Author Topic: Why do people have to be so annoying to disturb your wifi with a wristbandwatch?  (Read 3673 times)

0 Members and 1 Guest are viewing this topic.

Online DiTBhoTopic starter

  • Super Contributor
  • ***
  • Posts: 4367
  • Country: gb
Yesterday night I visited an hacker club. I was downloading some pdf from their private network when suddenly the whole WiFi went down with the local Cisco router blinking the red-alert line like a deranged dog on speed.

When you see a Cisco router blinking that way ...  well, it's a Kind of WTF is happening? Are we on the set of the Matrix movie? Is the line taped and agents will come here to arrest us all - I don't know why - maybe because someone has been found who is secretly storing in his/her computer some confidential datasheet about some weird electronic document?!?

I was going to seriously worry ... then I looked at the guy in the corner. It was the kind of dude dressed with a hood of the tracksuit on the head, which I don't know why it should make someone more "hacker-ish", but the first thing that makes you understand the kind of person you are looking at ... shoes and the wristband watch.

Nobody would wear stiff toe shoes, they are uncomfortable for running, that is, if you get caught you have to run as fast as possible, not in those shoes! And when your wristwatch looks like clumsy smartwatch that is vastly larger than your wrist, you are certainly not someone who is able to hide his/her hacking-tools.

Moral of the story a dick who is only making fun of us.

Indeed, a closer second look revealed the dude was wearing an ESP8266 WiFi Deauther Watch (Amazon link)

So, a tools that makes no purpose except making fun of other people's WiFi networks.

Which brings some questions in my head: Why people do buy this kind of crap? And, why people use this kind of crap to disturb?

Thanks God, the Deauther only works at 2.4Ghz, it cannot attack any 5Ghz network, but it can shutdown even a B.A.T.M.A.N. mesh-network, 2.4Ghz but used for domotic not for common WiFi.

The 2.4GHz WiFi kept staying down with the poor router continuing to safely bling red-alarm, I switched to 5Ghz and got served by a neigh-board's network. The signal power was not good, but out of curiosity, I vivisected the GitHub of the Deauther Wristband watch and found a few notes about

Quote
This software allows you to easily perform a variety of actions to test 802.11 wireless networks by using an inexpensive ESP8266 WiFi SoC (System On A Chip).

The main feature, the deauthentication attack, is used to disconnect devices from their WiFi network. No one seems to care about this huge vulnerability in the official 802.11 WiFi standard, so I took action and enabled everyone who has less than 10 USD to spare to recreate this project.

Which -!YeAh!- sounds like the stupid usb-killer that was advertised as "made for testing the over voltage protection of your usb ports" and can destroy your laptop if someone plugs it into your usb-port, and, worse still, enables everyone who has less than 10 USD to spare to recreate the project  :palm:

I don't want to over react, just in my head, it's like when we talk about guns. Guns can be used to have fun at the shooting range, or to show the world that you are  a complete moron but able to shoot your feet.

I mean, the tool is not the problem, what people do with tools is the problem, but why do they have to sell that crap on Amazon and easy accessible online store? To buy a gun you have to show your identity document, and have a firearm license, you cannot buy a Gun from Amazon.

So, I think to buy a device that can disrupt your WiFi or destroy your USB-ports or/and motherboard you should have a similar document.

Otherwise ... morons like that dude can easily buy such a crap on Amazon and easily disturb your business.

Can't they? :-//

Hey, oh? No one died, no one was arrested, and no computer was destroyed or burned. Just, his trick wasted 30 minutes of time, then I was late and I couldn't finish downloading my pdfs. I shot him a dirty look and went out for a drink.
« Last Edit: May 02, 2022, 12:25:25 am by DiTBho »
The opposite of courage is not cowardice, it is conformity. Even a dead fish can go with the flow
 

Offline Brumby

  • Supporter
  • ****
  • Posts: 12413
  • Country: au
INAL - but I suspect he could have found himself in some hot water if he was pulled up on that by officialdom.
 
The following users thanked this post: tooki

Offline eti

  • Super Contributor
  • ***
  • !
  • Posts: 1801
  • Country: gb
  • MOD: a.k.a Unlokia, glossywhite, iamwhoiam etc
Totally off-topic, but that text formatting... wow... a new paragraph for every sentence? Please format it in a more readable manner, thank you :)
 
The following users thanked this post: tooki, DiTBho

Online Ian.M

  • Super Contributor
  • ***
  • Posts: 13216
At least its not bold puce, or all large font or devoid of punctuation or capitals, or an unholy wall of unparagraphed text.  Unless you are reading on a small screen mobile device, excessive use of paragraph breaks is far more tolerable than the habitual posting style of some other contributors! 
« Last Edit: May 03, 2022, 01:25:25 am by Ian.M »
 
The following users thanked this post: Kean, Brumby, Cubdriver

Offline Brumby

  • Supporter
  • ****
  • Posts: 12413
  • Country: au
iagreeitscerTAinlyalotbetterthansomeoFthewritingstylesweveseenusedhEreitsespeciallyIrritatinwhenthosewhodoare
ofFe
ndedbyhavingsuchthingsbroughttotheirattentionwitharecommendationthattheyimprovetheirefforts
« Last Edit: May 03, 2022, 01:36:52 am by Brumby »
 
The following users thanked this post: Cubdriver, RJSV

Online Ian.M

  • Super Contributor
  • ***
  • Posts: 13216
*NOW* I know why Dave wont let us have a Dislike button, because I'd have a hard time resisting using it on posts like your 💩 'specimen' above.
 

Offline Someone

  • Super Contributor
  • ***
  • Posts: 5155
  • Country: au
    • send complaints here
At least its not bold puce, or all large font or devoid of punctuation or capitals, or an unholy wall of unparagraphed text.  Unless you are reading on a small screen mobile device, excessive use of paragraph breaks is far more tolerable than the habitual posting style of some other contributors! 
Ramp it up:

tepid green
blurry grey
Quote
tepid green
blurry grey
 
The following users thanked this post: RJSV

Offline John B

  • Frequent Contributor
  • **
  • Posts: 865
  • Country: au
HTML blink tags?
 

Offline Halcyon

  • Global Moderator
  • *****
  • Posts: 6126
  • Country: au
A good reason to switch over to WPA3. Most devices built in the last few years will support it. Any legacy devices should be relegated to their own dedicated WPA2 network where it's "best effort" and if some clown wants to play games, it doesn't bring down the entire network.
 
The following users thanked this post: hans

Online Monkeh

  • Super Contributor
  • ***
  • Posts: 8134
  • Country: gb
Don't even need WPA3, we've had PMF for 13 years - if only any lazy incompetent consumer crap-peddler would take ten seconds to turn it on.
 
The following users thanked this post: DiTBho

Offline Halcyon

  • Global Moderator
  • *****
  • Posts: 6126
  • Country: au
Don't even need WPA3, we've had PMF for 13 years - if only any lazy incompetent consumer crap-peddler would take ten seconds to turn it on.

Yeh that's another way of doing it, but why go for a bandaid solution, particularly if you're got commercial gear like Cisco/Meraki, Ubiquiti, Aruba etc...

WPA3 offers a bunch of other advantages as well.
 
The following users thanked this post: DiTBho

Online Monkeh

  • Super Contributor
  • ***
  • Posts: 8134
  • Country: gb
Don't even need WPA3, we've had PMF for 13 years - if only any lazy incompetent consumer crap-peddler would take ten seconds to turn it on.

Yeh that's another way of doing it, but why go for a bandaid solution, particularly if you're got commercial gear like Cisco/Meraki, Ubiquiti, Aruba etc...

WPA3 offers a bunch of other advantages as well.

Oh, sure, WPA3's the way to go now. It just annoys the hell out of me that for the nearly 10 years WPA3 didn't exist we already had a solution to this problem which nothing used, because for the most part device manufacturers wouldn't update their config files to turn on the functionality written for them for free!

*grumble*
 
The following users thanked this post: DiTBho

Offline IanB

  • Super Contributor
  • ***
  • Posts: 12537
  • Country: us
Moral of the story a dick who is only making fun of us.

Why wouldn't the managers of the club eject the offending person and ban them from returning until they show more curtesy?
 
The following users thanked this post: DiTBho

Online DiTBhoTopic starter

  • Super Contributor
  • ***
  • Posts: 4367
  • Country: gb
Why wouldn't the managers of the club eject the offending person and ban them from returning until they show more curtesy?

Good point, it is currently under discussion, but that guy showed a big security problem with a Cisco router, so this is the first thing to be fixed.
The opposite of courage is not cowardice, it is conformity. Even a dead fish can go with the flow
 

Online 2N3055

  • Super Contributor
  • ***
  • Posts: 7466
  • Country: hr
Yesterday night I visited an hacker club. .......

Wow and lo and behold there was a hacker there.....
What a surprise....
"Just hard work is not enough - it must be applied sensibly."
Dr. Richard W. Hamming
 
The following users thanked this post: Someone, james_s, Trader

Offline Berni

  • Super Contributor
  • ***
  • Posts: 5050
  • Country: si
WiFi Deauth attacks are useful for a different reason.

They are usually paired with a access point spoffing device. So the deuath attack is used to kick users off the existing network and then when the device attempts to automatically reconnect you can have your spoofed AP hop in and let them connect to it. Repeat the process until everyone is on your fake AP and now you can do man in the middle attacks since all of the users traffic is passing trough hardware you control. So you can sniff the traffic or even modify it on the fly.

Then again a fair bit of hacking is focused on causing people inconvenience on purpose, so in that aspect just knocking the wifi offline is considered success for those. This is no different than DDOSing a website, just on a smaller scale.
 

Offline timenutgoblin

  • Regular Contributor
  • *
  • Posts: 189
  • Country: au
Totally off-topic, but that text formatting... wow... a new paragraph for every sentence? Please format it in a more readable manner, thank you :)

To be fair, not all word processing programs use the default line spacing of '1'. Some word processors have a line spacing of 2 or more lines making the start of a new sentence appear to look like a new paragraph has been started instead.
« Last Edit: May 03, 2022, 08:02:34 am by timenutgoblin »
 

Offline tooki

  • Super Contributor
  • ***
  • Posts: 13157
  • Country: ch
Totally off-topic, but that text formatting... wow... a new paragraph for every sentence? Please format it in a more readable manner, thank you :)
And at least it’s not hard line breaks, which some people here do under the mistaken impression that this is a good idea, so that lines aren’t crazy wide, not realizing that line breaks aren’t the same across devices (and that the correct way to correct an excessive line width is to resize your damned browser window rather than run everything maximized at all times.)

The result, when viewing on mobile or with a window made narrow, is text that looks like this:

There were ten in the bed and the little one said: “Roll over, [soft line break]
roll over!” So [hard line break]
they all rolled over and one fell out. There were nine in the
bed and the
little one said: “Roll over, roll over!” So they all rolled over
and one fell
out. There were eight in the bed and the little one said: “Roll
over,
roll over!” So they all rolled over and one fell out. […]
 

Offline newbrain

  • Super Contributor
  • ***
  • Posts: 1801
  • Country: se
Wow and lo and behold there was a hacker an asshole there.....
There, FTFY.
If you buy that kind of implement, the suspicion you are an asshole is high: a hacker will generally buy a cheaper and more convenient dev board for experimenting.
If you use it without authorization, there is no doubt, you are definitely an asshole.

INAL - but I suspect he could have found himself in some hot water if he was pulled up on that by officialdom.
IANAL too*, but in Sweden they would assuredly be in breach of the LEK (Law on Electronic Communication): you are not allowed to even possess jamming equipment of any sort**, much less use it, and this falls squarely in the category.

So, an asshole, and quite probably a criminal too - not a hacker in my book.

* But I recently had to study a tiny bit to get my ham radio license.
** To study jamming resilience for some of our devices, there were quite a lot of legal hoops to jump.
Nandemo wa shiranai wa yo, shitteru koto dake.
 
The following users thanked this post: DiTBho

Offline Brumby

  • Supporter
  • ****
  • Posts: 12413
  • Country: au
*NOW* I know why Dave wont let us have a Dislike button, because I'd have a hard time resisting using it on posts like your 💩 'specimen' above.
Then you might be pleased to know that it reeeeeally cause me to cringe all through the effort.
 
The following users thanked this post: Ian.M, RJSV

Online 2N3055

  • Super Contributor
  • ***
  • Posts: 7466
  • Country: hr
Wow and lo and behold there was a hacker an asshole there.....
There, FTFY.

No, you didn't fix it. You applied a forced positive bias to a term that is not positive per se..
Hacking can be kids playing with computers in certain way and also stealing from the bank..

Lines in that community are gray..... Pun intended...
"Just hard work is not enough - it must be applied sensibly."
Dr. Richard W. Hamming
 

Offline timenutgoblin

  • Regular Contributor
  • *
  • Posts: 189
  • Country: au
Totally off-topic, but that text formatting... wow... a new paragraph for every sentence? Please format it in a more readable manner, thank you :)
And at least it’s not hard line breaks, which some people here do under the mistaken impression that this is a good idea, so that lines aren’t crazy wide, not realizing that line breaks aren’t the same across devices (and that the correct way to correct an excessive line width is to resize your damned browser window rather than run everything maximized at all times.)

The result, when viewing on mobile or with a window made narrow, is text that looks like this:

There were ten in the bed and the little one said: “Roll over, [soft line break]
roll over!” So [hard line break]
they all rolled over and one fell out. There were nine in the
bed and the
little one said: “Roll over, roll over!” So they all rolled over
and one fell
out. There were eight in the bed and the little one said: “Roll
over,
roll over!” So they all rolled over and one fell out. […]

That sounds like an analogy for a parallel-in serial-out shift register.
 
The following users thanked this post: RJSV

Online DiTBhoTopic starter

  • Super Contributor
  • ***
  • Posts: 4367
  • Country: gb
Hacking can be

The Hacking theme of the night was
  • discussing a new custom-made keyboard that looks like IBM RT3200 but ergonomic and with more features
  • Deskthority-like discussions about custom-made keyboards: 60% vs 70% for a Cyberdeck
  • Complete reverse engineering of some keyboards used for graphing calculators, such as the TI-kb which I recently destroyed due to battery acid leak
  • Project Mooka, a Cyberdeck, Cyberpunk Gibson style, but made with Ikea' wood parts
  • Some good CCC-like talk about tmux with some hacks to make it able to save it and resume sessions
  • Partial reverse-engineering of the DEC multi-session protocol used by vt650 and of the crossbar matrix chip used in old Unix workstations, unrelated, only someone said there was progress with both, and here were the pdf files I was trying to download when the Wifi collapsed

Things like that.

Kinds of hackers, kinds of hacking  :-//
« Last Edit: May 04, 2022, 12:00:51 am by DiTBho »
The opposite of courage is not cowardice, it is conformity. Even a dead fish can go with the flow
 
The following users thanked this post: newbrain

Offline Berni

  • Super Contributor
  • ***
  • Posts: 5050
  • Country: si
Yeah that is more of a retro hardware hacking event then.

When people hear about hacking events they think about things like DefCon that is more about computer security or things like capture the flag events where people compete to hack into vulnerable machines on the network.One should definitely be careful with connecting to a random wifi at those events.
 
The following users thanked this post: 2N3055, DiTBho

Offline tooki

  • Super Contributor
  • ***
  • Posts: 13157
  • Country: ch
Totally off-topic, but that text formatting... wow... a new paragraph for every sentence? Please format it in a more readable manner, thank you :)
And at least it’s not hard line breaks, which some people here do under the mistaken impression that this is a good idea, so that lines aren’t crazy wide, not realizing that line breaks aren’t the same across devices (and that the correct way to correct an excessive line width is to resize your damned browser window rather than run everything maximized at all times.)

The result, when viewing on mobile or with a window made narrow, is text that looks like this:

There were ten in the bed and the little one said: “Roll over, [soft line break]
roll over!” So [hard line break]
they all rolled over and one fell out. There were nine in the
bed and the
little one said: “Roll over, roll over!” So they all rolled over
and one fell
out. There were eight in the bed and the little one said: “Roll
over,
roll over!” So they all rolled over and one fell out. […]

That sounds like an analogy for a parallel-in serial-out shift register.
Is that children’s song not known in the UK?
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf