RARPSL
join:1999-12-08
Suffern, NY
| reply to snipper_cr
Re: Lock your
said by snipper_cr  :said by ReVeLaTeD :said by anonanonanonanon :
Yes, actually. You will be liable because it was your car...
That's FUD. But I bet I can find quite a few specialists who will substantiate how easy it is to crack Wi-Fi security in any case. I'll vouch for you on that one. I can actively decrypt a WEP enabled network in about 20 minutes and gain full unencrypted access. Passively with no clients in about 3-4 days. This is why I always encourage people to use WPA with a strong password. You also want to turn off the SSID Beacon and turn on MAC Filtering. While the lack of an SSID will prevent the network from being "seen" by simple probe packages and the Operating System it will not eliminate it. The MAC filtering will require the attacker to monitor the transmissions to get a MAC Address to claim to be so makes it harder but not impossible to get into the Router. In both cases you want to make it as hard as possible to get in so as to make them go after easier prey. |
|
snipper_cr
join:2002-01-22
Wheaton, IL
clubs:
| said by RARPSL :You also want to turn off the SSID Beacon and turn on MAC Filtering. While the lack of an SSID will prevent the network from being "seen" by simple probe packages and the Operating System it will not eliminate it. The MAC filtering will require the attacker to monitor the transmissions to get a MAC Address to claim to be so makes it harder but not impossible to get into the Router. In both cases you want to make it as hard as possible to get in so as to make them go after easier prey. Smart advice from an even smarter man! Indeed, mac adresses can be spoofed, cloaked networks can be unclocked but as RARPSL said the idea is to make it as hard as possible to get a hacker (of which i would say .01% of the population actually can hack a wireless network, and .01% of those would care to go after yours) to hack your network.
Also some people debate the difference between WPA and WPA2 when in reality its just the stream cypher than changes - TKIP vs AES. WPA2 just standardizes the use of AES although with compatible hardware, WPA can use AES as well. There a difference between TKIP and AES? Sure... but not like it will matter.
--
The early bird catches the worm, but the second mouse gets the cheese. |
|
RARPSL
join:1999-12-08
Suffern, NY
| said by snipper_cr :said by RARPSL :You also want to turn off the SSID Beacon and turn on MAC Filtering. While the lack of an SSID will prevent the network from being "seen" by simple probe packages and the Operating System it will not eliminate it. The MAC filtering will require the attacker to monitor the transmissions to get a MAC Address to claim to be so makes it harder but not impossible to get into the Router. In both cases you want to make it as hard as possible to get in so as to make them go after easier prey. Smart advice from an even smarter man! Indeed, mac adresses can be spoofed, cloaked networks can be unclocked but as RARPSL said the idea is to make it as hard as possible to get a hacker (of which i would say .01% of the population actually can hack a wireless network, and .01% of those would care to go after yours) to hack your network. Thank you for the praise. 
The point is that if someone really wants to get on your Wireless Router, they can BUT most people will just look for an easy target and using encryption, no SSID Broadcast, MAC Filtering, etc. will make you not an easy target or not easily visible. The ones who will normally get hacked/used are running a wide open router and the more you lock it down the lower the chance yours will get used. If a casual hacker was looking for a router to use they'd go for the one that needs no effort to use.
Whenever I set up a router for anyone I lock it down as much as possible just for safety use. How much I lock it is partly do to location and other factors. An Apartment complex location gets a no SSID Beacon (if it is not "There" it will not even be seen). I go with WPA (or WAP if WPA is not available) and MAC Filtering (unless there is a need to be able to have Laptops that can temporally use the router). The WPA/WAP codes are stored on the main machine to allow the add-on laptop along with "How To" instructions. |
|
