how do i know if my bb is being stolen?

LegacyUser

i've 1mgb ntl BB. i'm using a wireless router.

my connection speeds are always slow, usualy under 500 kbps.

how do i know if my bb is being stolen?

thanks.

btkm8unsl0w5r4

Using the configuration address of your router check the DHCP table for addresses other than yours. Start to log. Turn on security the simplist way is a mac address filter

NiSmO

This post has been deleted.

LegacyUser

Zeke Polite Panacea wrote:

Using the configuration address of your router check the DHCP table for addresses other than yours. Start to log. Turn on security the simplist way is a mac address filter

there's no configuration address on my router.

not sure where the manual is......

is there any other way i can find it out?

LegacyUser

NiSmO wrote:

This post has been deleted.

not netgear, not sure what it is, just says NTL on it

paulm17781

stp wrote:

not netgear, not sure what it is, just says NTL on it

The wireless router???

The wireless one is where the BB could be getting stolen from so that is the one you need to look at.

btkm8unsl0w5r4

Its an NTL wireless router you have.....the manual or the NTL website will have the IP address for the setup menu you need

rymus

stp wrote:

how do i know if my bb is being stolen?

There's a guy or guys sitting outside your house in a car, all using laptops and all wearing big cheeky grins on their faces...

If in doubt, turn on wep

NiSmO

This post has been deleted.

dub45

Any chalk marks on the footpath outside your house?

http://quillszone.tripod.com/warchalk.htm

jay-me

I personaly condone such leeching as i myself leech lol

LegacyUser

paulm17781 wrote:

The wireless router???

The wireless one is where the BB could be getting stolen from so that is the one you need to look at.

sorry, not the wireless router.

LegacyUser

Zeke Polite Panacea wrote:

Its an NTL wireless router you have.....the manual or the NTL website will have the IP address for the setup menu you need

cant find the manual, had a look at their site last night, couldn't find the ip address, i'll have another look.......

LegacyUser

#Elites wrote:

tbh, you could just be a bad connection. i have 1mb and never get over 850kbps..

put a WEP key on to block other people.

if it is indeed, "just a bad connection" why is this? if i'm paying for 1mgb, but rarely get over 500kbps, is this not ntl's fault?

what's a WEP key? and how do i put it on?

Cake Fiend

Can you plug one computer directly into the router (wired) and disconnect the wireless router? Quick way to check. Then google wireless security. Use WPA rather than WEP if your router and card support it (added security).

LegacyUser

Sico wrote:

Can you plug one computer directly into the router (wired) and disconnect the wireless router? Quick way to check. Then google wireless security. Use WPA rather than WEP if your router and card support it (added security).

i'll try that when i get home.

there's no ip number on the non wireless router, it just has NTL on it.

how do i get into the router's admin page? i can't find an ip address anywhere on the NTL site, i guess i'll have to ring them, krap.

Valentia

There are two programmes that I have used. Network Magic is a very easy to use piece of software which scans and displays the people using your network. It is also handy for helping inexperienced ppl to share resources-ptinters, folders etc. Download the trial version. I haven't bought it but I might, just checking if there is other stuff that will allow me to send a 10,000 volt through the air so the leechers know I know.:eek:

Wi-Fi Defense is another prog I'm looking at. Seems to be more powerful than Network Magic. A trial version is also available.

muckwarrior

stp wrote:

couldn't find the ip address, i'll have another look.......

Try 192.168.0.1 or 192.168.1.1

syklops

click start, run, type in "cmd" with out the quotes, and click ok.

when the command prompt appears, type in "ipconfig", this will show your default gateway address.

type that number into your browser and you will get the router frontend. user name is usually admin, password is usually admin, password, default, or something similar.

The website will tell you the model of the router and you can search for it.

When you get inside, there should be a security tab of some form, go through the options and enable wep. And preferably MAC filtering too. Google both these terms for more info.

LegacyUser

thanks lads, i'll give this a go when i get home

rymus

syklops wrote:

user name is usually admin, password is usually admin, password, default, or something similar.

Unless the flock of nerds sitting in a car outside your house have changed it already...

shltter

Don't bother with Mac address filtering as anybody who would be interested in leeching from your connection could easily spoof a mac address
Mac address filtering will only stop someone from accidentally connecting to your network who has no interest in connecting to your network.

Don't bother with WEP either as it is completely crackable if you are going to enable security which you should use WPA-PSK and use a good long password with numbers and letters.

You should enable security because if someone is leechng on your network it is your IP address they are using to download illegal music or worse child porn so it would be your door the Gardai would call to.

LegacyUser

shltter wrote:

Don't bother with WEP either as it is completely crackable if you are going to enable security which you should use WPA-PSK and use a good long password with numbers and letters.

how do i do this?

Krusty_Clown

In order to spoof a MAC address, they would need to capture a valid MAC address, while an authenticated computer or network device is connected to the network (in order to mimic the valic MAC address).

Therefore MAC address filtering is useful, as it would be extremely difficult for a snooper to guess a valid MAC address while you're not there, and have no network devices connected to the network, e.g. while you're at work/college/on holidays, etc. Also there's very little overhead with regard to using MAC address filtering, so why not use it?

WEP is very weak, however, it will keep out 99% of the population of this country, as I would guess that less than 1% of the people in this country would know what do to with a Linux distribution.

As for the remaining 1% who know how to crack WEP, I'd say they're more likely to do it just for kicks (them nerds wearing shades), as more likely than not, they probably have their own broadband provider at home..

To the original poster, as per previous instructions, do a google for your router model, and read the manual. Your contention is 17:1, so maybe there are 17 other NTL users in your locality who like to download movies. Have you tried ringing NTL?

LegacyUser

Krusty_Clown wrote:

Have you tried ringing NTL?

i'd rather not have to, i mentioned the word "wireless" to them before, and they didn't want to know.

syklops

shltter wrote:

Don't bother with Mac address filtering as anybody who would be interested in leeching from your connection could easily spoof a mac address
Mac address filtering will only stop someone from accidentally connecting to your network who has no interest in connecting to your network.

Don't bother with WEP either as it is completely crackable if you are going to enable security which you should use WPA-PSK and use a good long password with numbers and letters.

You should enable security because if someone is leechng on your network it is your IP address they are using to download illegal music or worse child porn so it would be your door the Gardai would call to.

Your not by any chance one of those leechers, sitting outside his house are you? Going on stp's competency, setting up WPA would be a bit difficult for him(no offence stp). So you have told him not to use the things which are easy to set up, and suggested he use something more difficult, and potentially more problematic. Wep is easy to crack but more difficult if Mac filtering is enabled. And if you crack wep, but Mac filtering is enabled but it has no devices connected at that time, then you have to wait for one to connect before you get a valid MAC address.

And as some one has said either wep or MAC filtering will keep out 99% of the population, a combination of the two will stimy about .5% of the rest, and the remaining .5% would be two busy taking out the Tax Office Computers to bother your Net Connection.

bk

syklops wrote:

and the remaining .5% would be two busy taking out the Tax Office Computers to bother your Net Connection.

Or using your BB over your open wireless lan to launch their attack, so that when the very competent security folk at the tax office tracks the attack back to your IP, you get caught rather then them

syklops

Aha! Thats where we will do it from... I mean, er, whats wep?

shltter

syklops wrote:

Your not by any chance one of those leechers, sitting outside his house are you? Going on stp's competency, setting up WPA would be a bit difficult for him(no offence stp). So you have told him not to use the things which are easy to set up, and suggested he use something more difficult, and potentially more problematic. Wep is easy to crack but more difficult if Mac filtering is enabled. And if you crack wep, but Mac filtering is enabled but it has no devices connected at that time, then you have to wait for one to connect before you get a valid MAC address.

And as some one has said either wep or MAC filtering will keep out 99% of the population, a combination of the two will stimy about .5% of the rest, and the remaining .5% would be two busy taking out the Tax Office Computers to bother your Net Connection.

If anyone here is likely to be leeching from this guy it is the people telling him to use WEP and MAC address filtering which are both easy to get around

WPA is not anymore difficult to set up than WEP or MAC address Filtering if anything it is easier than MAC address filtering and it works so if you are going to go to the bother of setting up security set up something that actually works. ie WPA PSK


WEP and MAC address filtering will not keep out anyone that wants to access the network end of story
WPA with a strong password will keep out everyone so why bother with the other two it makes no sense

syklops

shltter wrote:

WEP and MAC address filtering will not keep out anyone that wants to access the network end of story
WPA with a strong password will keep out everyone so why bother with the other two it makes no sense

When you say everyone, you mean 99% of the population. Do me a favour and type "cracking WPA" into google.

root@mybox$ apt-get install coWPAtty

and I was only joking about you being the leech. sorry.

shltter

syklops wrote:

When you say everyone, you mean 99% of the population. Do me a favour and type "cracking WPA" into google.

root@mybox$ apt-get install coWPAtty

and I was only joking about you being the leech. sorry.

Read what I wrote WPA and a strong password


WPA is uncrackable other than brute force on a weak password

Freddie59

stp wrote:

i'll try that when i get home.

there's no ip number on the non wireless router, it just has NTL on it.

how do i get into the router's admin page? i can't find an ip address anywhere on the NTL site, i guess i'll have to ring them, krap.

You might be a little confused. The NTL modem has NTL stamped on it, but the wirelesss router is a completely different looking box. Please see the attached file, which shows the router config screen. Just input into the address bar www.routerlogin.net and it will display this. Look at the left side of the screen and click on wireless settings.

This will bring you to the same screen as the attached file. Select WEP and 128 bit. This will enforce the encryption. While no wireless device can be 100% secure, you should at least have the security switched on.

When you enable the security and generate the key you will have to manually input that key into the receive PC. I've obviously had to erase my key settings from the attached file (!):rolleyes: .

Hope that helps.:)

wheresmybeaver

Hmmm we live in an apartment building in the city centre and I was almost sure that WPA-PSK and MAC filtering was more than enough to keep away even half-determined leechers... But I just googled "cracking WPA" like syklops said, it made interesting reading! gonna change the passphrase to something longer now!

By the way, every now and again (usually late at night), any of us connected to the wireless network suddenly get dropped, and the router has to be plugged out and back in again before any of us can connect again. Could this be a sign of somebody trying to break into the network? It seems similar to a symptom of one of the methods I read about Re cracking WPA...

Dave

bk

wheresmybeaver wrote:

By the way, every now and again (usually late at night), any of us connected to the wireless network suddenly get dropped, and the router has to be plugged out and back in again before any of us can connect again. Could this be a sign of somebody trying to break into the network? It seems similar to a symptom of one of the methods I read about Re cracking WPA...

Very unlikely, there are just too many open wireless lans or wep encrypted lans to bother tryig to crack a WPA one.

wheresmybeaver

bk wrote:

Very unlikely, there are just too many open wireless lans or wep encrypted lans to bother tryig to crack a WPA one.

Well thats just tickity boo!

Cheers

su_dios

bk wrote:

Very unlikely, there are just too many open wireless lans or wep encrypted lans to bother tryig to crack a WPA one.

Couldn't agree more! To be honest I have no sympathy for you if you don't use some kind of encryption on your network. You're broadcasting a signal to all your neighbours and expect them not to use it?

I was setting up my mates laptop during the week and as soon as I turned it on it asked me to select from one of the four wireless connections it had found. None had WPA or WEP protection. Most people I know have access to quite a few wireless networks but there are none within my reach apart from my own. :v:

syklops

bk wrote:

Very unlikely, there are just too many open wireless lans or wep encrypted lans to bother tryig to crack a WPA one.

unless its for fun.

Or you happen to live in an apartment building with no other wireless router in range, and you have no other way of getting internet. A friend of mine could not get IBB and did not want to get a phone line, and the only connection within a pringle cans range was an Eircom wireless AP with Mac filtering and 256-bit WEP. So instead of spending his nights downloading music he spent them trying to crack it.

He now enjoys limitless internet free of charge.

WPA is uncrackable other than brute force on a weak password

the correct phrase would be "WPA is uncrackable other than brute force on a password". If the password is weak it will only take a short time, if its strong it will take a long time but is still possible. And I know the long time could be centuries, but what if the next version of coWPAtty cracks passowrd twice as fast? Or several times faster? What if the person cracking your network also hacks a university and uses their mainframe to attack the hashes?

Nothing is impossible. Be vigilant.

shltter

syklops wrote:

the correct phrase would be "WPA is uncrackable other than brute force on a password". If the password is weak it will only take a short time, if its strong it will take a long time but is still possible. And I know the long time could be centuries, but what if the next version of coWPAtty cracks passowrd twice as fast? Or several times faster? What if the person cracking your network also hacks a university and uses their mainframe to attack the hashes?

Nothing is impossible. Be vigilant.

Yes but I will be long dead and so would the person trying to crack the strong password.
It is odd that you are advising me to be vigilant in regards to WPA based on a couple of what IFs but you advised the OP to use WEP which there are no what ifs about and is crackable in minutes.

bk

syklops wrote:

And I know the long time could be centuries, but what if the next version of coWPAtty cracks passowrd twice as fast?

It would reduce from X hundred of centuries to x / 2 hundred of centuries.

The problem with brute forcing modern encryption is not software or algorithms, rather it is the limits of CPU's and their flosting point processors. Unless you have a Quantum Computer hiden in your bedroom

BTW anyone interested in encryption should read "The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography" by Simon Singh, a fantastic book, that is really interesting without being heavy on maths etc.

Were possible I would always recommend using WPA with a strong password. It is very easy to setup, easier then WEP in fact, unfortunately not all devices (some PDA's, Nintendo DS) don't support WPA and it will slow down the connection.

Krusty_Clown

shltter wrote:

If anyone here is likely to be leeching from this guy it is the people telling him to use WEP and MAC address filtering which are both easy to get around

WPA is not anymore difficult to set up than WEP or MAC address Filtering if anything it is easier than MAC address filtering and it works so if you are going to go to the bother of setting up security set up something that actually works. ie WPA PSK

I'm not advocating WEP and MAC address filtering over WPA PSK (figured that was fairly obvious). What I am advocating is WEP and MAC address filtering over no protection, whatsoever.

WEP and MAC address filtering will not keep out anyone that wants to access the network end of story.

Of course it will keep out your average punter. Don't be scare-mongering. It won't keep out people like you and I, but not everyone is as talented as you and I, are they? :rolleyes:

shltter

Krusty_Clown wrote:

I'm not advocating WEP and MAC address filtering over WPA PSK (figured that was fairly obvious). What I am advocating is WEP and MAC address filtering over no protection, whatsoever.


Of course it will keep out your average punter. Don't be scare-mongering. It won't keep out people like you and I, but not everyone is as talented as you and I, are they? :rolleyes:

Yes I agree that WEP and MAC filtering is better than doing nothing but if WPA is available then it is no more difficult to set up than WEP probably easier and definitely easier than MAC address filtering so my advise was not to bother with them and use WPA.

The other thing is that the person trying to get into your network may not be sitting outside in a car it is just as likely if not more so to be some spotty teenager who lives within the range of your network and has all day to sit there sniffing.

thirdmantackle

just turn off your router when you are not using it??

Simplest solution

dub45

thirdmantackle wrote:

just turn off your router when you are not using it??

Simplest solution

No thats a simplistic solution and useless for people with voip for instance?

Freddie59

bk wrote:

It would reduce from X hundred of centuries to x / 2 hundred of centuries.

The problem with brute forcing modern encryption is not software or algorithms, rather it is the limits of CPU's and their flosting point processors. Unless you have a Quantum Computer hiden in your bedroom

BTW anyone interested in encryption should read "The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography" by Simon Singh, a fantastic book, that is really interesting without being heavy on maths etc.

Were possible I would always recommend using WPA with a strong password. It is very easy to setup, easier then WEP in fact, unfortunately not all devices (some PDA's, Nintendo DS) don't support WPA and it will slow down the connection.

So where are we then BK? I have the NTL Netgear router with WEP deployed on it. Would I be better off going to WPA?

Thanks in advance.:)

shltter

Freddie59 wrote:

So where are we then BK? I have the NTL Netgear router with WEP deployed on it. Would I be better off going to WPA?

Thanks in advance.:)

Yes you would be better off using WPA as people have already mentioned WEP will keep the vast majority of people out. HOwever if someone is really determined WEP can be easily cracked.
If you are changing to WPA use a strong password ( ie not words from a dictionary) use letters numbers and Symbols and at least 20 characters long

Freddie59

shltter wrote:

Yes you would be better off using WPA as people have already mentioned WEP will keep the vast majority of people out. HOwever if someone is really determined WEP can be easily cracked.
If you are changing to WPA use a strong password ( ie not words from a dictionary) use letters numbers and Symbols and at least 20 characters long

Sheeesh! Are things really that bad? Thanks for that.:)

bk

Freddie59 wrote:

So where are we then BK? I have the NTL Netgear router with WEP deployed on it. Would I be better off going to WPA?

Thanks in advance.:)

As long as all the devices (computers/PDA's/etc.) support WPA (some older wireless gear doesn't), then it is a really good idea to use WPA.

Use a good long password, that isn't in any dictionary and includes random number, letters and symbols.

It is actually ok to write your password done as long as you keep it somewhere safe in your house.

ZENER

Has anyone thought to ask HOW the user is measuring his speed ??

If he/she is basing the measurement on what the browser tells them when d/ling then 500K may be all the server is willing to alot. Not every server will allow you 1Mb bandwidth. Someone stealing bandwidth may cause a drop but not a constant one surely.

Try:

http://www.irishisptest.com/myspeed/

and post the results of this here.

Wireless security is obviously important and should be implemented but it may not be the answer to this particular query.

ZEN