New
#1
Will the real Wireless security procedure please stand up?
When I set up my (only on when needed) wireless network, I researched many tutorials, security schemes and 'expert' opinions. So how can it be that what some say are essential steps to truly securing your wireless network, others say are myths and, in fact, detrimental to security?
Having read the information at the links provided, I've come to believe the latter.
First, a tutorial on these forums:
Wireless Security: How To Protect Your Network
Note the recommendations to disable SSID broadcasting, use MAC filtering and turning off DHCP.
Even Linksys endorses some of these practices:
Linksys | Learning Center
Now read the information at these links (below). They not only contradict these methods, but condemn them as 'security suicide':
The six dumbest ways to secure a wireless LAN | ZDNet
Wireless LAN security guide - By George Ou
How to break MAC filtering (wifi security)
MAC filtering seems to be the largest security vulnerability here...It seems that any MAC address entered in the permit filter is automatically allowed in...no password authentication required!(?) With the right freeware, anyone can determine your MAC address and spoof it. One article analogizes this to using an ID card which anyone can steal and walk right in the front door with no one to stop them.
One wonders, if the 'accepted' practices of filtering, SSID disabling, etc are so detrimental to security, why do thes "myths" continue unabated?
I myself have disabled MAC filtering. SSID broadcast disabling doesn't seem to be a large issue, so I'll wait to re-enable that when more data is in.
Not mentioned yet is a strong password. This may be the best defense, coupled with a strong security protocol (such as WPA, WPA2) and encryption. Is there more?
I'd be interested in hearing form the security experts amongst us. Any other links or information (on wireless or CAT5 networks) are very welcome!
James
Last edited by James Colbert; 25 Jun 2011 at 10:43.