Rogue Access Points Flashcards
1
Q
Rogue access points
A
- A significant potential backdoor
- Huge security concerns
- Very easy to plug in a wireless AP
- Or enable wireless sharing in your OS
- Schedule a periodic survey
- Walk around your building/campus
- Use third-party tools / WiFi Pineapple
• Consider using 802.1X (Network Access Control)
• You must authenticate, regardless of connection
type
• Enable port security, limit MAC addresses per port
2
Q
Wireless evil twins
A
- Buy a wireless access point
- Less than $100 US
• Configure it exactly the same way as an existing
network
• Same SSID and security settings
- Overpower the existing access points
- May not require the same physical location
- WiFi hotspots are easy to fool
- And they’re wide open
- You encrypt your communication, right?
- Use HTTPS and a VPN