How easy is WEP to crack?

[flameboy]

Let me explain, I have a wireless BT Home Hub which uses a preset WEP that comes on the back of it.

 

Recently we have had to pay charges for going over our download limit, but by like 80 gigabits, now I know for sure that there is no way we have downloaded that much stuff.

 

So is it possible somebody is using our connect? I mean I live in a student area so there are tons of fellow students with houses and people who will use any method to get free internet!

 

Just got me wondering....

[Emasher]

well if your going on websites with lots of images or streaming lots of videos you could have actually reached that

 

and i mean lots

 

though wep isn't as secure as wpa it is still pretty secure and you would actually need to spend an awful lot of time trying to hack it.

[Shino]

Apparently not that hard.

http://arstechnica.com/news.ars/post/20070404-new-attack-cracks-wep-in-record-time.html

[Bogbas]

Yeah, apparently it takes about 1 minute to crack wep.

[flameboy]

well if your going on websites with lots of images or streaming lots of videos you could have actually reached that

 

and i mean lots

 

though wep isn't as secure as wpa it is still pretty secure and you would actually need to spend an awful lot of time trying to hack it.

 

yeah you see thats what my dad said it could be but I'm not convinced I doubt it can be that much, thats a hell of a lot of pics!!!

 

anyway cheers for other info guys, I may give BT a ring...

[McPhee]

Does the BT Home Hub keep logs? I know on my router i can get a print-out of what ip addresses were connected when, that might solve you're query.

Oh, and upgrade to WPA or WPA-PSK. Its much more secure and oretty much garauntees that no students are stealing you're bandwidth

[Blackfox]

*Mr Burns voice*

 

Exceeellent.

 

I'm thinking of doing this.. im sick of 56k at uni.

[Twozzok]

WEP is extremely unsecure,. Even the 128-bit encryption takes a couple of minutes to crack. If you're totally sure you haven't used it yourself by accident (which is entirely possible, apparently I downloaded 90gb last month :/) then get a router with WPA.

[flameboy]

can't afford a new router really and the BT Home Hub comes preset with its WEP built in. I've checked the IP log, and it doesn't have any individual logs all the same number, remember actually trying to log onto online poker with my housemate and it said somebody was already logged in using that IP address....i'e him on his computer and it wudnt let me in.

[Shino]

can't afford a new router really and the BT Home Hub comes preset with its WEP built in. I've checked the IP log, and it doesn't have any individual logs all the same number, remember actually trying to log onto online poker with my housemate and it said somebody was already logged in using that IP address....i'e him on his computer and it wudnt let me in.

 

Check if your router has Mac filtering, if so, set it to allow connection of your PC's only.

[CompSci]

http://www.youtube.com/watch?v=pgBHjZUKW54

[Emasher]

yeah you see thats what my dad said it could be but I'm not convinced I doubt it can be that much, thats a hell of a lot of pics!!!

 

anyway cheers for other info guys, I may give BT a ring...

 

well it does depend i guess wether any of your neighbours are proffesional hackers

[Bogbas]

Check if your router has Mac filtering, if so, set it to allow connection of your PC's only.

 

Yes that's a step to the right direction. But the mac addresses can be spoofed so if someone did crack into the wireless network and knew more than to download a program to crack the wep, he could have checked what mac addresses the other computers that were connected to the router had.

 

WPA + mac filtering should be safe enough. But still I would recommend using cables if possible.

[That Guy]

Right, tomorrow I'm definitely sticking Mac filtering on my network.

[Link83]

I have a Wireless router, but I only use it to connect to my Nintendo DS. I have WEP and MAC address filtering on (as you cant use WPA with the Nintendo DS)

How secure do you think my connection will be?

[That Guy]

My XBOX 360 wont work if I put WPA on, it tells me it needs a certain number of characters entered, and when I enter whats worked on all my other wireless devices it just wont connect.

[Adrian DX]

http://www.youtube.com/watch?v=pgBHjZUKW54

 

That thing is such a set-up

[Rummy]

Apparently it IS super easy, and can be cracked within 10 minutes with off the shelf software due to a big flaw in it(which sort of allows the key to be reverse engineered quickly), and people can even intercept and monitor what you're sending over it. The guys on The Real Hustle (BBC3, exposes alot of common scams and cons) showed how they went round in a van until they found someone's house using it, then used their connection AND managed to even syphon off details about a holiday they were booking, which is a double score for criminals as it means they know when the house would be free to rob the place. I dunno if they could get credit card details too, but I shouldn't think that is easy to do given the extra protection on credit card sites.

I would suggest if you can, to get logs on the router of who's been connecting, also set up DHCP if you can which will assign specific mac addresses specific IP addresses, you may in theory be able to block out unauthorised connections as people have said, but it also means it'll be easier to check from your logs if another person has been connecting, as they'd get an IP assigned automatically, and it won't match the ones you've said.

 

As you said, there's plenty students about, and I would say they're more than likely to try leeching free internets. Badger BT about it and find out if and how you can get WPA protection, as I believe that doesn't have the flaw and is only brute force breakable.

[The-Ironflame]

My router and access point seem to support WPA but my DS and one PC doesn't. It's hard to find a decent PCI Wireless card with positive reviews that supports WPA currently.

[McPhee]

Nintendo really need a slap for not supporting WPA on DS. Its like asking people "would you like a secure network or online gaming?"

[The-Ironflame]

I know with WEP you can generate a key through a passphrase but how the heck are you supposed to create a key with WPA?

[Rummy]

My router and access point seem to support WPA but my DS and one PC doesn't. It's hard to find a decent PCI Wireless card with positive reviews that supports WPA currently.

 

Yeah, the DS thing is really really stupid, annoys me to no end, kind of glad the wii has WPA, but annoyed cos if I use the DS I switch it over to WEP, I have to change the Wii too. I wish it would automatically search for any of the 3 presets to connect to. I'll usually leave the router as WEP for a while(id forgot for a month or two and only changed back to WPA last night after reading this).

As for your PC not supporting it, I should have thought it would? I have a d-link PCI card that I had since like...june before last, and that supported WPA.

 

I know with WEP you can generate a key through a passphrase but how the heck are you supposed to create a key with WPA?

Just like with WEP, you should be able to do the same on WPA. You'll need to select WPA-PSK though, which stands for Pre-Shared Key.

[flameboy]

I don't get my BT Home Hub, everytime I connect it seems to allocate me a different IP address...

[Rummy]

do you mean it assigns the device you're using a different IP address each time or that your actual IP address seems to change alot?

[The-Ironflame]

Just like with WEP, you should be able to do the same on WPA. You'll need to select WPA-PSK though, which stands for Pre-Shared Key.

 

It doesn't generate a paassphrase or whatever you call it you have to make one yourself or use a generator similar to from this site: https://www.grc.com/passwords.htm