[MLB-WIRELESS] /dev/random WEP Keygen webpage

Steven Haigh netwiz at optusnet.com.au
Thu May 8 19:25:10 EST 2003


Actually, I'll use this exact point to remind people of the stupidity of 
using phone banking on *cordless phones*...

I have listened to many cordless phone conversations while setting my 
scanning reciever to wander for local radio transmissions... The scanner 
I have will automatically decode any DTMF codes transmitted...

Most older and cheap phones run on 30.075Mhz -> 30.350Mhz using FM with 
zero encryption... Now imagine what happens when you dial up Netbank or 
something similar on your cordless phone... My receiver sits there and I 
can hear "Please enter your account number BEEP BEEP BEEP BEEP......" 
and numbers start appearing on my screen.....

Suprisingly, people are shocked to hear this kind of information.

Out of this, I make 3 recommendations.

1) Always buy a Spread Spectrum cordless phone - these are a lot harder 
to listen to - impossible with the limited equipment I have.
2) Don't buy these new "super-phones" with advertised 25km range - 
you're simply letting yourself be heard by everyone in the 25km range 
(technically, these phones are illegal in Australia anyhow)
3) If you need to use Netbank, use a wired phone - the chances of being 
intercepted that way is virtually zero.

Ben Grech wrote:

>----- Original Message -----
>From: "Grant Diffey" <nevyn-wlan at artificial-stupidity.net>
>
>  
>
>>Using a webpage to generate your wep key is just such a
>>mind boglingly stupid idea it's difficult to know where
>>start.
>>    
>>
>
>I'll start here: ever used phone banking? YOU HAVE?!? But don't you realise
>how easy it is for someone to hook up a DTMF decoder to your phone line?
>
>So why do millions of people use phone banking if it's so vulnerable?
>Because it isn't. The chances of someone getting privileged information this
>way, and then actually ripping you off with it, are about a million to one.
>Similar to the chances of someone intercepting your web generated wep key,
>finding where you live, and leeching your entire pr0n collection, actually.
>
>
>To unsubscribe: send mail to majordomo at wireless.org.au
>with "unsubscribe melbwireless" in the body of the message
>  
>

-- 
Signed,
Steven Haigh
http://wireless.org.au
(Visit https://wireless.org.au to install our Root Certificate.)

You can lead a fool to wisdom but you can't make him think.
We have enough youth. What we need is a fountain of smart.
Egotism is the anesthetic that dulls the pain of stupidity.



To unsubscribe: send mail to majordomo at wireless.org.au
with "unsubscribe melbwireless" in the body of the message



More information about the Melbwireless mailing list