Cell Phone Sniffing

Get the latest on wired & wireless, talk network setups, get help with connectivity problems, web hosts, etc.
User avatar
Cool_Fire
Not a sandwich
Posts: 1891
Joined: Fri May 09, 2003 1:20 pm
Location: 41 6d 73 74 65 72 64 61 6d
Contact:

Re: Cell Phone Sniffing

Post by Cool_Fire » Fri May 04, 2018 6:15 am

Under a good VPN configuration it is not possible to sniff the data and it will take impractically long to brute force the encryption key.

HOWEVER
There are bad configurations;
- A VPN connection is usually encrypted, but it does not need to be. You can for example configure OpenVPN to not use any encryption at all, which would make it no better than not using a VPN at all for privacy reasons.
- A VPN may use a very weak encryption. This means it's probably not viable to crack it fast enough to get the same sniffing and injection abilities you get on an un-encrypted channel, but it may be feasible to capture the traffic and crack the key offline at a later point.
- If you are able to capture the connection setup of the VPN, you may be able to capture the key (or the parameters used to generate the key). This heavily depends on the VPN implementation. If it is implemented properly this should not be possible but not all VPN software is implemented properly.
If we're breaking the rules, then how come you can't catch us? You can't find us? I know why. Cause, it's ... MAGIC!
Hackerthreads chat, where the party is going 24/7.

Post Reply