HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 36 guests and 1 member online
EH-Net Donations

Enter Amount:
$
EH-Net News Feeds
Latest Additions
Google Ads
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Wirelessarrow Securing MIFIs
EH-Net
March 16, 2010, 03:09:49 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Securing MIFIs  (Read 1095 times)
0 Members and 1 Guest are viewing this topic.
hgrantham
Newbie
*
Offline Offline

Posts: 2


View Profile
« on: February 07, 2010, 08:48:34 AM »
What is the best way to secure the MIFI wireless?
Logged
dalepearson
Sr. Member
****
Offline Offline

Posts: 347


View Profile WWW
« Reply #1 on: February 08, 2010, 03:19:24 AM »
Be interested to hear from anyone on this, and what MIFI device they are using.

I have been considering getting a MIFI device of some sort in the future when I change phones.

Look forward to the info.
Logged
:: Security Active :: & :: Blog ::
unsupported
Sr. Member
****
Offline Offline

Posts: 296


Unofficial Newbie Moderator


View Profile
« Reply #2 on: February 08, 2010, 05:57:20 AM »
Make sure you are not using Verizon Wireless' MIFI device, http://www.engadget.com/2010/01/18/novatels-mifi-devices-shown-to-be-incredibly-useful-easily-hac/.  They are releasing a patch, but it is still scary.

In regards to actual security, I would be just as scared to connect to the MIFI point, as any wireless network.  I believe some of the same measures would be able to provide security.

For example, using openVPN (encryption) to connect back to a VPN server for surfing.  Disabling the SSID (trivial security through obfuscation), using a strong authentication algorithm to MIFI point, carry your very own faraday cage.
Logged
-Un
CISSP, GCIH, C|EH, Sec+, Net+, MCP
Otter
Newbie
*
Offline Offline

Posts: 41


View Profile
« Reply #3 on: February 08, 2010, 09:44:52 AM »
I've now seen 2 hacks for the mifi. 

First is one against the pre-set  WPA-TKIP PSK's that are based on the mac address of the access point, and have limited entropy.    That one is something you can completely mitigate by doing the usual smart thing of changing your SSID to something unique (for which no one is likely to have precomputed PSK hashes lying around cn their hard drive), and setting a strong, long, random pre-shared key.  For bonus points, strengthening your config with WPA2-AES vs the default WPA-TKIP gives and extra cushion.

As for the admin interaface hack linked earlier, that one is going to require a firmware update, best I can tell once they come out.  NoScript would be well advised of course, but even it won't be complete protection. 

I need to get more familiar with the admin interface hack before saying much more though.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.11 | SMF © 2006-2009, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.033 seconds with 24 queries.
 
Polls
Best Career Move in 2010:
 
Support EH-Net

eh-net_amazonstore.jpg
Help Support EH-Net with Our Amazon Store

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2010 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.