 nwrickertsand groperPremium,MVM
join:2004-09-04
Geneva, IL
kudos:7
 ·AT&T U-Verse
| reply to fonzbear2000
Re: Questions about SSID broadcasting. There's no real benefit to turning off the SSID broadcast. However, if you turn it off, you should still be able to connect.
In windows, the effect is that you cannot scan for wifi networks, then click "connect" on the selected one. Rather, you have to manually enter the SSID and key before you can connect. If you put the hidden network early in the list of configured WiFi networks, then Windows will thereafter automatically connect (assuming you allow that). If the hidden net is too low on the list, it will only be found if nothing earlier on the list is found.
--
AT&T dsl; Westell 327w modem/router; openSuSE 11.0; firefox 3.0.10 |
|
| No benefit? To me a HUGE benefit would be that outsiders wouldn't be able to pick up my network signal and try to hack my network. If I do decide to do this, what is the SSID key and how do I manually enter it?
--
»Check this out! |
|
nwrickertsand groperPremium,MVM
join:2004-09-04
Geneva, IL
kudos:7 | They can still pick up your network signal, and they can still try to hack.
--
AT&T dsl; Westell 327w modem/router; openSuSE 11.0; firefox 3.0.10 |
|
|
|
1 edit | said by nwrickert:They can still pick up your network signal, and they can still try to hack. How can they pick it up if SSID broadcasting is turned off?
This is what my router says about SSID:
"Broadcast SSID
It is possible to make your wireless network nearly invisible. By turning off the broadcast of the SSID, your network will not appear in a site survey. Site Survey is a feature of many wireless network adapters on the market today. It will scan the "air" for any available network and allow the computer to select the network from the site survey. Turning off the broadcast of the SSID will help increase security."
--
»Check this out! |
|
 Mem
join:2002-01-03
White Plains, NY
·Verizon FiOS
·AT&T U-Verse
| Kismet can see SSID's that are turned off (since they are still broadcast in other protocols of the wireless) or you can use airopeek & airodump.
I prefer to leave it enabled, it is the encryption you use that secures the signal from others accessing your network. Use a secure password for the encyption. |
|
nwrickertsand groperPremium,MVM
join:2004-09-04
Geneva, IL
kudos:7 Reviews:
·AT&T U-Verse
| reply to fonzbear2000
How can they pick it up if SSID broadcasting is turned off? A casual windows user will not pick it up. Somebody with hacking tools will. The SSID is not broadcast, but it is still sent in other packets and can be found with suitable tools.
--
AT&T dsl; Westell 327w modem/router; openSuSE 11.0; firefox 3.0.10 |
|
| reply to fonzbear2000
quote:
To me a HUGE benefit would be that outsiders wouldn't be able to pick up my network signal
They are always able to pick up your network signal unless you turn your wireless Access Point (AP) or router with built in AP off. Your AP is always broadcasting. The so called "SSID broadcasting off" setting is actually telling the AP to send an empty name when it broadcasts. The AP still broadcasts several packets each second even if there is no traffic. And if a new PC/MAC tries to join the network the SSID is broadcast while that machine is joining the network.
quote:
try to hack my network.
Certainly. Anyone looking can still see your AP broadcasting and in less then a minute download the tools to start hacking if they have not so already. The only way to stop people seeing your AP is to pull the plug.
Note: Some Windows and Macintosh wireless drivers will fail to connect to an AP if they do not see its SSID broadcast even if you configure the SSID on your PC or MAC. I have a relatively large number of such machines I have to support. |
|
 AnavSarcastic Llama? Naw, Just AcerbicPremium
join:2001-07-16
Dartmouth, NS
kudos:3
1 edit | reply to fonzbear2000
The problem fonzbear is that your taking marketing crap from a router vendor as gospel but ignoring well educated and informed posts from IT professionals and experienced users.
The only practical thing turning off ESSID will do is attract the attention of those you wish to avoid. On top of that you run the risk of making it difficult for you and your family to use your own system as turning off ssid at times can create some issues in a busy wifi environment.
Bottom line is that for good wifi security just ensure that
a. you use WPA or WPA2 encryption with a strong key 20+ characters and
b. you use the strongest password your router will allow.
c. ensure you do not turn on or alllow unsecured remote access to your router or a PC.
d. as far as ssid. leave it on and make it unique for you to recognize out of the crowd but not that it points to your house/location/personal identification
As I have stated previously, the only thing worse than no security is a false sense of security, which is the problem your exposing once again. SSID is NOT a security mechanism.
--
Ain't nuthin but the blues! "Albert Collins".
Leave your troubles at the door! "Pepe Peregil" De Sevilla. Just Don't Wifi without WPA, "Yul Brenner"
LlamaWorks Equipment |
|
| said by Anav:The problem fonzbear is that your taking marketing crap from a router vendor as gospel but ignoring well educated and informed posts from IT professionals and experienced users. The only practical thing turning off ESSID will do is attract the attention of those you wish to avoid. On top of that you run the risk of making it difficult for you and your family to use your own system as turning off ssid at times can create some issues in a busy wifi environment. Bottom line is that for good wifi security just ensure that a. you use WPA or WPA2 encryption with a strong key 20+ characters and b. you use the strongest password your router will allow. c. ensure you do not turn on or alllow unsecured remote access to your router or a PC. d. as far as ssid. leave it on and make it unique for you to recognize out of the crowd but not that it points to your house/location/personal identification As I have stated previously, the only thing worse than no security is a false sense of security, which is the problem your exposing once again. SSID is NOT a security mechanism. I'm not ignoring anyone on here. I've read all the posts and now understand why turing off SSID isn't a good security method.
Question for you: How do I do option C?
--
»Check this out! |
|
docricePremium
join:2008-03-31
Fremont, CA | Most consumer routers have a "remote administration" option that allows access to the router's admin console from external networks. It's like allowing access to your home alarm's control panel from a place outside the house. |
|
 alanxenosH. Sapien
join:2008-09-26
Winnetka, IL
 ·T-Mobile US
·Sprint Broadband..
·Verizon Wireless..
·Verizon Broadban..
| reply to Mem
The network can be hacked easily, if the hacker gives a flying crap. The hacker can guess your SSID if it just suddenly drops off radar. For best results, use no personal info in SSID, change it as soon as Broadcast turned off, and, for crying out loud, don't pick the default one (ie: NETGEAR, linksys, 2WIRE192).
--
"When it comes to technology, if you are not part of the steamroller, you are part of the road." -Anon.
Find me @: »www.tinyurl.com/alanxweb |
|
keeskaPremium
join:2007-04-06
Sedona, AZ | quote:
change it as soon as Broadcast turned off
I assume this is a mis-type and you are not really recommending the so called "disable SSID broadcast" so may clueless router vendors include in their products? |
|
alanxenosH. Sapien
join:2008-09-26
Winnetka, IL Reviews:
·T-Mobile US
·Sprint Broadband..
·Verizon Wireless..
·Verizon Broadban..
| said by keeska: quote:
change it as soon as Broadcast turned off
I assume this is a mis-type and you are not really recommending the so called "disable SSID broadcast" so may clueless router vendors include in their products? I am, and so is most of this thread. I still believe that it cannot be the sole form of security, however it can be useful if used in conjunction with WPA2 , MAC Addr. filtering, and DHCP address limiting.
--
"When it comes to technology, if you are not part of the steamroller, you are part of the road." -Anon.
Find me @: »www.tinyurl.com/alanxweb |
|
AnavSarcastic Llama? Naw, Just AcerbicPremium
join:2001-07-16
Dartmouth, NS
kudos:3 | What farcical advice. Please don't post here if you have no clue how wifi works please ameritech. |
|
| reply to alanxenos
quote:
I am, and so is most of this thread.
Actually besides you and one or two people new to wireless no one who understands how wireless works has recommend disabling SSID broadcast in this thread.
quote:
in conjunction with WPA2 , MAC Addr. filtering, and DHCP address limiting.
Is your WPA PSK that bad that you have to resort to tricks? How about you set a good WPS PSK and forget the remaining tricks. |
|
Reviews:
 ·Cybersurf Intern..
| reply to fonzbear2000
said by fonzbear2000:No benefit? To me a HUGE benefit would be that outsiders wouldn't be able to pick up my network signal and try to hack my network. If I do decide to do this, what is the SSID key and how do I manually enter it? Actually hiding your broadcast generally has a NEGATIVE benefit.
1. Adminstrative. You essentially have more trouble in getting your computers connected. Connecting by clicking from a list vs manually inserting all the details...
2. From a cracker's point of view... we can see you even with you not broadcasting. Then it becomes a question... What are you trying to hide? Also more fun and a challenge to crack you.
IOW by not broadcasting... you are attracting the crackers. |
|
