7

They could just listen to beacons. Why do they probe for every network you've ever connected to?

Do other wireless devices do this? Does Windows, Linux esp. Kali, do this?

Qgenerator
  • 235
  • 1
  • 6

2 Answers2

6

That is because listening for a beacon and not getting it just might mean that the network has a private ("hidden") SSID. From this article (emphasis mine):

The 802.11 standard allows APs to beacon with the SSID field set to null - this is referred to as a hidden SSID. A client that wishes to associate with an AP using a hidden SSID must first send out a Probe Request that contains the SSID of that network, which will then cause the AP to provide a Probe Response. For any client that does not provide the correct SSID, the AP does not respond.

I believe that probing can be deactivated in Linux; not sure about Windows, but given their history I'd wager that probing is on by default, and may perhaps be disabled through some obscure registry hack.

LSerni
  • 22,521
  • 4
  • 51
  • 60
-1

Another reason is asymmetry - if you see the AP does not mean the AP sees you. Successful active scan guarantees that you can connect to the AP.

Smit Johnth
  • 1,709
  • 4
  • 17
  • 23
  • This answer does not appear to be in line with WiFi protocols. https://documentation.meraki.com/MR/WiFi_Basics_and_Best_Practices/802.11_Association_process_explained – schroeder Nov 12 '17 at 00:56
  • @schroeder Passive scanning means you see the AP, active means you see each other. I don't get what your link has to do with my answer. – Smit Johnth Nov 12 '17 at 17:53
  • What does scanning have to do with subsequent connections? Either way, the device needs to connect ... So, why default to active scans? – schroeder Nov 12 '17 at 17:57
  • Scan results are displayed to the user. There is no need to display APs that doesn't hear our client. – Smit Johnth Nov 12 '17 at 18:03
  • what does that have to do with guaranteeing connection? I do not see the logical connection – schroeder Nov 12 '17 at 18:22
  • If you can into bidirectional communication with AP you can connect to it. Well, receiving 1 answer from AP don't guarantee something, but not receiving it mostly means AP doens't hear you. – Smit Johnth Nov 12 '17 at 18:34
  • So, you basically, in a roundabout way, just said what the accepted answer said. But we have to read a lot into your answer to understand that. – schroeder Nov 12 '17 at 19:34
  • @schroeder read into my answer of 1,5 lines? No, my answer is not about that, it's about if you were already able to do 2 way conversation you mostly will be able to do it in the future... – Smit Johnth Nov 12 '17 at 21:24