Wireless Security

[Gteuk]

I would like people to be totally honest here, it is a fact that most wireless routers are not secure, I have nothing to hide you may think....

 

Your neighbours could be getting free internet in your name

They could be doing illegal stuff with your IP

People can park outside and capture your data as you send it

And a lot more

 

So come on be honest in the poll, it is anonymous so no one will know who you are, then you can lie about your security in the thread :(

[NikpV]

can only use wep (not wpa- because not all my hardware supports it) + mac filtering + firewall for outgoing/incoming connections :( most ports cloaked/stealth

[jwilliams]

I use WEP only but feel I should limit it to listed computers now.

 

I can access my neighbours network if mine fails!!

[Gteuk]

When we have enough answers, I will go through the merits of each one so you can make an informed decision as to whether you are secure or not :(

[teresa]

mines wep enabled bloody key is a pain to remember though

[mumof4]

im not wireless so im ok..what is WEP anyway?

[Gteuk]

I will go through what it all means a little later, as well as how good or not so good the different methods are, I think Nick knows where I am going with this one :(

[Gteuk]

Wolfies writing an essay

[Guest wolfie]

nah cant be asked :(

 

billiard pro

Edited February 19, 2007 by wolfie

[NikpV]

sneaking around anonymously - both of you - profiles give you away :(

[Gteuk]

No matter I see all no matter if they annon or not :( anyway back to the thread

[NikpV]

ok some think - wireless encryption protocol - but

 

WEP=Wired Equivalent Privacy ie designed to give the same privacy as a wired network.

[Guest Cepheus]

Wep encrypted, only allows permitted mac addresses and ip addresses, firewall on router and software firewall & anti everything software on all machines that connect to it. (apart from the Nintendo DS's :(

[Gteuk]

Here goes then I want to get from work on time tonight

 

WEP = Wired Equivilant Privacy is one of the most secure of all the security measures, but alas it is actually not that secure and has not been for a long time, hence the introduction WPA encryption, the problem with WPA is 1) not completely compatible yet 2) it still uses the same RC4 ASlgorythm as WEP so is still hackable. With the right tools (software) someone can access your network within 2 minutes.

 

MAC ID = Allow only XYZ computers into the network, just to let you know there are two types of attack 1)A Passive attack 2)An Active attack

 

1) A passive attack is where sombody monitors (sniffs) the data being passed from one device to another, this is done by capturing the packets transfered, this can collect data such as your email login details etc, ALSO your MAC ID

 

2) An active attack, from using method 1 they can now spoof your MAC ID and to all intent and purpose they become you on the internet, the have full access to the network, and do things over the internet in your name.

 

 

Using both methods = Safer than 1 or 2 alone but still not secure.

 

I have a firewall thats all I need = More fool you, a firewall will usually allow you to have access to an ip range and its subnet i.e. 10.0.0.1 upto 10.0.0.254 and also people in that IP range have access to you, so really offers no protection. You will unknown to you have ports set to be open by different types of software which in itself is a risk.

 

If the firewall is on your router it is guarenteed to let people in no matter, firewalls on routers are very basic unless you go into the realms of cisco pixs or the like. If you rely on only a firewall to protect you and your network then do not be suprised if you are hacked, or worst case scenario police trace an internet fraud to your address due to a toerag ordering goods with a stolen credit card through your router.

 

What is a WEP Key = from the explainations above you should now be thinking how do I do this I need to set this up now.

 

No worries when I get home tonight I will add a tutorial into the downloads section of how to set up your network a bit more securely with a few other tricks using DHCP config and the like.

 

The best way will always be CAT5 connections and turn off the wireless

[Guest MATT jr]

ours is WPA encryption, also has a firewall on the go, aswel as anti-virus & firewall software on the computers - all set to a decent level. the router will only allow predetermined computers on aswel (using MAC address filtering IIRC)

 

also, any suspect vans outside with a laptop on, will be dealt with accordingly...

http://members.aol.com/realwaileaestate/images/cat%20w-machine%20gun.jpg

 

MJR

[NikpV]

and on AOL too ????

[Gteuk]

and on AOL too ????

 

Eh?

 

AO-Hell is never secure ??

[NikpV]

just noticd the Matt_jr picture hosting - thats allll

[Guest MATT jr]

lol im on freeserve...wanadoo, i mean orange home lmao...its changed 3 times while weve been with them! very good service tho

 

MJR

[Gteuk]

mines wep enabled bloody key is a pain to remember though

 

I would suggest you use 128 bit rather than 64 bit unless you're already using 128 bit and just got an excellent memory

 

64 bit =10 letters

128 = 24 letters

[big_kev]

I use WAP-PSK with my SSID hidden and only allow known MAC addresses.

 

If I check available networks I can see 2 unsecured networks nearby and 1 secure one.

All of these are displaying their SSID.

[El Dingo]

Same here - use WPA-PSK, so I nulled my vote.

[teresa]

ok seen the settings..... now a question we have 4 pc's in the house 2 wireless and 1 cat 5 and 1 cat6 straight to linkseys router the router is a wrt54g version 3.1 my b/f is running a game through his and he wants to know whats the best way to set it up for gaming... because hes set it up using the QoS and DNZ etc as recommended in the user guide but no matter what he does he ends up with lag is there anyway you can set this router up with 100base TX full duplex

thanks

teresa

[El Dingo]

Hi T, AFAIK if you can enable uPNP you shouldn't need a DMZ (i.e. the application will open only the ports it requires).

 

As for the 'lag'? Sorry, I don't know - El Xando has no problems with PS2 games via network interface, PSP and Game Boy DS. No lag whatsoever.

 

I used to set up port forwarding, but found uPNP easier and more reliable.

[Gteuk]

What game and is he running the server for the game ? there is a way to sort it just need more info ?