n000b
@verizon.net
| [northeast] Are you sure your FIOS internet is secure?
Here is an interesting writeup on how Verizon deploys Fios in a less than secure manner. Verizon claims they give you a secure router. The Actiontec router ships with 40bit WEP enabled. It is very easy to change it to a more secure WPA but few people do. But did you know that the WEP key is part of the MAC address??
Also from what I have read in this forum some Verizon techs recommend WEP when users call asking for help switching to WPA.
»gigamike.wordpress.com/2008/05/0···lations/
Here is the link: |
|
deblin
Dark Side of the Moon
Premium,MVM
join:2001-09-01
Middletown, DE
 ·Verizon FIOS
 ·Comcast Workplace
 ·DSL EXTREME
| At least they have WEP enabled and aren't having it open by default. But yeah, WEP is basically worthless, even if you don't know that the MAC is part of the key, it's still trivial to break.
--
»hillaryis404.org/ |
|
Rattler
join:2001-04-13
Havertown, PA
·Verizon Online DSL
·Verizon FIOS
edit:
May 13th, @03:26PM
| reply to n000b
You would hope, by now, that most everyone who uses wireless sets up WPA (personal, at least) encryption with a strong key phrase - but they don't.
When I saw that the A/T came with WEP enabled, using its MAC address as the key, I was rather surprised. That's about as secure as posting your SSID and the key on a billboard in front of your house. Having that configuration is just about as bad as no encryption at all - maybe worse since the uninitiated THINK they're protected.
I think V* sets it up with WEP since there may be some older wireless cards/drivers that don't support WPA out of the box (my old Linksys WMP-54G happens to be one of them - needs Odyssey or another proggy to use WPA). But again, WEP isn't worth the effort if you want to protect against someone who knows what they're doing.
There are five wireless networks, in my area (not including mine), that I can see. Only two of them are encrypted and one of them uses WEP. The other three are running wide open. I have successfully, and only briefly, tapped into the open networks (only to see how vulnerable they really were) without any effort at all. Four of the five are running on CH-6 and two are using the out-of-the-box SSID (non-V* routers).
So, to point the finger at V* for setting up a poor wireless encryption protocol may be a little rough. To fault them for choosing a router that has demonstrated poor performance, under certain circumstances (as opposed to providing a decent router and a NIM), may very well be to the point.
--
Never raise your hands to your kids. It leaves your groin unprotected. -- Red Buttons |
|
keyboards
join:2001-02-14
Doylestown, PA
·Verizon FIOS
·Comcast
| reply to n000b
Unfortunately, my Dell laptop wireless card does not support WPA. I have changed the WEP key and used the higher bit count, but basically I only turn on the wireless when I need it for the laptop. The most secure wireless is no wireless 
--
REMEMBER: Stupidity should be painful !! |
|
Gary A
join:2008-03-02
Odessa, FL
·Verizon FIOS
edit:
May 13th, @04:13PM
| reply to Rattler
Shortly after the VZ Installer finished last September, I changed:
Router User Name & Password
Encryption to WPA-PSK with a (let's call it a very, very large) key (mixed alpha, case & numerics)
Disabled SSID broadcast
Enabled MAC Authentication
Turned off 802.11b mode (not for security, but what the heck)
Then I backed up the system configuration file to my HDD. About all you can do with an AT router for security. |
|
noping
a network cable is unplugged
Premium
join:2007-01-09 | reply to n000b
Why don't they ship the router with wireless turned off by default?
--
$ sudo rm -rf / |
|
seaquake
Premium,MVM
join:2001-03-23
Millersville, MD
clubs:  
·Verizon FIOS
| said by noping  :Why don't they ship the router with wireless turned off by default? Because a LOT of people use wireless. They want to make it as painless as possible to get wireless devices talking on the network. Unfortunately, ease comes at the price of security. |
|
seaquake
Premium,MVM
join:2001-03-23
Millersville, MD
clubs:
·Verizon FIOS
edit:
May 13th, @04:51PM
| reply to Gary A
said by Gary A :Disabled SSID broadcast I just took a wireless networking class and they are now saying this opens up another security issue. I think for a home user it's probably still not a problem to hide the SSID. But for businesses who are known to use wireless, hiding the SSID is just another obstacle in a determined hacker's way....they will figure out the hidden SSID rather quickly.
This is mentioned in the wireless FAQ here: »Wireless Networking Forum FAQ »What happens when I disable SSID Broadcast? Am I more secure?
The key is that you use WPA/2 and MAC filtering. Those go a LONG way in securing your network.
EDIT: I should also mention that by disabling "B" mode that you are potentially increasing your network efficiency. This assumes that you have all "A" or "G" traffic on your network and there are no "B" APs around. The figures we heard in class were 25 to 40% degradation of network performance with the presence of "B" devices on the network or APs in the same area as your network AP. |
|
Mr Anon
@ameritech.net
| reply to n000b
If you use the windows wireless service to configure the wireless card (xp sp1 or is it 2 and higher) it allow you to use WPA PSK even if the card doesn't support it.
It is really a shame that there have been a few good free utilities that provided this support as well but all have been gobbled up by companies and are now pay programs. |
|
Technogeez
Misanthropic curmudgeon
Premium
join:2007-01-20 | reply to n000b
Sheesh...any other major AT security issues you want to broadcast to the rest of the world???
--
Read your contract and TOS before signing anything. |
|
rocky01
Premium
join:2002-04-24
NE | reply to n000b
oddly enough WPA2 w/AES (and strong passphrases) is more secure and uses less bandwith. |
|
