DVD Talk
Help! NOt smart enough to set up wireless security [Archive] - DVD Talk Forum
 
Best Sellers
1.
2.
3.
4.
5.
6.
7.
8.
The Longest Day
Buy: $54.99 $24.99
9.
10.
DVD Blowouts
1.
2.
3.
4.
5.
6.
7.
Alien [Blu-ray]
Buy: $19.99 $9.99
8.
9.
10.

PDA
DVD Reviews

View Full Version : Help! NOt smart enough to set up wireless security


ESUguy
01-22-12, 03:12 PM
I've just gone the process of setting up wireless security on my Linksys WRT54G, and now I don't see the network. I've gone through the process of setting up a wireless connection manually, but it doesn't end up connecting, and it's not listed in my available wireless networks. I figure it's something basic I'm missing, but I can't figure it out.

X
01-22-12, 03:16 PM
Do you have Broadcast SSID on?

ESUguy
01-22-12, 03:40 PM
Nope, disabled.

X
01-22-12, 04:41 PM
Well turn it on!

ESUguy
01-22-12, 10:01 PM
Done, and that works. I thought if I disabled that I'd just have to specify the router instead of letting everyone else see.

X
01-22-12, 10:30 PM
It depends on whether your client lets you specify the network without being able to see it. Even if it does, sometimes you can't connect if you turn of SSID. I usually turn it off though.

Jay G.
01-25-12, 08:20 AM
Turning off SSID broadcast doesn't really improve wireless security, since there are ways for wireless sniffers to get the SSID anyway.

Also, using MAC filtering is mostly useless:
http://blogs.technet.com/b/steriley/archive/2007/10/16/myth-vs-reality-wireless-ssids.aspx

The best wireless security strategy is to use AES encrypted WPA or WPA2 (WEP is completely cracked), and to use a long password (or passphrase) of 15 or more characters.

Also, disable Wifi Protected Setup (WPS) on your router, if possible.
http://arstechnica.com/business/news/2012/01/hands-on-hacking-wifi-protected-setup-with-reaver.ars
https://docs.google.com/spreadsheet/ccc?key=0Ags-JmeLMFP2dFp2dkhJZGIxTTFkdFpEUDNSSHZEN3c#gid=0

X
01-25-12, 11:08 AM
Turning off SSID broadcast doesn't really improve wireless security, since there are ways for wireless sniffers to get the SSID anyway.I'm surprised it took so long for someone to chime in with the inevitable statement that there is always a person with a wireless sniffer within range of your home network trying to break into it. I'm sure I have a dozen within the range of my home network. Oh, and forget about specifying MAC addresses, they know how to clone those too. My neighbor's wife is doing that all the time.

The one thing I would say to do is not identify yourself with the SSID. Make it unique, but meaningless.

Jay G.
01-25-12, 12:21 PM
I'm surprised it took so long for someone to chime in with the inevitable statement that there is always a person with a wireless sniffer within range of your home network trying to break into it. I'm sure I have a dozen within the range of my home network. Oh, and forget about specifying MAC addresses, they know how to clone those too. My neighbor's wife is doing that all the time.
The point is that if the person trying to hack into your wifi is halfway tech savvy, they're going to be able to get around these "defenses" pretty simply (the tools already exist for download). And if they're not tech savvy, they're not likely going to get past a WPA-protected passcode (your neighbor's wife isn't likely dealing with hashes and rainbow tables either).

MAC filtering, for one, could cause you to lose access to your wifi if a hacker decides to spoof your MAC in order to get into your wifi.

Keep in mind that the SSID is still being broadcast, it's just not broadcast by the router. Instead, the devices connected to it will be broadcasting it as they look for it.
http://www.tomschaefer.org/web/wordpress/?p=1610

In short, MAC filtering and turning off SSID broadcast cause more problems than they add security.

Decadance
01-25-12, 12:48 PM
I'm surprised it took so long for someone to chime in with the inevitable statement that there is always a person with a wireless sniffer within range of your home network trying to break into it. I'm sure I have a dozen within the range of my home network. Oh, and forget about specifying MAC addresses, they know how to clone those too. My neighbor's wife is doing that all the time.

The one thing I would say to do is not identify yourself with the SSID. Make it unique, but meaningless.

Maybe not in Podunk wherever you live, but in cities it is a true concern.

Holydoc
01-25-12, 01:13 PM
Let me also suggest that you reduce the power of your signal as well to only cover your home or apartment. This will prevent those people a block down the road from being able to see your network and start trying to break in. I found with my UVERSE router on full power, I could see it all the way to end of my block. I have the signal turned down now so that it is only accessible when you are on my property.

Finally I would also set it up so that your wireless is only on when you are home using it. Most routers, like yours, have internet access policies or sometimes called Parental controls that allow you to setup what days and time of days you want to allow access. Why have your wireless available to anyone if you are at work between 8am-5pm? Why have it available late at night if you are in bed at 10pm? This will discourage neighborhood kids coming home from school to practice hacking on you or even prevent that neighbor who is "borrowing" your internet to play games all night from hacking in. Unfortunately, the UVERSE router does not have this capability. Yours does though.

4KRG
01-25-12, 02:00 PM
I'm surprised it took so long for someone to chime in with the inevitable statement that there is always a person with a wireless sniffer within range of your home network trying to break into it. I'm sure I have a dozen within the range of my home network. Oh, and forget about specifying MAC addresses, they know how to clone those too. My neighbor's wife is doing that all the time.


:lol:



The one thing I would say to do is not identify yourself with the SSID. Make it unique, but meaningless.

Yes, in case someone hates you enough to come find your SSID and do something like download child porn on your network.



In short, MAC filtering and turning off SSID broadcast cause more problems than they add security.

Very true, don't bother with either of these.

4KRG
01-25-12, 02:02 PM
Maybe not in Podunk wherever you live, but in cities it is a true concern.

If I fire up a high gain directional antenna and do a 360 degree turn with if from the upper level of my house, I can 'hit' 50 + wireless networks with enough signal to use them.

Of course I would NEVER do anything unscrupulous ;) but I have jokingly thought about killing my internet service and just jumping around on each of these for a while. :lol: