Is it possible to crack the system setup password for a wireless access point - wirelessly? I understand how to use tools like aircrack and airsnort to crack the network password used by clients, but this will only grant you the client password to access the network.

If there is a way to gain access to the system setup password of a wireless router, please explain the process to me, so that I can take all possible precautions to try to avoid this happening to my new wireless network...

Thanks.

Yes, that's how people crack into your network. However, at Astahost, we do not talk about how to crack into networks as that is against our TOS.

Sorry
xboxrulz

Hehe, I have always been curious about how people do that too. I always try to make my passwords not words in the dictionary, so people can't easily get in. I wish I knew how they did it though, so I could find out how to stop anyone from getting in! grrr, hehe

most common way is brute force, your only defense against that is a well chosen password (upper- and lowercase, character, numbers, special character and at least 10 character long).
Besides that, tere are also the AP specific exploits, the only way to protect yourself against those is making sure you have the latest firmware for it.

If you know what you are doing, it doesn't matter what encryption algorithm you are using. The hacker will get into the system if they are persistent enough. Use WPA whenever possible and ALWAYS use random characters in your password encryption. Try to change it from time to time also. I think a lot of routers out there have a button to generate a random encryption key. Just hit that and adjust the key accordingly for all your other computers that need to connect wirelessly. You don't need to worry about forgetting that random password, as you can always connect back to your router using a cable and reset it to something else

The most important thing from what I read is the time limit. If you leave your router online 24/7, it gives the hacker more time to gather packets from your internet usage and from there they can get the password. It takes a while though to crack the password (even for a 64 bit WEP one, which is not really a good encryption in itself). Change passwords like once a month or so....maybe less frequent if need be.

Thanks for the replies so far, guys. But what I was actually referring to was the "system setup" password for the router itself, not the wireless password to the network. I was just wondering if it were possible to obtain that info. I suppose exploits would be the best bet, followed by brute-force attacks.

Yes and no... if it's genuine pure 100% Cisco equipment, there are ways to reset the password. But on your "fake" routers like Linksys, there's no genuine way to get the password... at least no one has attempted because the people who have these aren't usually the brightest crayons in the box and leave the default login.

[N]F

That's so true, that's why I got into my cousin's router without asking for his password. lol

xboxrulz

lol, nice thread. .. But i think an average internet user would always read the manuals before he installs any hardware. Manuals insist on changing the passwords. But well some people just ignore the warning. I myself read the manuals, just for the sake of it but sometimes it helps ya out in the worst of situations. Like when i got a bluetooth headset, i remember it acting weirdly after some days. Probably a virus hit or just a wrong setting, but everyone i asked including the service centers, they had just one thing to say, nothing can be done. Checking the nokia manual, they had a reset combo that helps somewhat format the settings to the default one, and voila it worked like a charm again.

Hence always read the manuals. But comming to the topic, i think cracking hardware set passwords is easier with brute force or just send a reset command (if there is one)

Regards
Dhanesh.

I happen to use a Linksys Router, which works fine for my LAN! Oh wait the Almighty NightFox, Ruler of the Internet Definitions Council has declared I REALLY DO NOT have a router! WOW I am running a LAN without a Router.

Also I'd like to say that strotyping someone off they're router is stupid, I have a Linksys and changed the defult login. Also I'd like to note that Linksys is a Division of Cisco.

MORE ON TOPIC: Chances are the best method is brute-forcing, unless the connection is unencrypted then you'd just packet sniff it.

This post has been edited by SilverFox: Jun 16 2007, 06:56 AM