Go Back   Computer Forums > General Computing > Cyber Safety and Computer Security
Click Here to Login
Join Computer forums Today


Reply
 
Thread Tools Search this Thread Display Modes
 
Old 06-13-2011, 06:12 PM   #1
Fully Optimized
 
~Darkseeker~'s Avatar
 
Join Date: Jan 2010
Location: Welwyn Garden City, United Kingdom
Posts: 2,494
Default Securing your Home Network - Adequately.

There's alot of talk about security these days, and alot of it is about securing your home network. Most of us don't have billion-dollar business spreadsheets stores in network shares or top-secret documents floating from host to host. To this end, a lot of this talk of stronger encryption for access points, hiding ESSIDs, MAC Filtering, and so on really is unnecessary when talking about HOME Networks. I Thought i might make a sort of 'guide' on how to do it without wasting effort and/or giving yourself headaches, but not leaving your network wide-open to outside intrusion. The worst case scenario for an unprotected network is that your neighbors start borrowing your bandwidth, but most people like to keep their neighbors out, for whatever reason. The dirty blighters should get their own internet!

Anyway, let's get on with it.

Encryption - As most people know, the WEP standard (Wired Equivalent Privacy) is now obsolete, as it was way to easy to crack. Generally most people use WPA, which is perfectly adequate for almost any network. Just make sure you use a good password.

Address Filtering - There really is no need for this on home network, it just ends up getting on your tits every time one of your friends brings his laptop or phone over and wants to use your wireless, and you have to find the MAC and add it to the list. Same thing every time someone in your house gets a new computer, xbox, ps3, phone or whatever.

ESSID Broadcastng - Leave it on. Disabling it just means you have to type it in to every device you want to connect to it, for the most part, Wi-Fi signals don't travel very far anyway, so neither will the SSID.

So, in a nutshell: Turn on WPA encryption, leave MAC filtering off and let the ESSID broadcast. There really is no need to overcompensate with security and cause endless headaches later on.
__________________

__________________
EVGA SLI Micro Z68 // Intel i5-2500k @ 4.4GHz // 8GB Corsair Vengeance 1866MHz // Overclocked ASUS GTX 660 Ti // Corsair Carbide SPEC-03 // Kingston Hyper-X 120GB // 2TB WD Green + 500GB WD Black
#JC4PM
~Darkseeker~ is offline   Reply With Quote
Old 06-15-2011, 03:24 AM   #2
Solid State Member
 
Join Date: Jan 2010
Posts: 11
Default Re: Securing your Home Network - Adequately.

If you have set up a wireless signal then any MAC filtering is any way security through obscurity because MAC addresses are broadcasted so any one who has broken your encryption is any going to to sniff them out. I tried this my self when I cracked some ones wep encrzption and the person had MAC filtering enabled but I sniffed three of them and I was able to connect.
__________________

~=o0no=~ is offline   Reply With Quote
Old 06-15-2011, 05:44 AM   #3
j03
~~~~~~~~
 
Join Date: Jan 2005
Location: Wales
Posts: 5,556
Send a message via MSN to j03
Default Re: Securing your Home Network - Adequately.

Quote:
Originally Posted by ~=o0no=~ View Post
If you have set up a wireless signal then any MAC filtering is any way security through obscurity because MAC addresses are broadcasted so any one who has broken your encryption is any going to to sniff them out. I tried this my self when I cracked some ones wep encrzption and the person had MAC filtering enabled but I sniffed three of them and I was able to connect.
Just to clarify - he is talking about sniffing the MAC addresses, and then spoofing the hardware address of his WLAN adapter with the MAC of a machine that has already connected to the network.

I think.
j03 is offline   Reply With Quote
Old 06-16-2011, 01:08 AM   #4
In Runtime
 
Warren's Avatar
 
Join Date: Jun 2010
Posts: 168
Default Re: Securing your Home Network - Adequately.

I believe that one of the most important things to do with a new home network is to change the admin password at 192.168.1.1. I mean, "admin" "admin" is not that hard to crack, and if someone messes with your administrator settings, it will cause a whole lot of trouble.
Warren is offline   Reply With Quote
Old 06-16-2011, 09:53 AM   #5
Solid State Member
 
Join Date: Jan 2010
Posts: 11
Default Re: Securing your Home Network - Adequately.

Quote:
Originally Posted by j03 View Post
Just to clarify - he is talking about sniffing the MAC addresses, and then spoofing the hardware address of his WLAN adapter with the MAC of a machine that has already connected to the network.
That is not hard to do at all and that is because MAC addresses filtering is just security through obscurity and you should not rely on it for strong security. If you want to take the next step you may want to look at this: DHCP snooping - Wikipedia, the free encyclopedia
~=o0no=~ is offline   Reply With Quote
Old 06-16-2011, 10:15 AM   #6
j03
~~~~~~~~
 
Join Date: Jan 2005
Location: Wales
Posts: 5,556
Send a message via MSN to j03
Default Re: Securing your Home Network - Adequately.

Quote:
Originally Posted by ~=o0no=~ View Post
That is not hard to do at all and that is because MAC addresses filtering is just security through obscurity and you should not rely on it for strong security. If you want to take the next step you may want to look at this: DHCP snooping - Wikipedia, the free encyclopedia
Yeah - I'm aware of MAC spoofing, and how that can get around MAC filtering. I didn't know about DHCP snooping - thanks!
__________________

j03 is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off



All times are GMT -5. The time now is 11:47 PM.


Powered by vBulletin® Version 3.8.8 Beta 4
Copyright ©2000 - 2017, vBulletin Solutions, Inc.
Search Engine Friendly URLs by vBSEO 3.6.0