wireless security

El_Presidente_Pufferfish · 09-16-2006, 02:47 PM

got a new wrt54g since the old one just up and died mysteriously. I'm wondering how to set the security well.

I know to use WPA over WEP, but this router has WPA Personal, WPA Enterprise, and WPA2 Personal and WPA2 Enterprise.

Beyond that it gives me options between AES and TKIP for WPA Personal, and AES and AES+TKIP for WPA2 Personal. Enterprise options require a RADIUS server or something, so I think i'll stick with personal?

so yeah, whats up

hans5849 · 09-16-2006, 05:28 PM

i use WPA with TKIP

Axl_Rose · 09-16-2006, 06:33 PM

I personally use WEP with MAC filtering.

ivanolo · 09-16-2006, 06:39 PM

Make sure that your wireless adapter supports WPA2--perhaps the latest drivers add it--if you plan to use it.
I use WPA w/ TKIP + MAC filtering, and I have disabled the ability to access the router through the wireless connection. If I have to change settings, I need to physically connect it to my PC. I don't know if that'll stop hackers, but I hope it does....

* NOTE: Edited to correct spelling errors.

MSP · 09-16-2006, 07:40 PM

I still use WEP, can't help you! Sorry.

syztem · 09-16-2006, 11:21 PM

Quote:

Originally Posted by ivanolo

Make sure that your wireless adapter supports WPA2--perhaps the latest drivers add it--if you plan to use it.
I use WPA w/ TKIP + MAC filtering, and I have disabled the ability to access the router through the wireless connection. If I have to change settings, I need to physically connect it to my PC. I dont know if that'll stop hackers, but I hope it does....

that's exactly how i have it setup at work.

Undertaker989 · 09-23-2006, 10:57 PM

you may want to NOT broadcast the SSID.

msgwtco · 09-24-2006, 01:03 AM

Quote:

Originally Posted by Undertaker989

you may want to NOT broadcast the SSID.

Hiding the SSID isn't really going to do much in terms of security. Just make sure you are running WPA, with a good, long, difficult to crack Preshared Key.

Undertaker989 · 09-24-2006, 08:25 PM

Quote:

Originally Posted by msgwtco

Hiding the SSID isn't really going to do much in terms of security. Just make sure you are running WPA, with a good, long, difficult to crack Preshared Key.

why do you say that? It adds a layer of security via obscurity. Sure, there are tools out there, but this takes the 90% of users totally out of the equation.

El_Presidente_Pufferfish · 09-25-2006, 05:03 AM

Quote:

Originally Posted by Undertaker989

why do you say that? It adds a layer of security via obscurity. Sure, there are tools out there, but this takes the 90% of users totally out of the equation.

I think WPA takes 90% of the users totally out of the equation

Undertaker989 · 09-25-2006, 09:12 PM

Quote:

Originally Posted by El_Presidente_Pufferfish

I think WPA takes 90% of the users totally out of the equation

even still, you can still add another layer of security by hiding the SSID as well as using WPA.

msgwtco · 09-25-2006, 09:38 PM

Quote:

Originally Posted by Undertaker989

even still, you can still add another layer of security by hiding the SSID as well as using WPA.

Quote:

Originally Posted by ICSA Labs

"Contrary to a common belief that the SSID is a WLAN security feature and its exposure a security risk, the
SSID is nothing more than a wireless-space group label. It cannot be successfully hidden. Attempts to
hide it will not only fail, but will negatively impact WLAN performance, and may result in additional
exposure of the SSID to passive scanning. The performance impact of this misguided effort will be felt in
multiple WLAN scenarios, including simple operations like joining a WLAN, and in significantly longer
roaming times.
Trying to hide the SSID does not strengthen security in WLANs. The scarce resources of today’s WLAN
administrator are better spent tuning WLAN performance and operations with full SSID usage, and
enhancing WLAN security by deploying modern security technology, such as link-layer encryption, and
IEEE 802.1X authentication."

source:http://www.icsalabs.com/icsa/docs/ht...sid_hiding.pdf

Undertaker989 · 09-25-2006, 11:28 PM

I've never seen it impact any of our clients performance by not broadcasting the SSID. If you want to advertise your wireless network, go ahead, but I still say don't broadcast. If your performance is crap, then try broadcasting it and see if it makes a diff, which I doubt.

mistawiskas · 09-26-2006, 05:23 AM

My performance isn't affected at all by hiding SSID. I do all I can, lately, for my wireless security. Living smack-dab in the middle of town, I'm in the range of four wireless networks. Apartment living sux. I guess I could use this opportunity to get free broadband, but that's just not me.

~~Electric_Head~~ · 09-26-2006, 09:37 AM

Quote:

Originally Posted by mistawiskas

My performance isn't affected at all by hiding SSID. I do all I can, lately, for my wireless security. Living smack-dab in the middle of town, I'm in the range of four wireless networks. Apartment living sux. I guess I could use this opportunity to get free broadband, but that's just not me.

You can set us up some free file hosting

I don't care what kind of security you have on your wireless, if someone wants to get in, they'll get in, unless your running IEEE user authentication it won't take more than a day to break. Hiding the SSID and basic encryption will keep out the script kiddies and such, who are just looking for open networks to fuck around with, just as good as WPA.

Home > Discussion > Tech wireless security
Join The Cult	Tweakers	Image Gallery	Donate	Search	Today's Posts	Mark Forums Read

Yesterday, 05:30 PM	#2
Sponsored Links
(hide)

09-16-2006, 05:28 PM	permanent link to #2
hans5849 Has Absolutely no life Join Date: Jan 2005 Location: The Gorge, WA Posts: 7,164 (#4 ) My photos: 75 Thanked 2x in 2 posts	i use WPA with TKIP
	I make myself laugh.

09-16-2006, 06:33 PM	permanent link to #3
Axl_Rose Tweak Minion Join Date: Jan 2005 Posts: 2,429 (#38 ) My photos: 0 Thanked 0x in 0 posts	I personally use WEP with MAC filtering.
	Check My BF2 Stats. User name - dm4mo

09-16-2006, 06:39 PM	permanent link to #4
ivanolo Cheap Bastard Join Date: Jan 2005 Location: Springfield, IL Posts: 2,950 (#30 ) My photos: 0 Thanked 3x in 3 posts	Make sure that your wireless adapter supports WPA2--perhaps the latest drivers add it--if you plan to use it. I use WPA w/ TKIP + MAC filtering, and I have disabled the ability to access the router through the wireless connection. If I have to change settings, I need to physically connect it to my PC. I don't know if that'll stop hackers, but I hope it does.... * NOTE: Edited to correct spelling errors. Last edited by ivanolo; 09-17-2006 at 10:55 AM..
	:: ivanolo :: Live and let live

Welcome to Tweak3D

Login to reply. Sign-up here.

Be notified of new replies to this thread

	User Name Password Save? Not Registered Yet? Go here.

	Home Forums Deals Articles Reviews About

09-16-2006, 02:47 PM	permanent link to #1
El_Presidente_Pufferfish I grew up here Join Date: Jan 2005 Location: Michigan Posts: 857 (#98 ) My photos: 17 Thanked 0x in 0 posts	got a new wrt54g since the old one just up and died mysteriously. I'm wondering how to set the security well. I know to use WPA over WEP, but this router has WPA Personal, WPA Enterprise, and WPA2 Personal and WPA2 Enterprise. Beyond that it gives me options between AES and TKIP for WPA Personal, and AES and AES+TKIP for WPA2 Personal. Enterprise options require a RADIUS server or something, so I think i'll stick with personal? so yeah, whats up

09-16-2006, 07:40 PM	permanent link to #5
MSP Globe Trekker Join Date: Jan 2005 Posts: 17,843 (#1 ) My photos: 143 Thanked 10x in 10 posts	I still use WEP, can't help you! Sorry.

09-23-2006, 10:57 PM	permanent link to #7
Undertaker989 Tweak Minion Join Date: Jan 2005 Posts: 1,607 (#61 ) My photos: 0 Thanked 1x in one post	you may want to NOT broadcast the SSID.
	Barrack isn't all smiles and sunshine! So you don't know anything about Sarah Palin? Well, here are some of her juicy secrets!

09-25-2006, 11:28 PM	permanent link to #13
Undertaker989 Tweak Minion Join Date: Jan 2005 Posts: 1,607 (#61 ) My photos: 0 Thanked 1x in one post	I've never seen it impact any of our clients performance by not broadcasting the SSID. If you want to advertise your wireless network, go ahead, but I still say don't broadcast. If your performance is crap, then try broadcasting it and see if it makes a diff, which I doubt.
	Barrack isn't all smiles and sunshine! So you don't know anything about Sarah Palin? Well, here are some of her juicy secrets!

09-26-2006, 05:23 AM	permanent link to #14
mistawiskas outside the box! Join Date: Jan 2005 Location: Grants Pass, Oregon Posts: 14,992 (#2 ) My photos: 358 Thanked 9x in 9 posts	My performance isn't affected at all by hiding SSID. I do all I can, lately, for my wireless security. Living smack-dab in the middle of town, I'm in the range of four wireless networks. Apartment living sux. I guess I could use this opportunity to get free broadband, but that's just not me.
	Say goodbye to our beloved planet. Because there is alot more money to be made in emitting greenhouse gasses, than curtailing emissions. Get out of the box, then recycle it.

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode