Wireless security

Discussion in 'Wireless Networking' started by C Tate, Jan 8, 2005.

  1. C Tate

    C Tate Guest

    I have a wireless broadband connection. I have read about making it
    'secure' - some of the measures seem to suggest:

    1. Reset admin password

    2. Reset default SSID

    3. Disable SSID Broadcast

    4. Change from default channel

    5. Enable WEP with 128 bit key

    6. Change Authentication Type to Shared Key

    I am still not clear about some things, however. Surely anybody bringing a
    laptop with wireless capabilities within range of my house will still be
    able to logon to the Internet using my connection, even if I implement the
    above suggestions? Which of the above measures would stop them doing so?
     
    C Tate, Jan 8, 2005
    #1
    1. Advertising

  2. C Tate

    C Tate Guest

    PS. I still want to be able to connect wirelessly to my broadband connection
    with my laptop! The main connection is with my PC but occasionally my
    partner will want to share the Internet connection with a laptop. I don't
    want to lock the laptop out, as it were.
    "C Tate" <> wrote in message
    news:...
    >I have a wireless broadband connection. I have read about making it
    >'secure' - some of the measures seem to suggest:
    >
    > 1. Reset admin password
    >
    > 2. Reset default SSID
    >
    > 3. Disable SSID Broadcast
    >
    > 4. Change from default channel
    >
    > 5. Enable WEP with 128 bit key
    >
    > 6. Change Authentication Type to Shared Key
    >
    > I am still not clear about some things, however. Surely anybody bringing a
    > laptop with wireless capabilities within range of my house will still be
    > able to logon to the Internet using my connection, even if I implement the
    > above suggestions? Which of the above measures would stop them doing so?
    >
    >
    >
    >
     
    C Tate, Jan 8, 2005
    #2
    1. Advertising

  3. C Tate

    Jack Guest

    Hi
    If another Wireless Signal is propagating in your reception area it might
    appear in your available Wireless Network. Nothing is wrong with this that
    is the way Wireless technology works (the Air around us does not
    discriminate signals).
    Using the measures of security is the step to insure that others can not use
    your signal, and vice versa.
    Wireless - Basic Configuration: http://www.ezlan.net/Wireless_Config.html
    Wireless - Basic Security: http://www.ezlan.net/Wireless_Security.html
    Jack (MVP-Networking).


    "C Tate" <> wrote in message
    news:...
    > I have a wireless broadband connection. I have read about making it
    > 'secure' - some of the measures seem to suggest:
    >
    > 1. Reset admin password
    >
    > 2. Reset default SSID
    >
    > 3. Disable SSID Broadcast
    >
    > 4. Change from default channel
    >
    > 5. Enable WEP with 128 bit key
    >
    > 6. Change Authentication Type to Shared Key
    >
    > I am still not clear about some things, however. Surely anybody bringing a
    > laptop with wireless capabilities within range of my house will still be
    > able to logon to the Internet using my connection, even if I implement the
    > above suggestions? Which of the above measures would stop them doing so?
    >
    >
    >
    >
     
    Jack, Jan 8, 2005
    #3
  4. Some thoughts....
    1. Resetting the password will stop others who do gain access to your
    router from changing the settings - essential.
    2. Reset the default SSID changes what your wireless router broadcasts
    itself as. When used in conjunction with...
    3. Disable SSID broadcast - can improve the security of your wireless
    connection because it will not be visible so others will not know what to put
    into their settings to connect to you - desirable.
    4. Change from the default channel - used to reduce electro-magnetic
    interference (EMI) effects.
    5. Enable WEP 64 or 128 bit - this provides a meduim level of protection
    for your network using encryption and is what I think you are actually
    looking for. With this enabled, it will prevent most people from accessing
    your network. I say 'medium' and 'most people' because there are some
    inherent holes in WEP but these require a real expert with specialist
    equipment to exploit. If someone with these skills and resources is trying
    to hack into your wireless connection then you have much bigger problems than
    wireless security!!!!
    6. Sgared Key - pretty sure this is a WPA setting. WPA is better than WEP
    but there are less devices that support it at the moment.

    So in summary -
    Reset the password. This will not affect the laptop.
    Reset the default SSID and disable broadcast. This will have to be reset
    onto the laptop.
    Enable either WPA or WEP. If you only have WEP then 64 bit is easier
    because there are less hex pairs to enter into the laptop!!

    The best Security/protection is a layered defensive system. Changing and
    hiding the SSID means that others cannot see your network etc...

    There is more at stake here than just protecting your internet connection.
    Any network shares on your PC and laptop would be available to anyone who was
    able to connect to your network.

    Best of luck.



    "C Tate" wrote:

    > I have a wireless broadband connection. I have read about making it
    > 'secure' - some of the measures seem to suggest:
    >
    > 1. Reset admin password
    >
    > 2. Reset default SSID
    >
    > 3. Disable SSID Broadcast
    >
    > 4. Change from default channel
    >
    > 5. Enable WEP with 128 bit key
    >
    > 6. Change Authentication Type to Shared Key
    >
    > I am still not clear about some things, however. Surely anybody bringing a
    > laptop with wireless capabilities within range of my house will still be
    > able to logon to the Internet using my connection, even if I implement the
    > above suggestions? Which of the above measures would stop them doing so?
    >
    >
    >
    >
    >
     
    =?Utf-8?B?U2Vhbg==?=, Jan 9, 2005
    #4
  5. C Tate

    Sooner Al Guest

    Keep in mind tools like Kismet can easily find cloaked SSIDs. There is really no good reason to not
    broadcast the SSID...

    --
    Al Jarvi (MS-MVP Windows Networking)

    Please post *ALL* questions and replies to the news group for the mutual benefit of all of us...
    The MS-MVP Program - http://mvp.support.microsoft.com
    This posting is provided "AS IS" with no warranties, and confers no rights...

    "Sean" <> wrote in message
    news:...
    > Some thoughts....
    > 1. Resetting the password will stop others who do gain access to your
    > router from changing the settings - essential.
    > 2. Reset the default SSID changes what your wireless router broadcasts
    > itself as. When used in conjunction with...
    > 3. Disable SSID broadcast - can improve the security of your wireless
    > connection because it will not be visible so others will not know what to put
    > into their settings to connect to you - desirable.
    > 4. Change from the default channel - used to reduce electro-magnetic
    > interference (EMI) effects.
    > 5. Enable WEP 64 or 128 bit - this provides a meduim level of protection
    > for your network using encryption and is what I think you are actually
    > looking for. With this enabled, it will prevent most people from accessing
    > your network. I say 'medium' and 'most people' because there are some
    > inherent holes in WEP but these require a real expert with specialist
    > equipment to exploit. If someone with these skills and resources is trying
    > to hack into your wireless connection then you have much bigger problems than
    > wireless security!!!!
    > 6. Sgared Key - pretty sure this is a WPA setting. WPA is better than WEP
    > but there are less devices that support it at the moment.
    >
    > So in summary -
    > Reset the password. This will not affect the laptop.
    > Reset the default SSID and disable broadcast. This will have to be reset
    > onto the laptop.
    > Enable either WPA or WEP. If you only have WEP then 64 bit is easier
    > because there are less hex pairs to enter into the laptop!!
    >
    > The best Security/protection is a layered defensive system. Changing and
    > hiding the SSID means that others cannot see your network etc...
    >
    > There is more at stake here than just protecting your internet connection.
    > Any network shares on your PC and laptop would be available to anyone who was
    > able to connect to your network.
    >
    > Best of luck.
    >
    >
    >
    > "C Tate" wrote:
    >
    >> I have a wireless broadband connection. I have read about making it
    >> 'secure' - some of the measures seem to suggest:
    >>
    >> 1. Reset admin password
    >>
    >> 2. Reset default SSID
    >>
    >> 3. Disable SSID Broadcast
    >>
    >> 4. Change from default channel
    >>
    >> 5. Enable WEP with 128 bit key
    >>
    >> 6. Change Authentication Type to Shared Key
    >>
    >> I am still not clear about some things, however. Surely anybody bringing a
    >> laptop with wireless capabilities within range of my house will still be
    >> able to logon to the Internet using my connection, even if I implement the
    >> above suggestions? Which of the above measures would stop them doing so?
    >>
    >>
    >>
    >>
    >>
     
    Sooner Al, Jan 9, 2005
    #5
  6. Shared key authentication only applies to WEP secured networks, not WPA.
    Shared mode does not offer any additional security if you are already using
    an encryption type like WEP or WPA.

    --
    Jerry Peterson
    Windows Network Services - Wireless

    This posting is provided "AS IS" with no warranties, and confers no rights.
    "Sean" <> wrote in message
    news:...
    > Some thoughts....
    > 1. Resetting the password will stop others who do gain access to your
    > router from changing the settings - essential.
    > 2. Reset the default SSID changes what your wireless router broadcasts
    > itself as. When used in conjunction with...
    > 3. Disable SSID broadcast - can improve the security of your wireless
    > connection because it will not be visible so others will not know what to
    > put
    > into their settings to connect to you - desirable.
    > 4. Change from the default channel - used to reduce electro-magnetic
    > interference (EMI) effects.
    > 5. Enable WEP 64 or 128 bit - this provides a meduim level of protection
    > for your network using encryption and is what I think you are actually
    > looking for. With this enabled, it will prevent most people from
    > accessing
    > your network. I say 'medium' and 'most people' because there are some
    > inherent holes in WEP but these require a real expert with specialist
    > equipment to exploit. If someone with these skills and resources is
    > trying
    > to hack into your wireless connection then you have much bigger problems
    > than
    > wireless security!!!!
    > 6. Sgared Key - pretty sure this is a WPA setting. WPA is better than WEP
    > but there are less devices that support it at the moment.
    >
    > So in summary -
    > Reset the password. This will not affect the laptop.
    > Reset the default SSID and disable broadcast. This will have to be reset
    > onto the laptop.
    > Enable either WPA or WEP. If you only have WEP then 64 bit is easier
    > because there are less hex pairs to enter into the laptop!!
    >
    > The best Security/protection is a layered defensive system. Changing and
    > hiding the SSID means that others cannot see your network etc...
    >
    > There is more at stake here than just protecting your internet connection.
    > Any network shares on your PC and laptop would be available to anyone who
    > was
    > able to connect to your network.
    >
    > Best of luck.
    >
    >
    >
    > "C Tate" wrote:
    >
    >> I have a wireless broadband connection. I have read about making it
    >> 'secure' - some of the measures seem to suggest:
    >>
    >> 1. Reset admin password
    >>
    >> 2. Reset default SSID
    >>
    >> 3. Disable SSID Broadcast
    >>
    >> 4. Change from default channel
    >>
    >> 5. Enable WEP with 128 bit key
    >>
    >> 6. Change Authentication Type to Shared Key
    >>
    >> I am still not clear about some things, however. Surely anybody bringing
    >> a
    >> laptop with wireless capabilities within range of my house will still be
    >> able to logon to the Internet using my connection, even if I implement
    >> the
    >> above suggestions? Which of the above measures would stop them doing so?
    >>
    >>
    >>
    >>
    >>
     
    Jerry Peterson[MSFT], Jan 11, 2005
    #6
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. AM
    Replies:
    4
    Views:
    887
  2. Replies:
    0
    Views:
    775
  3. Rick Sears
    Replies:
    0
    Views:
    523
    Rick Sears
    Jul 29, 2003
  4. COMSOLIT Messmer

    IT-Security, Security, e-security

    COMSOLIT Messmer, Sep 5, 2003, in forum: Computer Support
    Replies:
    0
    Views:
    636
    COMSOLIT Messmer
    Sep 5, 2003
  5. Ablang
    Replies:
    2
    Views:
    603
    Gimpy
    Jun 10, 2006
Loading...

Share This Page