Вопрос. Что вы можете рассказать о так называемом "вочокинге" (от англ. warchalking)?
Ответ. Этот термин означает нанесение мелом специальных знаков на тротуарах около зданий офисов. Такие отметки сигнализируют взломщикам о наличии поблизости беспроводных сетей.
Перехват (interception) возможен и во время действительного сеанса связи. Такой тип атаки лучше всего подходит для захвата интерактивного трафика типа telnet. В этом случае взломщик должен находиться в том же сегменте сети, где расположены клиент и сервер. Злоумышленник ждет, когда легальный пользователь откроет сессию на сервере, а затем с помощью специализированного программного обеспечения занимает сессию уже в процессе работы. Взломщик получает на сервере те же привилегии, что и пользователь.
Рис. 2.4. При перехвате используется неправильная информация о разрешении имени
Примечание
Перехват более опасен, чем прослушивание, он означает направленную атаку против человека или организации.
http://www.intuit.ru/department/security/netsec/2/2.html
Question to expert.
ОтветитьУдалитьQuestion. What can you tell about the so-called "warchalking" (from the English. Warchalking)?
Answer. This term means drawing by a chalk of special signs on sidewalks near buildings of offices. Such marks signal intruders about presence nearby wireless networks.
Interception is possible and during the valid communication session. Such type of attack is better suited for capture of the interactive traffic of type telnet. In this case the intruder should be in the same segment of a network where are located the client and server. The intruders waits, when the legal user will open session on a server, and then by means of the specialised software occupies session already in the course of work. Intruder on the server receives the same privileges as the user.
Fig.2.4 At interception the wrong information about name permission is used.
Note. Interception is more dangerous, than listening, it means the directed attack against the person or the organisation.
What can you say about so-called «warchalking»?
ОтветитьУдалитьThis term means drawing of special marks of chalk on sidewalk near office building.
These marks signal hackers about presence of nearby wireless networks.
Interception is possible during the real communication session.
This type of attack is better for capture interactive traffic like telnet.
In this case, the hacker must be in the same network segment, where the client and server.
The intruder waits for the legal user will open the session on the server, after with help specialized software occupies the session is already in process of work.
Intruder gets from server privileges like user.
Wrong information about premission of name are uses when interception.
Interception is more dangerous than listening, it means an attack directed against a person or organization.
What can you say about the so-called «warchalking»?
ОтветитьУдалитьThis term means the application of special markings in chalk on the sidewalk near the office building.
These signs hackers signal the presence of nearby wireless networks.
Interception is possible in real communication session.
This type of attack is better to capture the interactive traffic such as Telnet.
In this case, the hacker must be within the same network segment, where the client and server.
Violators waiting for the legal user opens a session to the server, after using specialized software is already in session work.
Intruder gets from the server privileges as the user.
Misinformation about the name resolution is used for the interception.
Interception is more dangerous than listening, it means an attack directed against a person or organization.
Question to expert
ОтветитьУдалитьQuestion. What can you tell about the so-called "Warchalking" (English "Warchalking")?
Answer. This term means drawing of special signs on sidewalks near the office buildings. Such signs show the presence of wireless networks to the hackers.
Interception (interception) is also possible during the actual communication session. This type of attack is best suited to capture interactive traffic like telnet. In this case, the hacker must be in the same network segment, where the client and server are. The hacker waits for the legitimate user open the session on the server, and then takes the already working session with specialized software. Hacker gets all user's rights.
Fig. 2.4. Hacker uses wrong information about name's permissions.
Note
Interception is more dangerous than sniffing, it means a directed attack against a person or organization.
Question to the expert.
ОтветитьУдалитьQuestion. What can you tell about warchalking?
The answer. This term means drawing by a chalk of special signs on sidewalks near buildings of offices.
Such marks signal of intruders about presence nearby wireless networks.
Interception is possible and during the valid communication session.
Such type of attack is better suitable for capture of the interactive traffic of type telnet.
In this case the intruder should be in the same segment of a network where are located the client and a server.
The intruder waits, when the legal user will open session on a server, and then by means of the specialised software occupies session already in the course of work.
The intruder receives on a server the same privileges as the user.
The note.
Interception is more dangerous, than listening, it means the directed attack against the person or the organisation.
Р.Качин
ОтветитьУдалитьWhat can you tell about Warchalking?
This term is the drawing by chalk of special markings on sidewalks near the buildings of offices. Such marks signal to hackers about presence nearby wireless networks.
Interception (interception) is possible and during the real conversation.
Such type of attack is better approaches for capture of the interactive traffic of type telnet.In this case the hacker should be in the same segment of a network where the client and server.hacker waits, when the authorized user will open session on a server, and then with help of the specialised software occupies session already at time of work.
The hacker has on a server the same privileges, as the user.At interception hacker use the wrong information on the permission at name .interception is more dangerous, than sniffing, it is the directed attack against the person or the organisation.
Р. Брылунов
ОтветитьУдалитьQuestion: what you can say about warchalking?
Answer: This term means painting some special signs on the sidewalks near office buildings. Such signs signal hackers about nearby allocated wireless networks.
Interception can occur during the real conversation too. This type of attacks is better for the capturing telnet interactive traffic. In this case hacker should be at the same network segment as user and server. Bad guy waits when legal user will open session on the server and then occupies session using special software. Hacker gets the same rights on the server as legal user.
Note: Interception is more dangerous than sniffing, it means directed attack against user or organization.
Д.Кислицын
ОтветитьУдалитьQuestion. What can you tell about so-called 'warchalking'?
The answer. This term means drawing by chalk of special singns sidewalks about buildings of offices. Such marks signal hackers about presence nearby wirelles networks. Interception is possible and during the real communication session. Such type of attack is better approaches for capture of the interactife traffic of type telnet. In this case the hacker shuld be in the same segment of a network where are located the client and a server. The intruder waits, when the legal user will open session on a server, and then by means of the specialised software occupies session already in the process of work. The hacker receives on a server the same privilegies, as the user.
The note.
Interception is more dangerous, that sniffing, it means the directed attack against the person or the organisation.
Q: What can you say about the «warchalking»?
ОтветитьУдалитьA: This term means drawing of special marks on sidewalk near office buildings. The marks signals hackers about nearby allocated wireless networks.
Interceptions can occur in established connection session. That kind of attack is the best for interactive connections that the telnet. In this case, hacker must be in the same segment of network that client and server. The attacker waits when autorized user will open a session on the server, then attacker occur the session with help of special software. Hacker gets same permissions on the server as autorized user.
Note: The interceptions more dangerous that sniffing, it means a directed attack against a person or organization.
Alex Kondratev