[ Date Index ]
[ Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
Re: [LUG] OT: WiFi Repeater - same SSID or not?
- To: "list@xxxxxxxxxxxxx" <list@xxxxxxxxxxxxx>
- Subject: Re: [LUG] OT: WiFi Repeater - same SSID or not?
- From: mr meowski <mr.meowski@xxxxxxxx>
- Date: Sun, 21 Jan 2018 15:25:29 +0000
- Accept-language: en-GB, en-US
- Content-id: <D23B0F76A115CA4BABCA80754261CCB7@eurprd09.prod.outlook.com>
- Content-language: en-US
- Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dclug.org.uk; s=1507453562; h=Sender:Content-Transfer-Encoding:Content-Type:Reply-To:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Subject:MIME-Version:Content-ID:In-Reply-To:References:Message-ID:Date:To:From; bh=iJuKWSbYTDRqh+g/bLTjWTdsbPR4ie43cOSUB6cnMCE=; b=KLKX4WUKpcqRDUzuD4z8A7Zz0VIz52VhOrnTAq/acjTRtyRob3c3p6SJOkui/bl1i6Wqf4P/qoyl3eAQ5v2zGDwMYO5DTJA4jW4Lf7rNExYvAz1N7cAx45dF5FpoV3STDtIG24c46J+sfCE3vEZetbilPG0i0Vy4wn4e1XbIyGw=;
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=live.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=vq3ZsnnX0/0X/4x2tlART+DHxVWadAxZlO3JeQ+sqJA=; b=NJrVyfjssCNZzj07u0KnSemzAI6HAOepfjNLKbpaHeHp1/rkFbXaGQGwQbEktG1qiyrRqSxRQfsXErHE603s97toTGahiR2dP++3MgjE9s64ktHKbSeT5K7UYBEBVFd1/qu4l2honznl6wmgWkET+IS/L2IsDxy82vAmJEpuIE2RRcrb3MoH1ZKoPEfeZXoxklXEX9YC5p+f/zcAV099EWXDA8N0SL06Qg+ZFWG+/FRn/sy2rrAzRwoxud0lbzSqIILF28bZlF2UnG6Vlkeqk8Cir3imw7kCqW1Pg8JAYsheNCaJpkE3qlFjMClYehKUcIQR1BDePudO6VKL4wIVSA==
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:99
- Thread-index: AQHTkl46tH/6m7uTH0GWdVqqLJd7gaN+DD+AgABnJYA=
- Thread-topic: [LUG] OT: WiFi Repeater - same SSID or not?
On 21/01/18 09:16, Simon Waters wrote:
> Clients will talk to any WiFi access point with same ESSID+password+encryption
> scheme. So yes same ESSID makes sense if the device permits it.
>
> There is no access point authentication in current WiFi encryption schemes, so
> anyone who knows your password can intercept and read all the traffic that isnât
> encrypted at a higher level in the stack (e.g TLS).
Some wifi network hardware supports something called "client isolation"
that will prevent the wifi users 'seeing' each other on the network - it
used to be a high-end feature but it's not uncommon to see it on garden
variety SOHO equipment or even bog standard ISP provided routers these
days.
Depending on how it's implemented it won't necessarily stop a
determined/skilled attacker from VLAN hopping or ARP sweeping their way
around it but it should stop a cheeky teenage relative popping their
laptop's wifi card into promiscuous mode and dumping all your network
traffic via wireshark for example.
If a "bad actor" is already in possession of your wifi credentials AND
on your network however you already have a serious problem, obviously.
Cheers
--
The Mailing List for the Devon & Cornwall LUG
https://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq
