Networking & wireless: Wireless Security w/New Router
Well...
by 70441.2227 - 9/9/06 4:37 PM In reply to: Here's my yes and no answers. by R. Proffitt
Hi Bob,
Thanks,
Bob
WHAT???
by Merranvo - 8/29/06 7:24 PM In reply to: In short, it allows one to walk past the usual security. by R. Proffitt
One Word, Hacking.
Wireless networks increase the chances you will be hacked. Internal Networks are not accessable from the outside, wireless networks are accessable within 'the zone'.
I have wanted to use this link for quite a while
http://www.cs.umd.edu/~waa/wireless.pdf#search=%22Wireless%20Network%20No%20Cloths%22
Now what you should ask is WHY someone would want to hack your net. The answer is simple, simply obserbing over the air transmissions can allow a person to gain access to sensitive infromation (such as your name, credit card, and possibly your SSN).
This, of course, would be infromation gathered though your daily use of the net. Most people have their names associated with their accounts, many people shop online, and some people use online bill paying.
Now before you go proclaiming that it is https remember that this guy is not hacking the WEBSERVER but just listining in to what you are broadcasting.
Now the real issue is the chances that a person would be skilled enough or care enough to try hacking YOUR network WOULD try hacking your network. I guess that it would better depend on where you live...
Personally, I say that the chances are negligable, Identity theft may be common, but getting a wireless network sniffer working and learning how to filter the infromation out takes time. Lots of time...
Eventually people may start making a practice of it, but when can not be said for certain.
Small Note
by Merranvo - 8/29/06 7:29 PM In reply to: WHAT??? by MerranvoYes HTTPS will encrypt data, but even if your browser encrypts the data it is by far less then what the server encryption is.
Basically, if your browser DOES encrypt the data that means it must recieve a encryption key or generate one. Both of these can be caught durring the transmission.
If the encryption key is generated via algorithm and you are sent the algorithm then all you need is to procure the algorithm and inplement the propper variables.
Hang on a sec
by bmedicky - 9/7/06 6:55 AM In reply to: Small Note by MerranvoLet's remind ourselves that in public key encryption, the encryption keys are never exchanged directly between the parties. The keys are generated with a combination of information that is indeed exchanged plus information that is generated locally and kept secret by each party. So even if a "man in the middle" attack sniffs out the info that is traded between the two parties, the keys still cannot be guessed because the eavesdropper cannot determine what info is being held back in secret. That's the miraculous part of the whole affair: that locally-held secret info, together with the info exchanged, can still generate identical keys.
Of course if someone hacks your machine and installs a keystroke sniffer, then you're in trouble. But let's not forget how public-key encryption works: that's the standard for secure browsing.
Or a rootkit as claimed.
by R. Proffitt - 9/7/06 7:01 AM
In reply to: Hang on a sec by bmedicky
http://software.newsforge.com/article.pl?sid=06/08/08/1351256
The jury still's out on this one.
Bob
router security
by zerochaos72 - 8/22/06 2:42 PM In reply to: Wireless Security w/New Router by ConfedWell I would change the wireless setting meaning you SSID name to something other than what the default name of the router is. Then you need to change the password and just my suggestion because it is known to work and there is less holes in the encryption is to use WEP 128 bit encryption and change the password from Admin to whatever you want. I would do all this by consoling into the wireless router by typing the IP addess into the web browser.Make sure you are hard wired into the wireless router into the internet port once you have connected your ISP modem to the router. For linksys I know it is 192.168.1.1 and that will take you into the router. You also need to setup the drivers and so forth. Anyway I hope that helps and if not let me know if this did not make sense.
Zerochaos
Thanks
by Confed - 8/22/06 6:36 PM In reply to: router security by zerochaos72Yes, made perfect sense. I understand about generating the WEP key, but then it gets foggy. I assume when I try to connect via my notebook that it lets me input the WEP key.
How about a D-Link 624
by pbbt - 8/25/06 6:18 PM In reply to: router security by zerochaos72How secure is a D-Link DI-624 High-Speed Wireless Router?
Thanks.
Its not so much the brand
by Merranvo - 8/29/06 7:42 PM In reply to: How about a D-Link 624 by pbbtBasically, if you want security it depends on the features, and that is only minimal security at that.
A) WEP or WPA protection is the primary defense
B) Limiting MAC address's. Takes very little time to bypass but it is a 'little more' protection
C) Some routers will allow you to set IP Ranges. (Basically the amount of 'ports' allowed) I am not certain of the weakness' here except that if an additinal person needs to access your network you need to add an extra port.
D) Disabling SSID Broadcast
Note, D can cause issues with older hardware.
Note D: additionallly.
by R. Proffitt - 8/29/06 7:53 PM
In reply to: Its not so much the brand by Merranvo
Thank for Note D.
In addition, wireless extenders, game wifi adapters (zero config ones especially), wifi cameras and more fail spectacularly without SSID broadcasts.
It's not much of a security leak issue so I only disable it when asked to do so. Also some drivers (even new ones) on some wifi cards fail without it.
This advice in my view has made money for my tech friends as they roll out to fix it.
Bob
WIFI Security
by JRXIC - 8/22/06 4:39 PM In reply to: Wireless Security w/New Router by Confedenable the WAP security feature and MAC access list as a second measure.
As for security WIFI is not secure if youre neighbor has the time and skills then you may be out of luck but those features should delay it.
check it out http://video.google.com/videoplay?docid=-1021256519470427962&q=wep+crack
now a days you can get step by step instructions on how to hack wifi networks. do a search on google videos for wep cracking and see for your self
MAC Addresses
by Confed - 8/22/06 6:41 PM In reply to: WIFI Security by JRXICDon't know much about MAC addresses. I've determined not to do any secure browsing on my notebook, but I don't know how to determine its address. I see the numerical entry spaces to enter them, but how does one determine a notebook's MAC address?
Again, thanks all. Seems like WAP security is a bit of a oxymoron.
MAC address
by kbennett50 - 8/25/06 5:28 AM In reply to: MAC Addresses by ConfedIf you want to see the MAC address of any NIC device, wireless or PCI, go to start>run> type cmd click ok, at the command prompt, type without quotes "ipconfig /all" you'll see an entry that says Physical address and a hex address following that. That's your MAC address. It is also on the NIC's themselves unless it's integrated with the motherboard.
If its Linksys, you should be fine already...
by Croixian - 8/25/06 5:03 AM In reply to: Wireless Security w/New Router by ConfedDuring the setup of your Linksys, the setup software should have generated an alpha-numeric code for you to either write down or print. You would then have needed this code to connect your wireless hardware to the router. Otherwise, the router will not let you connect. If this never took place, or you bypassed it in some way, then your network is unsecured. Anyone outside your home or in a home nearby would be able to log in.
But if you went through setup properly, and got the generated code from the router, you have nothing to worry about.
Only if..
by Merranvo - 8/29/06 7:33 PM In reply to: If its Linksys, you should be fine already... by CroixianOnly if a person does not attempt to hack it. I can not say for certain what protocol LinkSys employs but the sad fact is that Wireless protocols are flawed. It can be beat even if it is automatically set up.
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
