|
|
Wireless Security
Aaron Akin, Database Administrator
Wireless networks are very common for individuals and organizations today. The ability to enter a network while mobile has great benefits. However, wireless networking has many security issues. If you are setting up a wireless network, here are some protective measures that you can take to ensure a more secure network.
1. Change the Default Administrator Password
Almost all wireless routers have an administrator password that is needed to login and modify the configuration settings. Most devices use a weak default password, such as password or admin, and others do not have a default password at all. These weak passwords are very well-known to hackers. When setting up a wireless router, make sure to choose a strong password, which should consist of letters, numbers, and special characters.
2. Turn on WPA/WEP Encryption
All Wi-Fi equipment supports some form of encryption. Encryption technology scrambles messages sent over wireless networks so that an attacker cannot make any sense of them. The two most common types of wireless encryption are WPA (Wi-Fi Protected Access) and WEP (Wired Equivalency Privacy). WEP is significantly less secure than WPA, but is far better than having an unencrypted network.
3. Change the Default SSID
Routers all use a network name called the SSID (Service Set Identifier). Manufacturers normally ship their products with the same SSID set. For example, the SSID for Linksys devices is usually “linksys.” Knowing the SSID does not by itself allow someone to break into your network, but it’s a start. More importantly, when someone finds a default SSID, they see it as a poorly configured network and are much more likely to attack it.
4. Enable MAC Address Filtering
Each piece of Wi-Fi equipment possesses a unique identifier called the “physical address” or “MAC address.” By turning on MAC filtering you can limit network access to only your systems. In order to use MAC filtering, you need to find (and enter into the router) the 12-character MAC address of every system that will connect to the network, so it can be inconvenient to setup, especially if you have a lot of wireless devices. MAC addresses can be “spoofed” (imitated) by a knowledgeable person, so while it’s not a guarantee of security, it does add another hurdle for potential intruders.
5. Do Not Auto-Connect to Open Wi-Fi Networks
Connecting to an open Wi-Fi network such as your neighbor’s router exposes your computer to security risks. In this situation, a hacker doesn’t have to try to find you because you have already come to him. Although not normally enabled, most computers have a setting available allowing these connections to happen automatically without notifying you. This setting should not be enabled except in temporary situations.
|
|
|
|
