wireless network - testing security

[far]

Dudes

 

I have set up a wireless network through a ADSL router for the main PC and pc card for the laptop

 

I have allocated an ssid on the router end and mirrored it on the pc card end.

 

I have 'enabled encryption' and set a passphrase on the router end and pc card end.

 

Now then, I have pretty much mumbled my way through the whole set up and it *seems* to be working

 

1) Is this all I need to do to make the network secure to prevent eavesdropping?

 

2) How can I check it is secure?

[Guest gzaerojon]

you could also set it up so only mac addresses you have alowed can only connect, thats all i've done on my wireless, no encryption or anything

[Whitesupraboy2]

thats secure enough for a home network.

 

If you want to make it more secure turn on MAC addressing.

 

This means machines will still be able to try and connect to your network, but will not be able to do anything unless their mac address is the table on the router.

 

in a command window type 'ipconfig /all' and you will see the machiens mac address shown as Phyiscal address. This is what will need to go in the Access list when MAC filtering is turned on.

 

Make sure you add your machine into the list before turning on the filtering or you'll lock yourself out of the router unless you have a machine cabled up

[Whitesupraboy2]

you could also set it up so only mac addresses you have alowed can only connect, thats all i've done on my wireless, no encryption or anything

 

exactly same as me at home

[Branners]

also worth hiding the SSID so nobody can see it and then you can set your wireless connection to go for it by name.

 

I have been told there are tools out there now that will break the WEP on a busy wireless unit in a few hours so its worth doing everything you can to secure it down.

 

This might be an opportunity for the techies to discuss WEP against the other encryption technologies..

 

JB

[far]

thanks dudes

 

So is there any way I can actually test that I have done it all correctly - as you know I not really clued up on stuff like this so I am keen to ensure its all secure

 

- if I go into the settings and change the pass phrase on the PC card end I presume this will stop things from working? thus prooving that the security is working??

[Guest gzaerojon]

thanks dudes

 

So is there any way I can actually test QUOTE]

 

give out your address and we'll pop round and try to hack your network

[carl0s]

MAC address filtering alone is completely useless as a security measure. It acts only as an inconvenience, not any kind of security. Using something like Airsnort or Sniffer Wireless one could capture the (unencrypted) packets, take note of the workstations MAC, and then set their own machine to use that MAC address..

 

WEP is a pain because you have to use either 5 or 13 character passphrases, and many routers only let you enter the key in hexadecimal.

 

WPA or WPA2 PSK (pre-shared key / shared key / shared passphrase / personal) is the one to go for, but windows machine need either to be XP SP2, or have some kind of wireless card configuration utility loaded to connect properly.

[far]

lol @ gz jon

 

Cheers Carlos - thats the one I have used.

 

Being a complete novice I have discovered now that I turn my Zone Alarm fire wall on the laptop with the PC card stops working on the net

 

Any suggestions?

[carl0s]

lol @ gz jon

 

Cheers Carlos - thats the one I have used.

 

Being a complete novice I have discovered now that I turn my Zone Alarm fire wall on the laptop with the PC card stops working on the net

 

Any suggestions?

 

There's probably an option to add the local network, which may be 192.168.0.x or 192.168.1.x to a 'trusted' zone.

 

But basically, it sounds as though you are firewalling yourself off where you shouldn't be.

 

I don't use personal firewall software, and think you'd be much better off removing ZA and just enabling XP's firewall.

[far]

Thanks mate

 

how do I find out what my local network is?

[VIL]

Anti-virus, personal firewall software etc is also an important part of the puzzle. The threats today use various exploits that one solution alone may not protect you from. Having worked in IT security for may years now I would recommend you look at a proven solution that will cover all bases (AV, Spam, Spyware, desktop firewall and even some now do HIPS). Many people will advise you of how good their free-ware etc is but dont be fooled. If its free or cheap you always end up with what you pay for!

[far]

thanks dude - I have most of that stuff on the PC already but the firewall is being a real pita to configure - probably coz I dont know what I'm doing!

[far]

whoohoo! I did it

 

Run/cmd/ ipconfig/all

 

 

get ip addresses

 

Bang them in 'trusted' section of Zone Alarms

[Shovels]

Hi Far, You've probably done this - but it's worth mentioning anyway - have you changed the default password on the router? I still come across routers that still have their default password on