|
|
|
Secure Wireless |
|
|
|
Fri 27 Jun 2008, 13:49
|
Newbie
Group: Members
Posts: 13
Joined: 19-Feb 08
Member No.: 98,951
|
Hi, I just had to get a new wireless router for my cable modem and was wondering how to create a secure wireless network. Someone did it for me last time, but he's not in the country at the moment and I think I should work it out for myself by now anyway. If anyone could help with step-by step instructions, I'd be very grateful. At the moment I'm connected to the wireless fine, but everyone else could connect to it too and download stuff I don't have any say over. I've tried Network Setup but it says error when I try to get it to recognise a network I've just made, I so must be doing something wrong.
Thanks.
|
|
|
|
|
Mon 30 Jun 2008, 21:44
|
Moderator In Chief (MIC)
Group: Editors
Posts: 15,189
Joined: 23-Dec 01
From: Paris - FR
Member No.: 2,758
|
First, there NO secure Wi-fi save with very heavy pro systems…
Now, you have to do these to b the most secure possible:
- hide the SSID (the name of the network), it's not fullproof but it helps. - choose a better encryption sheme: (worst to better)
WEP>WAP>WAP2
the WAP systems way have better key handling with the TKIP, CCIS or AES options on (may not work for everyone, especially on macbooks…)
- lock the access to the network to the MAC address of the computer (the address of the network interface of the computer in the ofrm xx:xx:xx:xx:xx:xx:xx). It's crackable too, but adding features will make things a little more defficult to hack. - use long, convoluted passwords (size depends on the WEP or WAP) and change them regularly (at least once a month). - if you're hacked, close the wi-fi network some days, and change the password more often.
--------------------
|
|
|
|
|
Tue 1 Jul 2008, 13:55
|
Newbie
Group: Members
Posts: 13
Joined: 19-Feb 08
Member No.: 98,951
|
Thanks, Thought about trusting my neighbours since posting that last one about secure wireless. I was urged to do it by a guy that works for IBM, so I guess it's his job... but I wouldn't have otherwise. Having said that, some security might be better than none if I can manage it.
How do I get to SSID and encryption, and what is the ofrm. If you think it's probably not worth my time ...how would I know I 've been hacked anyway, please say. Thanks for your time...
|
|
|
|
|
Wed 2 Jul 2008, 05:21
|
Newbie
Group: Members
Posts: 1
Joined: 02-Jul 08
Member No.: 102,048
|
Another thing you should do to make your wireless network more secure is to change the default password for the router's administrative account.
> Thought about trusting my neighbours since posting that last one about secure wireless.
Do you ever use your computer to make online purchases? Any financial transactions? Send personal emails? Better safe than sorry.
> How do I get to SSID and encryption, and what is the ofrm.
It's different for every brand of router, but all of them come with documentation and/or an installation disk. These will instruct you on how to set up your router, including how to use the Administrator account to change your router's configuration. The SSID is the name you gave your router. If you didn't give your router a custom SSID (a name), then it still has the default name from the factory, so change that first.
Somewhere in the administrative user interface, is a setting that tells the router not to broadcast the SSID. That means people who don't know your SSID will not be able to find it so easily.
Also in the administrative user interface you can set up encryption. Now, on your laptop, you'll need to specify the SSID, and the type of encryption and the password that you configured on your router.
And again, remember to change the admin password on your router.
> how would I know I 've been hacked anyway, please say.
Not always easy to tell, but when your credit card company calls to ask if you've just purchased $6,000 worth of pantyhose online, then you've probably been hacked. If you notice that your network performance is below par, it could be that someone is using your bandwidth. The router's admin interface should also have a screen that displays all the clients currently connecting to the router. If there's a client there that you don't know - kill it and change your password.
This may sound difficult but it's not. Only a couple settings to change on your router and your Mac. And if you get confused, call or email the router manufacturer for technical support.
|
|
|
|
|
Wed 9 Jul 2008, 04:43
|
Junior Member
Group: Members
Posts: 178
Joined: 27-Jan 03
From: Austin - US
Member No.: 11,156
|
The most secure method of locking down your wireless router is to use the MAC address table (lepetitmartien, you rock in more ways that musically). If the router is fairly new (in the last 8 years or so) you should have access to a "MAC address table" or "Hardware Access List". This is the physical address of your ethernet or wireless card. If you choose this option, then the only machines to gain access to your network are those you add to this table.
You MAC address (Media Access Control) is formatted like xx:xx:xx:xx:xx:xx and is also known as your Ethernet ID or Airport ID on the Mac. Both available in your System Preferences -> Network Pref pane -> (interface*) -> Advanced, (*-where interface = the one you want to connect, in this case, Airport for wireless).
But as also noted, change your default admin password and user name if available in your router's management interface (all of these items are going to be detailed in your user manual, either paper version which should have come with, unless it shipped on a CD as a PDF, or electronically from the company's web site).
Good luck! Happy surfing. I think you'll find that being more self sufficient is a good thing since you'll be able to modify your network security settings to those that best fit your needs.
peace.
--------------------
|
|
|
|
|
Wed 9 Jul 2008, 13:41
|
Moderator In Chief (MIC)
Group: Editors
Posts: 15,189
Joined: 23-Dec 01
From: Paris - FR
Member No.: 2,758
|
to repeat it again:
Keep the SSID hidden, change regularly your password, go for the safest (not meaning safeproof) encryptions, use the MAc address, even attribuate fixed IPs to the computers (DHCP with manual address) and a just sufficient IP range (not starting at 1 if possible).
If suddenly your router blinks of traffic and you are not surfing in any way or if you start to crawl for no reason*, unplug it, wait a little, then change the password and SSID.
(*note that it can be just due to the connection crawling, not the neighbour downloading)
I won't focus that much on this, as in my practice, I've been safe save once in 3 years. And by a guy trying to connect. Now it all depends on your neighbourhood.
Stick to a range of signal you need, no more. And unplug the thing if you can when you're not around…
If you're paranoid (but some have to) don't use important passwords and codes while in wireless (such as your credit card).
And if it goes you have really bad neighbours, get back to ethernet, it's faster and way way safer.
--------------------
|
|
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
|
|