best way to secure wireless lan

im in search of the best way(s) to secure a wireless lan.  i have a linksys
befw11s4 and cable.  i have 128 wep on, changed the password, changed the
essid, and turned off all remote management tools.  im just wondering if
there is anything else i can do to make it more secure.  thanks for any
advice

jz


---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.330 / Virus Database: 184 - Release Date: 2/28/2002
0
Jason
3/5/2002 2:09:00 AM
grc.techtalk 27358 articles. 1 followers. Follow

3 Replies
385 Views

Similar Articles

[PageSpeed] 11

1. Use secure passwords on any resources that are shared on your LAN.

2. Use disk encryption for any critical information that you store on shared
directories on your network.

3. Disable DHCP and use static assigned IP's on your LAN. Install and
monitor Linklogger to catch suspicious activity. Keep an eye out for
outgoing traffic from IP's that are different from those you have assigned.
http://www.linklogger.com

4. You can install Network Stumbler on a laptop and see how far away your
wireless signals are transmitting (not that there's much you can do about it
other than repositioning your WAP). You may want to check occasionally to
see if you have been mapped in the database at
http://www.netstumbler.com
hth,
Tom

"Jason Z." <Justdive@optonline.net> wrote in message
news:a615qn$d0v$1@news.grc.com...
> im in search of the best way(s) to secure a wireless lan.  i have a
linksys
> befw11s4 and cable.  i have 128 wep on, changed the password, changed the
> essid, and turned off all remote management tools.  im just wondering if
> there is anything else i can do to make it more secure.  thanks for any
> advice
>
> jz
>
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.330 / Virus Database: 184 - Release Date: 2/28/2002
>
>
0
Tom
3/5/2002 2:43:00 AM
In article <a615qn$d0v$1@news.grc.com>, Justdive@optonline.net says...
> im in search of the best way(s) to secure a wireless lan.  i have a linksys
> befw11s4 and cable.  i have 128 wep on, changed the password, changed the
> essid, and turned off all remote management tools.  im just wondering if
> there is anything else i can do to make it more secure.  thanks for any
> advice
> 
> jz
> 
> 
Upgrade to the latest firmware, disable the ssid, and use mac address 
filtering. 

-- 
Bloated Elvis
0
Bloated_Elvis
3/5/2002 2:45:00 AM
"Jason Z." <Justdive@optonline.net> wrote in message =
news:a615qn$d0v$1@news.grc.com...
> im in search of the best way(s) to secure a wireless lan.  i have a =
linksys
> befw11s4 and cable.  i have 128 wep on, changed the password, changed =
the
> essid, and turned off all remote management tools.  im just wondering =
if
> there is anything else i can do to make it more secure.  thanks for =
any
> advice
>=20
> jz
>=20
>=20

You could do what NASA does. <g>

http://www.nas.nasa.gov/Groups/Networks/Projects/Wireless/index.html

Actually, having another layer of authentication never hurts (except on =
the throughput). I had wondered how well some type of VPN would work in =
this case.

Greg


---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.330 / Virus Database: 184 - Release Date: 28/02/2002
0
Greg
3/5/2002 5:34:00 AM
Reply:

Similar Artilces:

The six dumbest ways to secure a wireless LAN
followup to grc.security.wireless The six dumbest ways to secure a wireless LAN http://blogs.zdnet.com/Ou/index.php?p=43 ----------------------------------------------------------- Quote ----------------------------------------------------------- For the last three years, I've been meaning to put to rest once and for all the urban legends and myths on wireless LAN security. Every time I write an article or blog on wireless LAN security, someone has to come along and regurgitate one of these myths. If that weren't bad enough, many "so called" security experts pro...

Wireless LAN (in)security
Good sources of info about wireless LAN (in)security http://www.cs.rice.edu/~astubble/wep/ http://www.dis.org/filez/openlans.pdf http://www.dis.org/filez/#shipley now let's go wireless <G> !! ...

What is the best way to secure my website
what is the best way to secure my website. Currently I have a "Users_table" where I have all the records of my users , passwords and there access level.  I have a screen where the user can change there own password, everytime they want to change there password, they will be inform if it is "weak, medium or strong" (AJAX Password Strength). My question is, is this enough?  Please help...ez This really depends on how far you want to go and how much work are you prepared to do to secure your site. Here are some things that you may do Use HTTPS c...

Best way to secure my app
I have a very simple ASP.NET application.  It consists of one page which is a visio image map which has links to a second page which dynamically lists files in certain directories based on the query string.  The app currently has no need for a database. The app currently sits on one server, lets call it server2.  In it's network is another server called server1 which holds the active directory. What would be the best way to secure this application?  I would prefer authenticating to active directory as it would make user management easy since they would use the same ...

Wireless LAN security (or lack of it)
Another gaping open hole possible... http://www.extremetech.com/article/0,3396,s%253D1024%2526a%253D13880,00.asp Francis -- What would you rather be - aloof, alert or a lemming? ...

Secured my wireless as best I can..
128bit WEP, VPN, no SSID broadcast, no wireless router access and MAC filtering. Problem is, with my VPN active my laptop's download speed is cut massively.. from 50+ kb/s to 5kb/s. Is there any way I can get higher speeds without taking the massive hit to my download speed and losing the extra security that the VPN offers? ...

What is the best way to secure complex website?
I have noticed two methods:1) Copy stuff to Secure directory with seperate web.config. The problem I see with this solution is that it may messed up my existing links...2) Put the following code to the Load function:'If (Not User.Identity.IsAuthenticated) Then' Throw New Exception("User must be authenticated. Refer to IIS documentation on setting up user authentication.")'End If The problem here is that I must update each form, seems like a lot of manual work and redundant code. Can I use partial classes for this?The final question is, is there any other method? Wh...

Best way to secure Word document
If I wish to secure a Word document which be more protected, using the built-in Word password feature or using an encryption software such as Axcrypt. (Word 2000 on an old Win98 system) Thank you. -- Acadia G'day, Acadia... By "secure," do you mean protect against macro infection? Protection against modification? Encryption so no unauthorised people can read it? --- Bob Milutinovic Cognicom - "the web presence specialists" http://www.cognicom.tk/ telephone (0417) 45-77-66 facsimile (02) 4727-1898 "Acadia" <acadiaNOT@ONyourLIF...

What is the best way to build my menu so it is secure?
I have a simple site with a login control and menu on the masterpage. The menu is derived from my web.sitemap file (using a SiteMapDataSource and Menu control). The Menu uncludes an Administrative option (which enables an administrator to create/modify/delete users) which I only wish to make available/visible when the user is logged in with an administrative role (I shall have 2 or 3 different roles of which one shall be administrative). I am a beginner and I am yet to find out how to "disable" or make the Administrative option in the menu invisible when the user is not logged i...

Best way to create secure Web Method
PART 1 What is the most practical way to create a secure web method? Because this is a public and partially third party hosted implementation, I don't want to use Windows authentication. I've seen two possible options: Include the user name and password in the WebMethod such as: [WebMethod] DoSomething (byval sUsername as string, byval sPassword as string) as described in http://www.ondotnet.com/pub/a/dotnet/2002/10/07/webservices.html. Use a custom SOAP headers as described in http://samples.gotdotnet.com/quickstart/aspplus/doc/secureservices.aspx#custom: <%@ WebService Lan...

What is best way to package for Intranet/LAN Install
I want to install my web app on a clients Intranet/LAN, basically turning a workstation into a webserver with IIS turned on. I would like to keep my code files away from them and I also would like an installer package. Is this possible?Thank youJackxxx Yes, you can create a web set up project http://aspalliance.com/622  The article has a step by step descriptionJeev~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~If you get the answer to your question, please mark it as the answer....

Wireless LAN security myths that won�t die
"It's been two years since I wrote "The six dumbest ways to secure a wireless LAN," and it's probably been one of my more successful blog entries ever, with two flashes on Digg. Since that time, I've written a free electronic book on enterprise wireless LAN security for anyone to use and download from TechRepublic. Since it has been two years, I'm going to update the information with more defined categories and better explain why they're so bad from an ROI (return on investment) and security perspective."... http://blogs.zdnet.com/Ou/?p=454 ...

A secure Wireless LAN hotspot for anonymous users
...."But there is actually a better and easier way to set up a secure Wireless LAN hotspot for an anonymous user using a single generic and common username and password that anyone can remember. An interesting property of PKI is that it allows us to do a secure key exchange without any usernames or passwords so long as one side has a trusted digital certificate. This concept is used millions of times a day by ordinary users anytime someone goes to an SSL-secured webpage and the secure authentication channel is set up before the user enters a username and password. The same gene...

Best way to use secure remote desktop
I'm not sure if this belongs here or the Apps forum, but I'm going to need to remote desktop to a XP box from my laptop when I travel. At home I just use KRDC on my laptop and Real VNCServer on the XP box. Is this a secure (encrypted) connection? If not can anyone suggest a secure way of doing this. -- *I**B**M* Thinkpad X60s | Intel L2400 1.66Ghz | Mesa DRI Intel 945GM video | 1.5GB Ram openSuSE 11.1 | Linux 2.6.27.29-0.1 pae i686 | KDE 4.3.1 ------------------------------------------------------------------------ Take a look at NoMachine NX, it is fast and e...