[Rhodes22-list] WiFi security

John Lock jlock at relevantarts.com
Sat Dec 8 10:45:59 EST 2007 

At 10:01 AM 12/8/2007 -0500, Robert Skinner wrote:
>Herb is dead on.  Everything he says is correct.  Lock up your WiFi.
>
>Two more issues:

A third issue - it's not readily enforced, but most ISP's have 
language in their Terms of Service (which you agreed to when you 
signed up) that prohibits sharing your access with 
third-parties.  Doesn't matter if you're aware of it or not, it's 
grounds for termination of your account.  Realistically, it would be 
hard for the ISP to prove unless they parked outside your house and 
confirmed your open router.  Excessive bandwidth usage is usually 
their first clue.

Here's a brief summary of items that can further secure your wireless network -

1) Turn off broadcasting of your SSID.

2) Always use at least 128-bit WEP security.  Your router may have 
additional, more secure methods available, but your computer(s) need 
to support them as well.  Use em if you got em.  It's a one time 
setup and requires no further effort once completed.

3) If your router supports more than one wireless mode ("A", "B", 
"G", etc.) turn off the ones you're not using.  Most newer computers 
are using Wireless G, so that may be all you need.

4) Make sure your router is set to "Block WAN access".  This means 
that unsolicited attempts to connect to your router from the Internet 
are ignored.  If your router offers it, block "Ping" requests as well.

5) If your router supports Remote Administration, turn it off.  It's 
unlikely that you'll be fiddling with your router from outside your network.

6) If you *really* want to tighten up your net, change your SSID and 
WEP keys periodically.  That means changing them in the router and 
every computer that uses it.

There's a good online service for testing your vulnerability to 
intruders from outside your network.  Go to 
https://www.grc.com/x/ne.dll?bh0bkyd2  and click thru all the 
tests.  This service will simulate various hack attempts on your 
router and report open ports or protocols.  There is also lots of 
information on how to close up those openings when detected.

Cheers!

John Lock
~~~~~~~~~~~~~~~~~~
s/v Pandion - '79 Rhodes 22
Lake Sinclair, GA
~~~~~~~~~~~~~~~~~~

More information about the Rhodes22-list mailing list