For the last couple of weeks, my home network had been really slow, both in file access between machines and while online. My two stepsons complained that their World of Warcraft online game was laggy at best, and I was having a slow time of just browsing websites like TFL or CNN.
Last night, I decided I'd do some troubleshooting, so I had my youngest stepson turn his computer off. He volunteered because he was complaining the loudest about lag. His computer is the only one, besides my laptop, that uses the 802.11b wireless connection to the rest of the network, by means of a Wireless Access Point in my office/lab. Everything else is wired 100-BaseT. When he yelled from across the house that his machine was indeed off, I watched the Wireless Access Point. It was flashing activity continuously, as if my stepson were playing his online game or downloading a file from the Web.
I knew my laptop was turned off, so what's sucking through the wireless system? I clicked on My Network Places, and then Entire Network. Voila'! In addition to my normal home Workgroup, there was an additional network workgroup name there, installed nice and pretty. Clicking on it gave the computer's name and a partial description, and it wasn't a computer I'd set up in my house. Going to the internal webpage of my Linksys router and displaying clients confirmed we had an imposter. Son of a Biscuit, I had a leech!
Now, our houses are pretty far apart in my neighborhood, and the military house to the west of me is vacant. The unit to the east is a good friend of mine, with his own cable modem. That left the houses to the north and south of me. The houses to the north of me are mostly vacant, save for one guy. He's a single Air Force meteorologist who is on leave away from the local area until after the holidays, so I really didn't think it was him. Now, behind my house to the south, we have neighbors who are, shall we say, visited by the Satellite Beach police department on a fairly regular basis. They also have their house lit by candles on occasion, because their power gets cut off by FPL for non-payment. My guess is that it was them, and I'll do a little snooping to see if the personal name on the computer I found leeching is in some way connected to the occupants of that rental unit.
Now, it was my fault that we had a leech. A couple weeks ago, my wife brought a friend's laptop home to me to install an 802.11g wireless card, and I disabled WEP on my network to get that laptop working without having to type in my personal encryption key. Like a dummy, once I got that laptop working on the Web just fine, I forgot to re-enable WEP. I left the door wide open to my network.
So last night, while my erstwhile neighbor was sucking bandwidth through my Wireless Access Point, I logged into the WAP's internal website, selected 128-bit Wireless Encryption Protocol, and created a new encryption key. I hit the "accept" icon, and watched as the WAP's activity light went from solid green to dark, that quickly. ahole, I fixed your little red wagon right quick, didn't I? Tonight, everybody in the house was tickled pink how quickly their computers accessed the Web, sent and received email, transferred files, printed documents, and did the multiplayer thing sans lag.
Later this weekend, I'm going to run a couple WiFi utilities on my laptop, and walk around the perimeter of my backyard, looking for signal strength and the same computer name I just disconnected from my WiFi network. Maybe I can upload a virus or worm onto that machine if I find it. Other than that, I doubt there's anything in the legal or law enforcement world I can do.
But I learned an important lesson - if you have WiFi, use encryption. Period.