Wireless Defense Bubble - $200



  • I know this is a subject people get nervous about, but if I can find a legitimate use for it, I am sure others can too.

    What I am looking for is a way to block APs on a network. The company I work for owns the entire 3 story building we are in. We have contractors coming in all of the time and many of them like to hook up their own access points. We have advised them that this is against policy, but occasionally the marketing types like to put one past us and hide one. We do sweeps on a regular basis, but I had a thought for a better way.

    How about sending deauthentication frames to in affect, jam clients from getting on rogue access points. What I was thinking was 3 options. Block this AP (specified by MAC or SSID) and allow all others, allow this AP (specified by MAC or SSID) and block all others, and lastly, block all.

    Since this isn't RF jamming, there shouldn't be an issue with the FCC. We could selectively jam APs. The system would also need to be able to detect new APs and handle them based on the list of rules (block, allow, etc.).

    ideally, this would work better on a AP converted to handle this like a WRT, but I thought with the power and flexibility that pfsense has, this may be the place to start.

    What are your thoughts?

    BTW, I understand that Aruba APs have this feature.



  • This would require OpenBSD's hostapd IIRC and would be a bit of work to port.  In addition if we ported their hostapd I am not sure if we would loose any features.



  • What sort of bounty do you think would make this workable?



  • @sullrich:

    This would require OpenBSD's hostapd IIRC and would be a bit of work to port.  In addition if we ported their hostapd I am not sure if we would loose any features.

    Yeah, their hostapd, or more likely at this point, merge their security functions into the madwifi hostapd.  Neither is an easy task and I think we'd lose WPA.

    –Bill



  • losing WPA is a bad thing…  :-
    please don't do so...



  • @trendchiller:

    losing WPA is a bad thing…  :-
    please don't do so...

    I doubt anyone is gonna jump on this bounty anyway.  The amount of work involved would require someone who was motivated by much more than the bounty.

    –Bill


Locked