[Increasing the security of WEP?]

MaxRabbit, Yeah, a camouflaged elephant is less likely to get shot. But, I'm also unfortunately limited with what I can do as well, so camouflage it is.

555, unfortunately the overall issue is that due to some barcode scanning devices, the network was and has been at WEP for quite a while. Dealing with the fact that the company has no IT budget this fiscal year (and I'm finding out now it also looks like little to none for next fiscal year as well), I'm trying to increase the security doing what I can. The ESSID is already set to not broadcast, but we all know that does next to nothing.

If I could rebuild the entire infrastructure from the ground up, I would, but sadly, that's not an option.

[ALFA USB - R8187 drivers in Ubuntu]

I think I just have issues with wifi in general with Ubuntu. I use my Alfa with a Dell Mini 10v, and the wifi on both sides seems to suck in Ubuntu. No issues at all with Windows, nor OS X with the built in wifi (haven't tried the Alfa, and I need to reinstall OS X). I get issues with connecting, and then issues with staying connected, and probably a few other things I'm forgetting about.

[Holy Smexy! I found hacking videos Hak5 just cannot outdo.....]

O-S-X

I used to say O-S-X until I was schooled. Joys of a Winders guy getting into the Apple side of the house a little bit..

[Episode 6x08]

Looking forward to watching the episode. I'm a very inactive ham, and packet radio was something that always fascinated me in the past. Voice communications is great and all, but I'm a data nut.

[Increasing the security of WEP?]

Honestly, though, none of these steps that involve still using WEP are gonna make you any more secure. If a hacker is looking at cracking your network, he's probably in Backtrack 3. It would take him only, what, 30 seconds more to find out what MAC adresses and IP adresses are authorized on your network by sniffing it...

I don't disagree, although I'm not in total agreement either. WEP is inherently insecure, we know that. But, if it's on a separate and more locked down network, the potential damage points can be minimized.

That said, I still have more research to do. The only thing that would truly make it secure involves pulling power cables. :)

[Holy Smexy! I found hacking videos Hak5 just cannot outdo.....]

I glanced quickly at the video, looked annoying, said to hell with it, and went back to work.

[Increasing the security of WEP?]

Because of the devices, VPN'ing isn't easy. But, it sounds like we're going to be looking very seriously at implementing a hybrid of the suggestions here. Going to be a pain in the arse, and I need to get my duff back down here again to do it, but it sounds like fun. :)

[DefCon las vegas]

I'm itching to go one of these years. I'm a relative n00b in the security area though, so lots of learning. I understand a lot of what I hear talked about, but a lot will give you some blank stares or a goofy expression. :D

[iPhone]

That is quite the failure....

Indeed.

I'm almost tempted to go back to a Windows Mobile phone when I get a new phone (not sure when that will be yet though)..

That said, I have mine syncing with an Exchange 2007 server without issues, but I'm exempted from some of the policies.

[Episode 6x07]

I gotta admit, I liked the single topic show. Maybe not something for every show, but definitely liked the in depth aspect of it. Probably going to have to watch it again though when I can pay more attention to it.

[Increasing the security of WEP?]

Oops. Meant to leave out that they're barcode scanners, but that's exactly what they are. I'm not sure who the manufacturer is though, but according to the guy down there who knows them, they are DR-DOS-based.

Not sure on the feasibility of that approach, but I am going to investigate it. I'm all for locking it down, but I need to find out how many scanners I'm looking at, as well as how many laptops (since I know they are all using the wireless as well).

[Increasing the security of WEP?]

Thanks for the suggestions!

VPN is probably not an option. Based on what I am reading, the devices that are restricted to WEP don't support anything like that. Obviously for the laptops that use the same network, this is not an issue.

I'm going to have to look into the AP's and VLAN'ing them though and putting them on a DMZ. I believe most of the switches (if not all of them) are Cisco, so it's just a matter of dusting off the Cisco skills.

A mental note I'm going to have to check on too is to see if the AP's are plugged into anything that would make VLAN'ing difficult. Going to have to dust off my knowledge on VLAN's too.

[Increasing the security of WEP?]

Got an issue I'm trying to develop a potential solution to.

A client has a rather large wifi network at one of their production facilities. The problem we're facing is that it's WEP-based, and due to certain wireless devices, can apparently only be WEP. It's also a single network across the board, no DMZ's or anything.

Knowing that WEP is fairly easy to crack, is there anything that can be done to increase the security? This would have to be no cost at the moment as there is no budget for new hardware. I'm already planning on advising them to look into new scanners that can support at least WPA, but that wouldn't be for another six months until the new fiscal year.

The AP's are Cisco 1200's too.

Thanks!

[What Linux desktop environment does the HAK.5 community use?]

Whatever it is that is installed with ubuntu by default (Gnome I think). I prefer Fluxbox though, but since I don't use Linux regularly, I haven't bothered to set it up.

[Enterprise antivirus]

I've recently moved away from Sophos and opted for Vipre Enterprise.

Never heard of Vipre. I may have to do some research and see how they stack up against others.

One product I liked is eEye's Blink as well. I've run into issues with it though which is why I don't use it.

[Ever wonder why large computer corps back linux??]

I see a lot of resistance to cloud computing though. It's hyped up to be the next big thing, and everything may indeed be going that route, but there's still quite a bit of resistance. I am not one in favor of cloud computing, but I do see a lot of things going that route.

[Random generic rant mode]

Gotta get it off your chest at some point.. Better to let it out than to let it pressure cook inside ya.

[Enterprise antivirus]

Echo'ing others, I hate Symantec, but their SAV/SEP products are decent. (SEP = Symantec Endpoint Protection.)

As far as a 250 computer deployment, SEP can easily handle it. There's a lot of changes though between SAV and SEP, and I haven't really kept up on all of them.

Supposedly there's some new stuff coming down the road that is supposed to be a game changer...we'll see.

[Random generic rant mode]

Saying sorry to hear that doesn't sound like enough. All I can say is that I feel your pain (been there, done that, all that jazz) and that I hope you find a job sooner rather than later. It's the same bullshit here in the States..

[LCD hacking - Where to begin?]

I had it ripped apart and found quite a bit of information (ask me where I put it though). It looks like it is serial port-based. Unfortunately, I'm not in a position to tear the box apart for a bit to dig further into it.

As far as what I want to display, well, anything other than "Symantec" on it is ideal at this point.. :)

[Ever wonder why large computer corps back linux??]

Now come on, Linux is good but for an actual desktop OS its still pretty crap. Especially in enterprise usage, I've still not seen anything as good as Active Directory/Exchange combination from the linux world. Windows or OSX are still better OS's for most people.

This. The AD/Exchange combo makes Microsoft a dominating force. That's not to say that Apple and Linux aren't going to get there, but the integration is a big deal to a lot of companies, both big and small, especially when you start looking at an IP perspective and some of the DRM capabilities offered by AD/Exchange. Unfortunately, you pay for it one way or another, and the same is true of OS X-based or even Linux-based networks. It's just the way it is.

That said, most of the end-users for the company I am contracted to are obliviots. They truly are oblivious idiots. They can barely handle Windows XP, I would dread the idea of having to retrain them for the differences in a Linux-based distro such as Ubuntu, or even OS X.

But, at the end of the day, I have to agree with what others have said with companies such as Dell and IBM backing Linux. It makes sense, especially in a day and age where people want alternatives to everything.

[room362]

Getting the same thing here. I was just there the other day too. :(

[LCD hacking - Where to begin?]

Okay, doing some further research, it looks like it is serial, and I can do what I want to do. Just need to figure out how to get lcdproc on there, but that's something for next week.

Thanks!

[LCD hacking - Where to begin?]

Okay, so I'm being a noob here. Would I expect to find the controller chip with the LCD itself? I'm assuming so. In which case, I see a couple of different chips, but I ssupect the bigger one is the one I want. I'll do some Googling and see what I can find based on the numbers. I do know there is a six pin jumper pad that wasn't being used, but knowing that the *nix variant Symantec uses for their products was able to control it, I would figure I could somehow control it as well.

Thanks!

[LCD hacking - Where to begin?]

Okay, so I have a Symantec Network Security 7160 appliance. It no longer is running as it was designed, but rather I'm going to be turning it into an ESXi box for a lab (have it installed, just need to get some VM's on it).

One of the things it has is an LCD panel on the front. I'm already tired of looking at it saying Symantec on it... With that said, I'm looking to see where to even begin to get it to display something different.

Anyone got some pointers? Please?

Thanks!