MAC security (Re: Question about Wireless)

David Vincent dvincent at
Tue Nov 27 23:33:26 UTC 2007

Felipe Figueiredo wrote:
> Em Tuesday 27 November 2007 12:45:26 Nils Kassube escreveu:
>> MAC filtering means that the AP only talks to a known set of MAC 
>> addresses. It isn't secure because you can set some (maybe all?) wireless 
>> cards to arbitrary MAC addresses - but there are problems doing it. 1) It 
>> may be illegal. 2) If the real owner of that MAC address is active there 
>> will be lots of collisions and possibly both clients can't do anything 
>> usefull. 
> Interesting. I assume one would have to know beforehand of a permitted MAC in 
> order to use this attack vector. 
> Just out of curiosity, is there any known way (not brute force) to discover 
> such permitted MAC addresses that script kids can exploit?

Without any encryption on the wireless network it is trivial to capture 
some packets  (with say, Wireshark) and gather a MAC which is allowed to 
talk on the network...

Have a peek at the Linux distribution "Backtrack".  BT3 looks quite 


...and it's called "wardriving" not "wordriving".  :)

More information about the ubuntu-users mailing list