Its a Secret
Whatever
Premium
join:2008-02-23
U B Funny
 ·Shaw
| reply to DaMaGeINC
Re: Questions about SSID broadcasting.
said by DownTheShore  :said by DaMaGeINC : Also making sure your pc's dont connect to any available network in range option is unchecked. Where would that be located? Uh, in response to DTS...
--
"In the future, that which is not mandatory will be illegal"
"Nobody knows the age of the human race, but everybody agrees that it is old enough to know better" - Anonymous |
|
DaMaGeINC
The Lan Man
Premium
join:2002-06-08
Greenville, SC
clubs: | reply to Its a Secret
What does Ad-Hoc have to do with anything? |
|
Its a Secret
Whatever
Premium
join:2008-02-23
U B Funny
·Shaw
| reply to DownTheShore
said by DownTheShore :Where would that be located? It's generally called 'ad-hoc networks' and should be located in your wireless utility, including the Windows wireless version.
--
"In the future, that which is not mandatory will be illegal"
"Nobody knows the age of the human race, but everybody agrees that it is old enough to know better" - Anonymous |
|
munky99999
Munky
join:2004-04-10
canada
clubs:
| reply to fonzbear2000
said by fonzbear2000 :No benefit? To me a HUGE benefit would be that outsiders wouldn't be able to pick up my network signal and try to hack my network. If I do decide to do this, what is the SSID key and how do I manually enter it? Actually hiding your broadcast generally has a NEGATIVE benefit.
1. Adminstrative. You essentially have more trouble in getting your computers connected. Connecting by clicking from a list vs manually inserting all the details...
2. From a cracker's point of view... we can see you even with you not broadcasting. Then it becomes a question... What are you trying to hide? Also more fun and a challenge to crack you.
IOW by not broadcasting... you are attracting the crackers. |
|
DaMaGeINC
The Lan Man
Premium
join:2002-06-08
Greenville, SC
clubs: | reply to DownTheShore
In your wireless properties. Advanced somewhere |
|
DownTheShore
Maddie Knows Poopie
Premium
join:2003-12-02
Beautiful NJ
clubs:
| reply to DaMaGeINC
said by DaMaGeINC : Also making sure your pc's dont connect to any available network in range option is unchecked. Where would that be located?
--
Patriotism is not waving a flag, it is living the ideals
Bush & Co. didn't keep us safe - 9/11 happend on their watch! |
|
DaMaGeINC
The Lan Man
Premium
join:2002-06-08
Greenville, SC
clubs:
·Charter Pipeline
 ·AT&T Southeast
| reply to fonzbear2000
As a wireless hacker myself, turning off the SSID does absolutely nothing for security.
A strong WPA password is the way to go. Also making sure your pc's dont connect to any available network in range option is unchecked.
--
Have a Networking problem or question? Stop by the Networking Forum and let us help you. |
|
F430
@cox.net
| reply to ameritech
quote:
I am, and so is most of this thread.
Actually besides you and one or two people new to wireless no one who understands how wireless works has recommend disabling SSID broadcast in this thread.
quote:
in conjunction with WPA2 , MAC Addr. filtering, and DHCP address limiting.
Is your WPA PSK that bad that you have to resort to tricks? How about you set a good WPS PSK and forget the remaining tricks. |
|
docrice
join:2008-03-31
Fremont, CA
| reply to fonzbear2000
The Wi-Fi access point component of your home router bridges client connections to your internal network, not to the external interface drop on your router. Those ICMP probes you see on the external interface isn't directly relevant to how you configure link-layer connectivity and security for your home.
The general consensus in Wi-Fi / 802.11 security for the common household is this: WPA2-PSK (using CCMP / AES) with a 20+ character, randomly-generated passphrase, preferably 63 to utilize the entire "key space," so to speak.
»https://www.grc.com/passwords.htm
If any of your clients or potential clients (such as friends with really old laptops) might not support WPA2-capable hardware, then WPA-PSK via TKIP / RC4 is your next best option.
If you want to layer on the "security through obscurity" tricks (which amount to paper-thin armor equivalent), then MAC address filtering, "non-standard" IP spaces, are options, although almost no one recommends them for good reason. |
|
fonzbear2000
Premium
join:2005-08-09
Saint Paul, MN
| reply to fonzbear2000
Well, 2 people responded and said it wasn't a concert so I guess I'm not going to worry too much about it.
--
»Check this out! |
|
fonzbear2000
Premium
join:2005-08-09
Saint Paul, MN
1 edit | reply to fonzbear2000
Well, depending on what people say in the thread I just started: »There are a TON of "found attack from" on my security log! , I may just rely on WPA encryption since a lot of people use that and seem to be doing just fine.
--
»Check this out! |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS | reply to ameritech
What farcical advice. Please don't post here if you have no clue how wifi works please ameritech. |
|
ameritech
The Helping Hand
join:2008-09-26
Winnetka, IL
·AT&T Yahoo
 ·AT&T CallVantage
·Comcast
·AT&T Yahoo
 ·Dish Network
| reply to keeska
said by keeska : quote:
change it as soon as Broadcast turned off
I assume this is a mis-type and you are not really recommending the so called "disable SSID broadcast" so may clueless router vendors include in their products? I am, and so is most of this thread. I still believe that it cannot be the sole form of security, however it can be useful if used in conjunction with WPA2 , MAC Addr. filtering, and DHCP address limiting.
--
"When it comes to technology, if you are not part of the steamroller, you are part of the road." -Anon.
Find me @: »www.tinyurl.com/alanxweb |
|
docrice
join:2008-03-31
Fremont, CA
| reply to fonzbear2000
It seems to me that the main issue here is your unfamiliarity with wireless networking in general, the options available regarding network administration, and the risks / benefits of each feature. Like anything else, 802.11 / Wi-Fi has a learning curve if you want to do anything beyond just hitting the connect button and doing minor client-side configuration.
This is unfortunately the nature of all things computer-related and given how consumer marketing has shaped most people's expectation of Wi-Fi into, "It's so simple and you just press a button a voilà!" I can see how many people easily run into walls when it comes to the step 2 out of the box in order to enable security.
The truth is that since wireless networking isn't something you can "see" without appropriate tools and the skills to use them, you have to rely on the word of experienced individuals who understand how the protocols are designed and are aware of the established history of how device (in)compatibilities and vendor implementations have worked out. Almost all the time, this is not very accurately reflected in marketing materials or in quick-start user guides. |
|
keeska
Premium
join:2007-04-06
Sedona, AZ
| reply to ameritech
quote:
change it as soon as Broadcast turned off
I assume this is a mis-type and you are not really recommending the so called "disable SSID broadcast" so may clueless router vendors include in their products? |
|
fonzbear2000
Premium
join:2005-08-09
Saint Paul, MN | reply to fonzbear2000
Thanks for the suggestions in the last 4 posts, however, I have no idea how to do what's being suggested.
--
»Check this out! |
|
ameritech
The Helping Hand
join:2008-09-26
Winnetka, IL
·AT&T Yahoo
·AT&T CallVantage
·Comcast
·AT&T Yahoo
·Dish Network
| reply to Mem
The network can be hacked easily, if the hacker gives a flying crap. The hacker can guess your SSID if it just suddenly drops off radar. For best results, use no personal info in SSID, change it as soon as Broadcast turned off, and, for crying out loud, don't pick the default one (ie: NETGEAR, linksys, 2WIRE192).
--
"When it comes to technology, if you are not part of the steamroller, you are part of the road." -Anon.
Find me @: »www.tinyurl.com/alanxweb |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
| reply to saltyvinegar
Another item that adds really nothing once you have a strong WPA encryption setup. Mac addresses are easily spoofied by the people that fonz is trying to protect himself from, and thus your advice is not all that helpful. If you have it already setup, there is no harm in leaving it in place, ie no ill effects, but do not presume this gives one any security. |
|
saltyvinegar
join:2009-06-17
Gloucester, ON | reply to fonzbear2000
If you want to add another level of security to prevent hacking then make sure you enable MAC filtering and only allow the MAC addresses of your local PC's or devices to connect. |
|
docrice
join:2008-03-31
Fremont, CA | reply to fonzbear2000
Most consumer routers have a "remote administration" option that allows access to the router's admin console from external networks. It's like allowing access to your home alarm's control panel from a place outside the house. |
|
