endellion.me.uk

Navigate This Site

• the virus pages
• the rogue wireless pages
• the useless information pages
• the gratuitous network pages
• Photo Albums
• Personalised Virus Removal

 

Pick Your User:

• Amy
• Poppy
• Grant
• Sean
• Mark
• Hayley
• Gavin
• Joanne
• Dave
• Jason
• Joshua
• Adrian
• VoIP (ok this is a protocol, not a user)
• Major Wireless Refit
• Man in the Middle

 

• Related Links

This way it is possible to change the overall length of the post from the ground without any fussing about. In case of high weather, as we've been having lately.

On the left: the post at full height; on the right: storm-induced reduction.

The next issue was which router to connect this up to. The Thomson Speedtouch kindly supplied by Be* has no facility for changing/adding antennas, so the little Asus router had to be taken off our network to do this job. Poor thing has to be in a room by itself because the 10m cable connected to the antenna is not long enough to reach the study/server room. Here's a picture of the poor thing, all lonesome among the carpet remnants, brooms, badly painted floor boards and stepladders.

And here's where the other end goes (it's the grey cable somewhere on the right):

Apart from changing the IP address of the Asus, nothing was changed. The BeBox was pressed into action on our own network, and is so far holding out with WPA which didn't seem to be its strong point. It has only needed one reboot in about a fortnight, and in retrospect even that might have been avoidable.

After having everything in place, it was a matter of waiting for connections to be made to the Access Point. This didn't take long, and they are coming from a lot further away now. I plan to walk the area with the PDA, but so far have been too lazy to do any exhaustive plotting.

More people connecting means more interesting packets. Unfortunately the vast majority of connecters are student types who want to "work" i.e. vomit on their myspace page and who think email and hotmail are synonyms. The most interesting addition so far has been a VoIP user. I had banned all UDP packets since they were mainly sent to establish connections with other P2P applications for the benefit of illegal filesharing (if only they downloaded interesting stuff but students nowadays only like horrible music by the looks of things...). But when I noticed someone connecting and sending SIP packets which went unanswered, I removed the UDP block to see what these were, never even having heard of SIP. A bit of web-searching later I knew what it was, and how to capture them using Cain. In retrospect Wireshark alone would have sufficed, but Cain adds a lot of features to the automatic interception, like all clear-text passwords, so I'm sticking with it. Slowly a folder is filling with intercepted telephone conversations that can easily be played with VLC media player, for instance. Wireshark will also produce nice little graphs and whatnot.

The most amazing thing about this person with with X-Lite softphone on their Laptop using someone else's AP is that they are actually in the market for selling hardware PBX machines. I would have thought that this, of all people, would be someone who is familiar with the insecurities of the protocol and hence either use a secure channel (but I am working on mitm) or buy your own bloody internet! Anyway, I get his VoIP calls. He was burgled, apparently. I know who he is insured with. I know where he lives. I know where he works. And I even know the admin password for his PBX system he is trying the sell to the public. What a loser. They are hoping to gain a big contract soon with a major national organization (~3000 extensions), and they log in to the PBX admin in clear text over someone else's line they haven't got permission to use. Un-real.