: [Full-disclosure] WH'06 Call for papers
Index(es):
- Date
- Thread