Banning someone from Wireless?

Soo.. Im using my friend's unprotected wireless, but theres someone who's stealing from him, thus making it impossible to even access a site :/ I was wondering if I can ban him from connecting.

Can i do it with my laptop or do I have to be on the PC that is providing the wireless?

I would certainly rather do it on my laptop, seeing as I dont want my friend to be involved in this case, seeing as he's not too tech-savvy, and even a single "windows alert" would freak him out :/

 

Turn on WPA2 comes immediately to mind, that is precisely what it is for.

 

You can actually hide the wireless signal along with using a WPA, it depends on what type of router is being used though. Usually there are settings that the administrator of the router can access, and there is usually a setting to hide the signal. After hiding the signal, you'll have to manually configure your wireless connection find the hidden network. Since the network will be hidden, any computer using wireless networking won't automatically find the wireless network, because of that, it's hidden. It's not too hard to do. I always hide my wireless network since there are computer literate people out there that use wireless key stealers/sniffers to gain access to a WPA encrypted network. Just search on google "hide wireless network". I've found tutorial videos explaining the whole process.

 

You need to add a password to the network and use WPA/WPA2 encryption. You'll need to talk with the homeowner about setting it up though, because you don't want to screw up any of his stuff.

I hope your friend knows you are using his internet though...

 

We're sharing the net because I cant set up my own seeing as I'm going to move in the next few months. I just cant be bothered heh.

Ill talk with him if he wants to hide his connection, hopefully he will do it, seeing as Im currently paying for pretty much nothing, stupid script kiddie is hogging all the connection :/

Thanks for help.

 

Hiding the connection doesn't do anything. Using the same programs to crack WEP/WPA, you can see all the unlisted networks.

Basically, anybody that wants to find your network will.

 

If you know the name of the network (and that other guy obviously does) hiding it will not work. Plus, you could probably easily crack that anyway.

WEP can be cracked by a stop-watch practically, stick with WPA or WPA2. Those two are much harder to crack.

You can also look into MAC address filtering, and you can set it up to block anyone that isn't on the "white-list". That ought to stop that guy for quite a while.

 

From what I found, cracking WEP is a matter of seconds :s I guess we'll stick to WPA or WPA2, and if THAT wont work, ill try the MAC address filtering and just set this connection to work between 2 computers, me and him.

Thanks for all the help

 

You can add MAC Filtering (as Greg suggested) since you know the MAC address of the user. This is done on the Router. Nothing you can do on your end.

You really need to setup WPA(2). You don't want the Authorities knocking on his door for someone doing illegal activity. Music and movie downloads send up a big flag, COME GET ME.

 

Ok, everything everyone else said is right and good, but i just wanted to correct some of your wrong logic.

No PC provides the wireless. Just cuz a computer may be hooked up to the router, it isn't sending wireless by any way shape or form. Thats entirely the router.

Second, a script kiddy is not likely hogging your bandwidth. It is likely someone file sharing either through a p2p program or bit torrent. Scripts are programs written to automate a task, such as copy the content from someones site and place it in your own without you having to do something...or play your character in diablo while you are sleeping.

I dont wanna be a dick...but im just saying

 

WPA2 will keep out most people, but the really dedicated ones can crack it pretty easily. Infact, im doing it right now to myself (For a project, seeing how it affects throughput between the router and my desktop.) Don't really know that much 'bout how secure mac filtering is, because I never use it on my wifi networks.

 

MAC filtering does little at all. On linux, if you've got a small program installed, it's as easy as this;
Open up a terminal
Type "app-name --mac 11:22:33:44:55 ath0" (app-name is blocked so I don't break forum rules), and bam, your MAC address is now 11:22:33:44:55.

WPA2 is still crackable, but if you've got a crafty password (Using numbers and caps!) it would take years to crack.

 

I'd look at it this way:

When a thief looks at two houses to see which one is worth burgling, he'll choose the one without the alarm system (all things being equal).

If you add WPA or WPA-2 encryption, plus lock the user's MAC address out (better yet, use an allow-only list that only allows MAC addresses you approve IN --this can reduce problems with "MAC address spoofing"), and hide the SSID, all of these things are like adding locks to the house's doors. Most freeloaders will search for another open access point rather than go to the trouble of hacking yours once you've set up some basic security. Nothing is 100% hack-proof, but the more secure you are, the less of a bullseye you paint on your network.

You want security for far more reasons than preventing bandwidth-theft. Say for example that someone was leeching your bandwidth to get inappropriate things (i.e., obscene images of minors, etc.). You don't want your router to be the last known point at the end of that chain. You also don't want someone attempting to sniff any unencrypted data that may be going between your laptop and wireless access point (i.e, bank transactions, e-mail, etc.). So adding encryption is really something you ought to do.

 

WPA should really not be easily cracked. Crackers like John The Ripper will break a hash if a dictionary word is used, even with common twists like 1 fo l, 5 for S etc, but a long password with plenty of non-alpha symbols is currently beyond the scope of hackers, dedication does not defeat mathematics.

As other have said here, wireless networks cannot be hidden, and MAC's are easily spoofed with the right software and wireless card. WPA and a strong password are absolute essentials.

 

Btw... go to Run.. type 'ipconfig' .. note down the default gateway & type that in IE7 address bar.

You ll have access to the Router then... go to Home network & note down that guys assigned IP.

Report it to the police!

Its a criminal offence to steal neighbours internet.

 

More important than the guy's IP, he'll want the MAC address.

I'd just find the neighbor and leave him/her a polite, but firm note that you'd prefer your WiFi network not be used, or just lock the AP down. Wi-Fi stealing can amount to at most, an embarrassing slap on the wrist by the authorities, and cause bad blood, so Reporting people to the police for stuff like this can cause more trouble than its worth.

I remember what it was like when I had a "potentially violent" couple across the street from us; I called the cops if I had to or believed a life or a child was in danger, but I didn't want to find my house vandalized, etc. so I let some of the yelling go.

(OT: They've since left the neighborhood...Phew.)

 

"So you say someone is using your internet access without permission ... do you know who they are?"

"Yes and yes, he or she is at 192.168.1.105"

"..."

 

lol
Anyway how do you find if the person is using your network as the extra ip address is used? i can't find it anywhere in my router that tells me which computers are on... It is not even on the manual.

 

You have to have admin access to the router. There is a DHCP log that show all connected. Listed by MAC address.

 

192.168.1.105 is a Singapore IP address.

 

I hope you're joking. Really... I hope you are...

http://en.wikipedia.org/wiki/Private_network

 

Remember also that by pressing Alt+F4, you can enter Windows' Ultra-Super-Secret-Administrator mode!

 

Hmmm.. i didn't know.. it thought the LAN IP's are country specific. .. cause my default gateway is 192.168.1.254

 

192.168.xxx.xxx is always a private IP, not public. It is likely your gateway is the inside IP address of whichever home/small business router you are connected to, and it is giving you this address via DHCP.

 

The gateway IP can be moved to any node you choose. The 254 is less common than 1. But I have seen some at 128 and other odd numbers. There are only 3 private IP Subnets defined. Without these we would have run out of Public IP long ago. This is the reason IP6 is now starting to roll out.

You internal lan settings on the router can be found where you set the DHCP range. Should have a field for setting the gateway, subnet and dhcp range.

 

With ipv6, we could assign an IP address to every person, every star, every grain of sand, and every other object.

 

But NOT every bug in windows.

 

IPv6 isnt offered by many ISP's yet rite?