Is a wired connection 'more' secure then a wireless?

By jnelsoninjax
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

jnelsoninjax

Posted
Posted

I feel that this is a simple question, but I was recently reading a book and the main character made the comment regarding the fact that the antagonist had a wired cat 5 connection and (the hero) made the comment that CAT5 was easier to 'hack' then wireless, but I really think that it is the other way around, I would think that wireless is much less secure then a wired connection. Am I correct?

Grand Master

Mindovermaster Global Moderator

Posted
  • Global Moderator
Posted

You are running off the same network. As in, you are still connected to the internet through your router/modem. Unless they are hardwired into your router, they can't do squat with it, even though they broke your wifi passphrase.

 

That help?

Grand Master

adrynalyne

Posted
Posted (edited)
2 hours ago, Mindovermaster said:

You are running off the same network. As in, you are still connected to the internet through your router/modem. Unless they are hardwired into your router, they can't do squat with it, even though they broke your wifi passphrase.

 

That help?

Only if the purpose was to share incorrect info. Once they are on someone’s network (wired or WiFi), there is for sure a security risk for machines on it. How much depends on the OS and security measures setup. 

2 hours ago, jnelsoninjax said:

I feel that this is a simple question, but I was recently reading a book and the main character made the comment regarding the fact that the antagonist had a wired cat 5 connection and (the hero) made the comment that CAT5 was easier to 'hack' then wireless, but I really think that it is the other way around, I would think that wireless is much less secure then a wired connection. Am I correct?

It’s the other way around unless someone can plug in. 

Grand Master

Mindovermaster Global Moderator

Posted
  • Global Moderator
Posted
7 hours ago, adrynalyne said:

Only if the purpose was to share incorrect info. Once they are on someone’s network (wired or WiFi), there is for sure a security risk for machines on it. How much depends on the OS and security measures setup. 

Well, yeah. Guess I was backwards too... :laugh:

Grand Master

adrynalyne

Posted
Posted
1 minute ago, hitchcock42 said:

But if all of your network is wired -- then there is no need for wireless. And the wired network is more secure than one open to wireless attacks.

I always wire my mobile devices to my network. 😜

Apprentice

hitchcock42

Posted
Posted
6 minutes ago, adrynalyne said:

I always wire my mobile devices to my network. 😜

I have been to one of two companies that have a wired network and nothing else -- for the above reason. But I think that is pretty rare.

Veteran

+DonC Subscriber²

Posted
  • Subscriber²
Posted

Wireless connections are encrypted by default on most consumer gateways these days but the same is not true for wired connections.

 

However, by the time the hero of the book has the opportunity to physically plug a CAT5 cable into the gateway then they could just as well turn it upside-down and read the wireless key off the sticker!

Grand Master

+Nik Louch Subscriber²

Posted
  • Subscriber²
Posted

Wireless connections are secured using passphrases.  Wired connections are (generally) not.

 

We have undertaken a large project recently to ensure that our WIRED network cannot be exploited by rogue devices.  It's a lot more common than people think.

 

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

And what was this book?

 

And "hack" in what context?  While you might just be able to plug into a switch on a home network... This would not be the case on any enterprise network.. There would be nac/nap in place - and best practice is to disable any port that is not actively being used.  But you can not just unplug users pc and plug in your hacking machine and expect to be on the same vlan that user machine was on because needing to auth in some manner to get on specific vlan.

 

That sort of statement as a blanket statement doesn't make a lot of sense, but with specific context it may or may not be true, etc.

 

Lets not forget physical access, vs sitting out in the parking lot in your car with the possibility to access the wireless network.  With a wired network, atleast in an enterprise you would have to go through some access control just to get to a wire in the first place.  We have to finger print to get into the office, and normal users do not have access to any of the wiring closets, etc.

 

Lets then look at ok hey, I plugged into the wire.. Even if could get access.. The wire I plugged into would only be on the specific vlan that either authed to with creds, or that port is assigned too.. And even then would only see traffic that was broadcast, you don't see "all" traffic, etc..  With wireless if using pairwise pmk, all devices would be using their own encryption keys and even if you could sniff the wireless traffic each clients encryption would be different, other than the group key traffic (broadcast and multicast)..

 

So again in what context?  With wireless I could throw up AP that looks like the company AP and if security features are not in place all clients would send all their traffic through my device, etc.  Without gaining any physical access to the premises.

 

Without any context of this this so called "hack" being done - its like most IT related stuff in movies/books - its not very accurate ;) hehehe.. Only recent show that have seen that did a decent job/attempt at realistic IT in general was mr robot..

 

  • The Dark Knight and Jim K
  • Like 2
Grand Master

+Nik Louch Subscriber²

Posted
  • Subscriber²
Posted
10 minutes ago, BudMan said:

With a wired network, at least in an enterprise you would have to go through some access control just to get to a wire in the first place. 

Enterprise, damn right you'd hope so.  But smaller operations absolutely overlook the wired - and that's absolutely to their peril.

Grand Master

jnelsoninjax

Posted
  • Author
Posted
13 minutes ago, BudMan said:

And what was this book?

 

And "hack" in what context?  While you might just be able to plug into a switch on a home network... This would not be the case on any enterprise network.. There would be nac/nap in place - and best practice is to disable any port that is not actively being used.  But you can not just unplug users pc and plug in your hacking machine and expect to be on the same vlan that user machine was on because needing to auth in some manner to get on specific vlan.

 

That sort of statement as a blanket statement doesn't make a lot of sense, but with specific context it may or may not be true, etc.

 

Lets not forget physical access, vs sitting out in the parking lot in your car with the possibility to access the wireless network.  With a wired network, atleast in an enterprise you would have to go through some access control just to get to a wire in the first place.  We have to finger print to get into the office, and normal users do not have access to any of the wiring closets, etc.

 

Lets then look at ok hey, I plugged into the wire.. Even if could get access.. The wire I plugged into would only be on the specific vlan that either authed to with creds, or that port is assigned too.. And even then would only see traffic that was broadcast, you don't see "all" traffic, etc..  With wireless if using pairwise pmk, all devices would be using their own encryption keys and even if you could sniff the wireless traffic each clients encryption would be different, other than the group key traffic (broadcast and multicast)..

 

So again in what context?  With wireless I could throw up AP that looks like the company AP and if security features are not in place all clients would send all their traffic through my device, etc.  Without gaining any physical access to the premises.

 

Without any context of this this so called "hack" being done - its like most IT related stuff in movies/books - its not very accurate ;) hehehe.. Only recent show that have seen that did a decent job/attempt at realistic IT in general was mr robot..

 

I agree with you about books in general, but if you were wondering, just for S&G it is titled "Private Games" by James Patterson and Mark Sullivan, published in February 2012

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • I restored the default settings to Secure Boot. Big mistake

      By +Edouard · Posted

      The laptop in the bedroom is an Acer with i7-10510U CPU. Acer's website states they will not be upgrading it so I had little choice other than disable secure boot. I know next to nothing on these matters so hopefully it will be fine.
    • GitHub removes manual model selection from Copilot free and student plans

      By Karthik Mudaliar · Posted

      GitHub removes manual model selection from Copilot free and student plans by Karthik Mudaliar GitHub is removing the ability to manually select an AI model from its Copilot Free and Student plans, making its automatic routing system the default and only way to choose a model. This means users on these tiers will no longer be able to deliberately select a particular OpenAI, Anthropic, Google, or Microsoft model for a task. In its announcement, GitHub said Copilot Auto will dynamically choose what it considers the best model for each request. Free and Student accounts will retain access to models from multiple families, although the available selection will continue to depend on the restrictions attached to each plan. GitHub did not identify a fixed pool of models that Auto will always use, and its documentation warns that model availability can change over time. GitHub describes Auto as more than a random fallback system. On supported surfaces, its task-optimization technology evaluates the complexity of a request alongside real-time information about model health and availability. Straightforward prompts can be routed to faster and less expensive models, while more demanding coding tasks may be sent to higher-cost reasoning models. The company says this approach should reduce rate limiting, latency, and failed requests. Auto generally selects one model along natural prompt-caching boundaries rather than repeatedly switching models during a session, as GitHub found that mid-session changes increased costs without producing sufficient improvements in output quality. Users can still check which model generated a response. In Copilot Chat, the information appears when hovering over an answer, while Copilot CLI and the Copilot cloud agent display the selected model alongside their output. Auto is available in Copilot Chat, Copilot CLI, and the cloud agent, with the exact implementation and release status varying between supported development environments. The latest restriction follows several months of adjustments to Copilot’s individual plans. GitHub temporarily halted new Pro, Pro+, and Student subscriptions in April as it sought to manage demand and service reliability. It later introduced token-based billing and began gradually reopening individual-plan registrations on June 17. Alongside the picker change, GitHub is retiring the “Preview” label from Microsoft-developed models. It argues that the label is no longer necessary because Auto handles model routing and models are continuously updated behind the scenes.
    • Grand Theft Auto VI pricing revealed alongside Ultimate Edition and pre-loading details

      By thartist · Posted

      Look up 'inflation' kid. Ask an AI for the numbers between both games.
    • Google reportedly set to lose two key Gemini and DeepMind researchers to Anthropic

      By Karthik Mudaliar · Posted

      Google reportedly set to lose two key Gemini and DeepMind researchers to Anthropic by Karthik Mudaliar Google is reportedly preparing to lose two more prominent artificial intelligence researchers, with Gemini contributors Jonas Adler and Alexander Pritzel planning to join rival AI developer Anthropic. According to a report from Bloomberg, both researchers are viewed internally as important contributors to Google’s flagship Gemini model family. Adler worked on Google’s AI coding efforts, while Pritzel was involved in the process used to train AI systems. Neither company has publicly confirmed the moves. The report also does not say when the researchers will formally leave Google or what positions they will hold at Anthropic. Training a large AI model requires decisions covering its architecture, data preparation, distributed computing infrastructure, and post-training methods that shape how the finished system behaves. Researchers with experience operating at the scale of Gemini are consequently difficult to replace quickly. Both Adler and Pritzel have previously contributed to Google DeepMind’s scientific research as well. They are listed among the authors of the company’s work on expanding AlphaFold protein-structure predictions across entire proteomes, alongside AlphaFold researchers including John Jumper. The reported departures arrive shortly after another important change within Google’s Gemini organization. Gemini co-lead Noam Shazeer is leaving Google for OpenAI, after returning to the search company in 2024 through its deal with Character.AI. Shazeer is particularly well known as one of the authors of the Transformer paper, whose architecture became the foundation for most modern large language models. Anthropic, meanwhile, has been recruiting recognizable figures from other leading laboratories. OpenAI co-founder and former Tesla AI director Andrej Karpathy joined Anthropic’s pre-training team in May. His move, followed by the reported recruitment of several Google researchers, suggests Anthropic is strengthening the research teams responsible for the core capabilities of future Claude models rather than concentrating solely on product and enterprise sales. The competition is complicated by the companies’ extensive commercial relationships. Anthropic competes directly with Google’s Gemini models, but it also relies on Google as an infrastructure partner. In April, Anthropic announced an expanded agreement with Google and Broadcom covering multiple gigawatts of next-generation Tensor Processing Unit capacity. TPUs are Google-designed accelerators used to train and run large AI models. via Bloomberg
    • Researchers claim Microsoft's quantum breakthrough is flawed by basic Python errors

      By Primey_ · Posted

      This article makes my head hurt. Lots of confusing words

  • Recent Achievements

    • Dedicated
      Scoobystu earned a badge
      Dedicated
    • First Post
      Tom Schmidt earned a badge
      First Post
    • One Month Later
      D0nn13 earned a badge
      One Month Later
    • Rookie
      +ChiefOfNeo went up a rank
      Rookie
    • One Year In
      Tom Schmidt earned a badge
      One Year In

  • Popular Contributors

    1. 1
      +primortal
      462
    2. 2
      +Edouard
      177
    3. 3
      PsYcHoKiLLa
      124
    4. 4
      Michael Scrip
      79
    5. 5
      Xenon
      76
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!