Wi-Fi Security

by | posted: July 11, 2009 0 comment
Wi-Fi logo

A few years back in another guise I wrote a piece about securing ones Wi-Fi network.

I’ve decided to re-visit that article and see how much of it is still relevant. The original had 22 points and some I still don’t agree with. Age and time have not mellowed my beliefs and in one I used to stand pretty much alone.

  • Update the firmware on the AP.
  • Change the administrator’s password  – do I need to re-visit this one?
  • If the AP allows you to do so, change the name of the administrator’s account.
  • Disable DHCP on the LAN side of the AP and use Static IP addressing.
  • Change the default IP Address of the AP.
  • Use the strongest authentication and encryption that the AP & Client support.
  • Turn off the broadcasting of the SSID in the Beacon frame.
  • Use a non default SSID that neither identifies you, your business, your location, or the location of the AP.
  • Place a space or two at the end of the SSID.
  • Implement a MAC filter.
  • Turn the transmit power down on the AP to that which is required for desired coverage.
  • Use a non-overlapping channel, preferably not channel 6.
  • Install the AP in a physically safe location.
  • Do not disclose your configurations to others.
  • Limit the number of allowed associations.
  • When not in use, turn off the AP.
  • If there is a breach in security, change all security settings as soon as possible.
  • If you are unable to configure the AP securely, consult a trained and certified professional to do so on your behalf.

Some of these are just downright obvious (use strongest authentication – install in a secure location) – well they are to me and others I don’t totally agree with (turn off SSID broadcasts – put spaces in your SSID) but who am I in the grand scheme of things?

I’m willing to break out into more depth on each of these points, but do remember that I was trying to distill others knowledge as well as my own at the time. So don’t bite my head off if you don’t agree with me but do tell me.

Anyway – would be interested in your responses and whether you agree or not with the above?

Reblog this post [with Zemanta]
DeliciousStumbleUponShare
Tags: , ,

Stuart

No comments yet.

Leave a Comment