wireshark question

Resend · 06-06-2011 10:16pm #1

I was using wireshark and looking at my network. i saw passwords to my email addresses. Does that mean if someone next door had wireshark they could see my passwords? I have WPA2 PSK ssid is broadcast

aidan_walsh · 06-06-2011 10:17pm

If they were on your network and using Wireshark they could see any and everything you could see.

Resend · 06-06-2011 10:23pm

aidan_walsh wrote: »

If they were on your network and using Wireshark they could see any and everything you could see.

but if not on my network they cannot?
and if my network was not protected they could with Wireshark ?

edit should have said my network is wireless. Am i right that if they were in range with wireshark they could see my data but it would be encrypted?

Standard Toaster · 06-06-2011 11:36pm

Resend wrote: »

but if not on my network they cannot?
and if my network was not protected they could with Wireshark ?

edit should have said my network is wireless. Am i right that if they were in range with wireshark they could see my data but it would be encrypted?

Yes. They would need your PSK. If it's a complex password you're save
.
Does your email provider not support SSL? (Like say Gmail)

Resend · 06-06-2011 11:45pm

Standard Toaster wrote: »

Yes. They would need your PSK. If it's a complex password you're save
.
Does your email provider not support SSL? (Like say Gmail)

assume no. does that mean they could see my passwords even with my wpa psk?
It is only a hypothetical situation i am trying to understand

Standard Toaster · 06-06-2011 11:58pm

Normal traffic within your wireless network/lan will be in the clear, but only to the devices connected to it (be it wireless or wired)

The wireless devices will use the WPA2 encryption to to talk to the router, so that traffic is encrypted to prying eyes. (from device to router)

Once the traffic leaves the router to your ISP, it's unencrypted....only your ISP can see it until it hits 'the internet'

So to answer you question, anyone sniffing the wireless on your router would only see encrypted jibberish. With a nice complex password it would take years to brute force it.

A password like _R3s3nd_2011 would take 1.74 hundred billion centuries to crack.

Just make sure your password is not the default one and change it to something complex.

Resend · 07-06-2011 12:12am

Standard Toaster wrote: »

Normal traffic within your wireless network/lan will be in the clear, but only to the devices connected to it (be it wireless or wired)

The wireless devices will use the WPA2 encryption to to talk to the router, so that traffic is encrypted to prying eyes. (from device to router)

Once the traffic leaves the router to your ISP, it's unencrypted....only your ISP can see it until it hits 'the internet'

So to answer you question, anyone sniffing the wireless on your router would only see encrypted jibberish. With a nice complex password it would take years to brute force it.

A password like _R3s3nd_2011 would take 1.74 hundred billion centuries to crack.

Just make sure your password is not the default one and change it to something complex.

it is complex but how can i see my pasword with wireshark? is it cos it is ob my pc on my network? thanks for the help;)

Standard Toaster · 07-06-2011 12:20am

Resend wrote: »

it is complex but how can i see my pasword with wireshark? is it cos it is ob my pc on my network? thanks for the help;)

The passwords to your email provider are being sent in the clear from the sounds of it. You'd likely see same results if you plugged directly into the router (ruling out WPA2 as you wouldn't be using it)

Who is your email provider?

I know Gmail and Hotmail support SSL.
The connection to your PC and the email server is encrypted from point to point, regardless of the underlying network setup if SSL is used.

Resend · 07-06-2011 12:23am

Standard Toaster wrote: »

The passwords to your email provider are being sent in the clear from the sounds of it. You'd likely see same results if you plugged directly into the router (ruling out WPA2 as you wouldn't be using it)

Who is your email provider?

I know Gmail and Hotmail support SSL.
The connection to your PC and the email server is encrypted from point to point, regardless of the underlying network setup if SSL is used.

but could someone outside the network see it with wireshark
i am with eircom and win mail

aidan_walsh · 07-06-2011 12:26am

If they are not joined to your network or cannot crack your password, they can't see anything.

Standard Toaster · 07-06-2011 12:32am

Resend wrote: »

but could someone outside the network see it with wireshark

No would be the quick answer. Only you and you're ISP

Resend wrote: »

i am with eircom and win mail

https://secure.eircom.net/email

That's using SSL there (https)

Not sure if you can configure WinMail to access it securely too. One for someone who uses Eircom mail I guess

Resend · 09-06-2011 4:07pm

aidan_walsh wrote: »

If they are not joined to your network or cannot crack your password, they can't see anything.

but can't they use a sniffer from out side the network? i can see mac addreses on lans near me with inssider

wireshark question

Comments