Not to go all ITG here, but if some creepy neighbor picks up my 4 year old and kisses them on the lips, I'm not gonna call the cops because I'm gonna be too busy trying to make the guy spit out teeth. You picked up my child and kissed them on the mouth *right in front of me*! How farking stupid are you? I might have to do some time in jail if I get a bad jury, but you are the one who is going to be eating nothing but oatmeal and soup for the rest of your life.

Bigdogdaddy: Sounds like this guy needs locked up MUCH longer than 18 years just becasue he will always be a danger to society.

Can't you spell "becuause"?

Bigdogdaddy: Sounds like this guy needs locked up MUCH longer than 18 years just becasue he will always be a danger to society.

This is why, no matter which encryption you use, you should ALWAYS use a MAC address filter.

The six dumbest ways to secure a wireless LAN (new window)

moothemagiccow: Good thing we're all posting tips and how to more successfully harass our neighbors

So I'm not the only one who noticed that...

/and I'll bet I'm not the only one taking notes

Krusty_the_Barbarian: You think it's difficult to change the MAC address your wireless card transmits on?
Oh it's quite easy to change your MAC. But how easy is it to guess the MAC addresses that are set into the WAP's MAC filter? What Ed was refferring to is a filter set on the WAP that only allows connections to pre-approved MAC addresses. You would have to break into the house or do some deep packet sniffing to get the MAC addresses that he has set into the WAP.

Its hardly deep packet sniffing, as I understand it the MAC ID is included in plain text in every packet. It may keep out someone who has never heard of MAC filtering and doesn't know how to use Google.

Come to think of it MAC filtering is counter-productive, it forces an attacker to make their device look exactly like one of your own. So if you look at the logs you won't see the attacker's PC as a new device. Just a known device logging in at an unexpected time.

Seems a bit stale to me.

UNFATHOMABLE PSYCHIC DAMAGE. Unfathomable. Can not be fathomed. And it happens... psychically.

Why is this man going to jail for thought crime?

mjl: Krusty_the_Barbarian: You think it's difficult to change the MAC address your wireless card transmits on?
Oh it's quite easy to change your MAC. But how easy is it to guess the MAC addresses that are set into the WAP's MAC filter? What Ed was refferring to is a filter set on the WAP that only allows connections to pre-approved MAC addresses. You would have to break into the house or do some deep packet sniffing to get the MAC addresses that he has set into the WAP.

Its hardly deep packet sniffing, as I understand it the MAC ID is included in plain text in every packet. It may keep out someone who has never heard of MAC filtering and doesn't know how to use Google.

Come to think of it MAC filtering is counter-productive, it forces an attacker to make their device look exactly like one of your own. So if you look at the logs you won't see the attacker's PC as a new device. Just a known device logging in at an unexpected time.

Granted it is just another weak fence. But this assumes that one isn't checking the logs and keeping devices connected 24/7.

If we're getting all paranoid, use an ethernet cable to connect everything. Then put some carpet samples over the ethernet cables so no one can see them.

^{/Security Expert}

moothemagiccow: Good thing we're all posting tips and how to more successfully harass our neighbors

It's hilarious - one idiot thought he couldn't be caught, gets caught, gets 18 years in prison, now we have a thread full of idiots discussing how not to get caught.

The circle of stupid never ceases.

Downloading cracking software from the net != computer hacking skills.

Weaver95: Thou Shalt Not Hack From Home. Nor shalt thou hack thy neighbors, nor thy friends. Thou shalt not hack whilst angry, lest ye maketh Mistakes and attract the Daemons of Misfortune down upon Thy Heads.

A reading from the Book of Hacking, here endth the lesson.
Srsly. Dude's giving hackers a bad name.

dahmers love zombie: He did everything EXCEPT spoof his MAC address and go through 7 Boxxies? JEsus. If I was going to fark with someone that seriously, I'd be grabbing an old laptop off of Craigslist, changing the MAC every couple of days, keeping the lappy somewhere else. Guy's a total n00b.

Two weeks to crack WEP?? Yeah, definite n00b. This guy wasn't a hacker OR a cracker; he was a freaking script kiddie, and a shiatty one at that. 4chan /b/tards have more "1337" skillz in their little pedo toes than this retard.

He'll get exactly what he deserves in prison.

Ardolf downloaded Wi-Fi hacking software and spent two weeks cracking the Kostolnik's WEP encryption.

For anyone else who uses Google, it takes 30 seconds.

The lesson to take from this is if a pedo kisses your 4 year old son on the lips, you should just shoot his ass.

/kidding
//hope he spends the full 18 years in jail

Krusty_the_Barbarian: You think it's difficult to change the MAC address your wireless card transmits on?
Oh it's quite easy to change your MAC. But how easy is it to guess the MAC addresses that are set into the WAP's MAC filter? What Ed was refferring to is a filter set on the WAP that only allows connections to pre-approved MAC addresses. You would have to break into the house or do some deep packet sniffing to get the MAC addresses that he has set into the WAP.

Those MAC-filters do nothing to deter hackers. Each and every single packet contains the MAC of both the sender and the receiver; it takes longer to type the command to start the sniffer than actually sniffing a valid MAC.

Looks like somebody forgot to spoof his MAC address when using someone elses wifi.

I'm sure that 18 years of prison life will straighten this guy out. Or at least it will provide hundreds of thousands of state dollars to the prison system, which is also a good outcome.

American Decency Association: Cormee: moothemagiccow: Good thing we're all posting tips and how to more successfully harass our neighbors

It's hilarious - one idiot thought he couldn't be caught, gets caught, gets 18 years in prison, now we have a thread full of idiots discussing how not to get caught.

The circle of stupid never ceases.

you both sound like you probably use WEP

the advice above is to help protect against an attack... not formulate one.

I'd bet they're also the type that think that only criminals need to worry about anonymity on the internet.

jaylectricity: Wi-Fi-hacking neighbor sentenced to 18 years

So any love interest he has now will be legal by the time he gets out.

Too old

And this, ladies and gentlemen, is why I put up with wires and keep my WiFi disabled. Call me a luddite if you want, at least my neighbours would find it hard to get on my network.

danny_kay: Okay, let's just say I finally got my wireless network running yesterday, and now I'm askeered that my neighbors will upload horse pr0n to my computer.

It uses WPS/WPA2, and I'm using the MAC address filters, which apparently isn't as awesome as I thought.

What else should I do?
Are there any good tutorials on how to be reasonably safe?

Don't let people scare you, just because MAC address filters aren't beatable doesn't mean people are going to go to the excessive lengths required to access your network. If your network isn't an open, unencrypted network that's broadcasting it's SSID a good 99% of all would be stealers aren't going to bother or are unaware of how to do so. If using WEP some bored computer science major might try to access it, but if you use WPA, don't broadcast SSID and filter MAC addresses you're really doing more than enough unless you have damn good reason to assume an attack.
/And if you really, truly believe someone has the time, knowhow and intent to do all of this with significant ill effect you probably shouldn't be using WiFi, because you're apparently the FBI
//Besides, not like you got much to worry about. Worst case, free horse porn.

He reeled off a list of recent prison sentences he'd read about in the paper - including the 10-year sentence meted out to former auto mogul Denny Hecker this year - and said that relatively speaking, his crime wasn't as bad as those of some people sent to prison for terms less than what he was facing.

"I didn't kill anyone," he said.


Well, maybe you SHOULD have!

danny_kay: Okay, let's just say I finally got my wireless network running yesterday, and now I'm askeered that my neighbors will upload horse pr0n to my computer.

It uses WPS/WPA2, and I'm using the MAC address filters, which apparently isn't as awesome as I thought.

What else should I do?
Are there any good tutorials on how to be reasonably safe?

There are only tutorials on how to be safer, but even WPA2 has been cracked, although it takes some serious skillz sets just to do that. As long as your default PW on your router isn't "Admin" and "______", and you have changed it to a nice alpha-numeric code, you're now safer than most. A WiFi hacker can't just crack your wireless key and download porn onto your machine, they would have to have access to the network, and if your computer(s) aren't PW protected, then you might have an issue. The problem starts when the haxxor starts downloading the kitty pr0n from your internet connection, and the FBI gets your logs from your service provider; the only thing that will save your ass is when after they break down your door and confiscate your computer(s), and the only pr0n they find is the ordinary legal kind, and then laugh at you for the midget tranny folder, and then start looking at your neighbors. This has happened before.

in addition to normal protections, turn off the broadcasting of your signal ID, and most of your problems will be solved right there. Only the most sophisticated pirates would even bother to attack you at that point, in which case they are in it just for the challenge, or you have made yourself some serious enemies.

I would bet good money that if a cracker had to choose between a region full of unsecured wifi, a handfull of secured but weak encryptions, one or two strong encrypted signals, and then you as the one odd man out who isn't even broadcasting ID, they'll go with the lazy options first.

Really, the only truly secure WiFi is the one that isn't used at all, and goes with hard wires. I only turn mine on for guests, and the rest of the time if I need a connection in the living room, my wife will actually permit the use of the 75' extension cord into the living room; we just roll it up for most of the time.

The more people around you with open access, the better: it makes you less of a target.

dittybopper: deanayer: I switched to WPA from WEP after reading about how vulnerable it was but I don't know how tough WPA is. Is it "unbreakable" - I am not talking about the NSA but to the average mid-level cyber-douche/former script kiddie types.

Go wired and just don't worry about it.

^^^ This ^^^

Personally, I don't use any encryption. I have named my SSID "noIP4u" (yes, a soup nazi reference), and I have MAC filtering on. My thought being that spoofing a specific MAC address to get into my network would be more difficult than cracking a password... can't wait to hear how wrong I am from all of the genius farkers out there, but that's my approach.

The parents of that boy figured out the neighbor was a pedophile.
If you walked up to some random adult and kissed them on the lips it would be sexual battery. NO farkING WAY do you do it to a kid.

He was guilty as sin; the only problem was the "letter of the law" requires some evidence for the judge, and something to get the cops looking at his computer.
All this guy did was supply the necessary items to get this child molester off the streets!
WTF is wrong with this judge? The DA should have followed the evidence that was given to him and the judge should have thrown this twisto in the general population with a short-eyes tattoo on his forehead.

Weaver95: Thou Shalt Not Hack From Home. Nor shalt thou hack thy neighbors, nor thy friends. Thou shalt not hack whilst angry, lest ye maketh Mistakes and attract the Daemons of Misfortune down upon Thy Heads.

A reading from the Book of Hacking, here endth the lesson.

THIS

deanayer: I switched to WPA from WEP after reading about how vulnerable it was but I don't know how tough WPA is. Is it "unbreakable" - I am not talking about the NSA but to the average mid-level cyber-douche/former script kiddie types.

I'd tell ya, but my copy of Cracking WPA: A Beginner's Guide is still on pre-order :(

TiiiMMMaHHH: Personally, I don't use any encryption. I have named my SSID "noIP4u" (yes, a soup nazi reference), and I have MAC filtering on. My thought being that spoofing a specific MAC address to get into my network would be more difficult than cracking a password... can't wait to hear how wrong I am from all of the genius farkers out there, but that's my approach.

rather than just tell you as a farker figured I'd send you a link

http://ask-leo.com/is_mac_address_filtering_a_viable_wireless_security_option.h t ml


/work in enterprise IT security
//working on an MCITP and CISSP

Grass Hopper: And this, ladies and gentlemen, is why I put up with wires and keep my WiFi disabled. Call me a luddite if you want, at least my neighbours would find it hard to get on my network.

You're not a luddite. You just understand the limits and uses for wireless

in case you don't like the leo guy here is another page

http://www.zdnet.com/blog/ou/the-six-dumbest-ways-to-secure-a-wireless-lan/43

missingpluto: We used Backtrack in my computer forensics courses in college to learn, but even then we didn't know anything.

Everyone thinks, "BUT THIS IS THE INTERWEBZ, EVERYTIN IS ANONYMOUS1!1"

THIS the internet is not anonymous anymore. Piss the wrong people off and they will find you, all it takes is time and resources.

Law enforcement is trying to push a bill through to requiring all ISP to keep connection logs for longer than 30 days/business reasons. Logs don't take up a lot of space, mass storage is cheap if you go with slow drives (tiered storage with SANs is very handy) then archive to tape. IP6 will take way the need for ISPs using DHCP to peoples' home routers so that bit of ambiguity goes away.

Throw in cash and capital controls we will be well on our way to perdition. (sorry for my pet rant)

The plus side, LEOs and defense attorneys now understand enough to check and see if someone hacked your router and computer. So claims that you system was hacked cannot be dismissed or ignored.

Was the router set to 'Linksys' with no password/encryption?

/DNRTFA