Wireless Security

[nolan65]

I have a Netgear router and have a few security questions:

If I disable all security (WEP) and lock the router by MAC(only allow MAC's I have entered), I don't broadcast the SSID either...Is this secure????

[5Gs]

that's definitely more secure than nothing at all. I always recommend turning off the broadcast no matter what. may I ask why you turned off encryption?

[jl_ss]

It's most secure to have wpa turned/mac filtering/and not to broadcast your ssid. With just mac filtering and not broadcasting your SSID, someone would have to work at breaking into your system. And quite honestly there are so many unprotected routers out there that someone just looking for an open system will just log into the easiest one possible. Right now I am looking at four seperate neighbors wireless networks all with no security on the routers. I can log in to each router and change all their passwords/settings if I want. I won't because I like all of them, but someone with malicious intent could do some damage.

[kevm]

let me guess. All of those networks are named <router manufactures name> with a password of admin

Change the name of your network

Enable Wep and pick a 128 bit key

Turn ssid broadcast off

if you know that you are having some other device join your wireless network, I recommend turning ssid back on through the web interface temporarily and then back off again. This is because manually entering an ssid into a wireless device can be a pain.

[mgorbsk]

I broadcast SSID, changed the password, and use only MAC filtering and no WEP or WPA. I also live in a development where the houses sit on min of an acre. My lot goes back 273', I'm over 175' wide, and my neighbors lots behind and beside are bigger. There's no way they're pulling in my signal. I also live out in the middle of nowhere with cows and farms all around me. I know someone skilled could crack it, clone MACs, but I don't have a PC networked wirelessly, just an XBOX and TIVO and the Wife occasionally jumps on with her ThinkPad from work, so I don't sweat it.

[nolan65]

Quote:

Originally posted by 5Gs
that's definitely more secure than nothing at all. I always recommend turning off the broadcast no matter what. may I ask why you turned off encryption?

My TIVO wireless adaptor will not work with security turned on.

I did have the encyrption on, WPK on and mac address locked with no SSID broadcast.
My other thought is to use 2 wireless networks. 1 for the TIVO only with mac address locked and another for my PC's (mine and wifes laptop, 2 kids machines..)

[mgorbsk]

Quote:

Originally posted by nolan65


My TIVO wireless adaptor will not work with security turned on.

I did have the encyrption on, WPK on and mac address locked with no SSID broadcast.
My other thought is to use 2 wireless networks. 1 for the TIVO only with mac address locked and another for my PC's (mine and wifes laptop, 2 kids machines..)

TIVO only supports WEP. Like it has been said before, although WEP is pretty lame, it's a little work to crack if you tighten it all down, Mac filter, change SSID often, and there are way too many open out there for people to want to waste the time. I use the Netgear USB adapter with the TIVO and it has been solid.

Before I'd run two wireless networks, I'd just get out some CAT 5 and wire the TIVO with a Linksys USB Ethernet adapter.

[nolan65]

Quote:

Originally posted by mgorbsk




I'd just get out some CAT 5 and wire the TIVO with a Linksys USB Ethernet adapter.

Thats the best solution. It was to easy for me to see!!!!! Why do we(i) make things so hard??THANKS

[mgorbsk]

Quote:

Originally posted by nolan65


Thats the best solution. It was to easy for me to see!!!!! Wht do we(i) make things so hard??THANKS

Depending how easily you could run the CAT 5, that's definitely the best if your router has open switch ports. Another way would be a little more expensive. You could buy the USB wired network adapter for the TIVO, buy a bridge and plant it close to the TIVO and all you'll need is a short network cable. You'll also be able to keep your entire network security set to WPA since as far as the TIVO is concerned, it's wired.

[kevin2057]

WEP can be cracked in a few minutes with available tools on the internet.


http://www.tomsnetworking.com/Sectio...e111-page1.php


Use WPA or WPA2 if your hardware and software support it and turn on all security measures. Make your password long. I type jibberish on the keyboard and then cut and paste 64 characters into pasword. Keep as text document then transfer to laptop and then cut and paste into password box. No mistakes that way.