SSL strip with http and https

used Wireshark to set up a wireless network.  A Cisco wireless access point has 12 access points as indicated in the IEEE 802.11a standard.  When choosing what channel to use it is possible to use Wireshark to determine how much latency time there is in a channel.  Some protocols take longer than other protocols and use the network more intensively.  A few years ago, I was using a wireless bridge at a church to connect the main building and a second building.  We were wondering why a computer could access a web page but could not access our SQL server.  We used Wireshark to determine that the SQL protocols are more intensive than web traffic. 

I have played around with SSL strip and noticed that either adds or replaces http with https or the reverseFor example, should a person log into Facebook with http instead of https we can get access to what they send across as their password.  The lock item appears so they believe that they are sending out through an encrypted channel to the server when they in fact are not. 

In addition, another aspect that is difficult for network administrators particularly on large campuses such as hospitals are rogue wireless access points that employees put into a production environmentThere is a way to log into the controller and seeing what access points the software believes to be rogue and do a denial-of-service attack against the access point to block your users from being able to access the networkHowever, for this to work, it is advised to make sure that one is sure that the access point is really attached to your network and not to another networkSometimes the correction of a security issue can create other problemsFor example, imagine that a person is using a hotspot on their phone while their phone is connected to a company’s wireless access point.   For example, as a helpdesk specialist I encountered this at one of our blood donations sitesWireshark is an essential tool because it helps network administrators define what normal activities look like and decide how many DNS redirections are permissible. 

Reference 

Hoffman, H. (2020). HUGO HO

Comments

Post a Comment

Popular posts from this blog

Open Daylight and OpenFlow

  I came across an interesting page on EdX which talked about virtualizing network activities.  The comparison was drawn from when older computers such as IBM used to be sold, they came with an operating system produced by IBM.  Microsoft came along and produced an operating system which used a hardware abstraction layer so the same software could run on computers made by different manufacturers such as HP.  The same thing is happening with networking equipment.  It used to be that a switch used an ASIC to do certain tasks.  Like how server and storage was virtualized software defined networking defines how switches operate today.  Now with projects such as Open Daylight and OpenFlow which are open-source software.  Facebook was an early developer who made their own switches in hopes of getting the price to go down and they gave their infrastructure code to the community.  Cisco responded by coming up with App Centric Infrastructure which they hoped would stop the bleeding by...
Read more

Cancer

          Liberty University    Master of Science Health Informatics    BIOM 500-D01 LUO               Bacterial Agents in Cancer Development      Robert Wahlstedt    ID:  L29900431    March 24, 2019     Words: 7 31     The method of studying a section of human anatomy and contrasting it with other diseases can be helpful for understanding the prognosis of both diseases. An example of this is contrasting tuberculosis with cancer. A micro-environment can refer to the immediate small-scale environment of an organism or a part of an organism, especially a distinct part of a larger environment. Within the human body there are epithelial tissue which provides a surface for many internal and external surfaces of the body. Its role is as a protective barrier which filters the absorption of materials. When a foreign invading particle which the body is not...
Read more