By Turning Off The Broadcast Of Ssid, Can Someone Still Sniff The Ssid; What Are Insertion Attacks; What Is Wireless Sniffer - ZyXEL Communications P-660HN-T1A Support Notes

P-660HN Series Support Notes
packets.The SSID is in the beacon and probe management messages and
SSID goes over the air in clear text. This makes obtaining the SSID easy by
sniffing 802.11n wireless traffic.

8. By turning off the broadcast of SSID, can someone still sniff the SSID?

Many APs by default have broadcasting the SSID turned on. Sniffers typically
will find the SSID in the broadcast beacon packets. Turning off the broadcast of
SSID in the beacon message (a common practice) does not prevent getting
the SSID; since the SSID is sent in the clear in the probe message when a
client associates to an AP, a sniffer just has to wait for a valid user to associate
to the network to see the SSID.

9. What are Insertion Attacks?

The insertion attacks are based on placing unauthorized devices on the
wireless network without going through a security process and review.

10. What is Wireless Sniffer?

An attacker can sniff and capture legitimate traffic. Many of the sniffer tools for
Ethernet are based on capturing the first part of the connection session, where
the data would typically include the username and password. An intruder can
masquerade as that user by using this captured information. An intruder who
monitors the wireless network can apply this same attack principle on the
wireless.
35
All contents copyright © 2010 ZyXEL Communications Corporation.