Help with security?

ajm · 28 May 2007 at 23:48

Can someone please give me a step by step guide on how i can secure my network to only allow certain computers (by name if possible). I have just noticed that someone has had access to my network without me knowing and i would like to stop this from happening again.

I am using...

The router
Linksys WRT54G

Cards in 2 pc's
Linksys WMP54G

and a 10/100 linksys card in my main pc.

I am a newb to network security and need the guide please.

oddjob62 · 29 May 2007 at 00:02

Quick google came up with this
http://www.tekstenuitleg.net/en/articles/wireless_network_security_guide/5

GSDog · 29 May 2007 at 00:21

Use WPA encryption and it should stop most people gaining access to the network. I also use MAC filtering, change the default SSID or even stop broadcasting your SSID.
I don't have time to explain it all, but google should have all your answers.

ajm · 29 May 2007 at 10:30

Thanks for the link oddjob62 i will take a look.

@Zildjian

All this encryption stuff is so confusing to me.Can you explain how to use MAC filtering? Could you also tell me if

change the default SSID or even stop broadcasting your SSID

can be done easily and as i forgot to mention in my first post i have a LINKSYS WGA54G WIRELESS 54G GAME ADAPTER which would need to be set up.

GSDog · 29 May 2007 at 13:19

ajm said:
Thanks for the link oddjob62 i will take a look.

@Zildjian

All this encryption stuff is so confusing to me.Can you explain how to use MAC filtering? Could you also tell me if can be done easily and as i forgot to mention in my first post i have a LINKSYS WGA54G WIRELESS 54G GAME ADAPTER which would need to be set up.

WPA-PSK is basically just a pre-shared key which all the computers will need in order to connect to your network.
I will explain how to do this further below
Once you have WPA encryption enabled, 99.9% of people will not even bother trying to access your network, unless you are the owner of Halifax bank or something...
If you want to use MAC filtering for even more protection, you can do this in your router settings again. It basically only allows certain MAC addresses to connect to the network.

You can look at your router settings by typing 192.168.1.1 in your web browser.

I strongly suggest you change the defaullt username and password on your router if you haven't done so already, this should be on the front page of your router settings.
If your router is anything like mine (Linksys WAG54G) then you can enabled and make a Pre-Shared key by going into your router settings and going to "wireless", then "wireless security".
You can change the default SSID (which will probably be "linksys") by going to "wireless", then "basic wireless settings".
You can use MAC filtering by going to each of the wireless computers you want to use on your wireless network, open your command by going to run and typing cmd, then type "ipconfig/all", then under your wireless adapter, you should see a physical address which should contain 12 numbers and letters, you need to add that physical address (MAC) to your router settings, so it will allow it. You need to click on "restrict access", then "permit only" in your wireless access settings and add all the MAC addresses on your wireless network that you want to allow.
Make sure you choose a strong password for the WPA and write it down and keep it safe somewhere, you don't want to lose it, same goes with the new router user and pass.

Once you have done all that, you will need to update all of your wireless computers with the new settings (WPA, WPA pass, new SSID).

Here is a good article about securing your router incase you get stuck.: http://www.pcmag.com/article2/0,1895,1855103,00.asp

This link also mentions a few of the things I mentioned above, just make sure you use WPA, not WEP. WPA is more secure.
http://register.wireless.utoronto.ca/?page=linksys

Hope this helps a bit.

csmager · 29 May 2007 at 13:51

Unless you like hassle, I'd stick with WPA or WPA2.

WPA encryption with a decent enough PSK will not be able to be broken through any other method than brute force - which could take many years.

MAC filtering's all very well, but you can spoof a MAC address in the time it takes you to type it. It hinders you as you have to type in the address of every new client you want to join the network.

SSID filtering's all but useless - Windows (Vista) at least will still show the network, but calls it 'Unnamed'. Any other tools will show the name instantly. It hinders you on most OSes as you have to fill in all the settings manually, whereas double clicking the SSID displayed configures it itself.

You're not going to break WPA - the other two will just get in the way.

oddjob62 · 29 May 2007 at 15:25

csmager said:
Unless you like hassle, I'd stick with WPA or WPA2.

WPA encryption with a decent enough PSK will not be able to be broken through any other method than brute force - which could take many years.

MAC filtering's all very well, but you can spoof a MAC address in the time it takes you to type it. It hinders you as you have to type in the address of every new client you want to join the network.

SSID filtering's all but useless - Windows (Vista) at least will still show the network, but calls it 'Unnamed'. Any other tools will show the name instantly. It hinders you on most OSes as you have to fill in all the settings manually, whereas double clicking the SSID displayed configures it itself.

You're not going to break WPA - the other two will just get in the way.

Nice one mate... saved me some typing

nst68 · 29 May 2007 at 16:34

Go with what csmager said.
WPA or WPA2 is all you need, anything else will just cause you grief.

WPA is theoretically breakable using a dictionary attack, so don't use a key of "password" or something obvious like that.

To be totally secure, use something like this and you'll be safe from everyone except the NSA

ajm · 29 May 2007 at 22:09

Thanks for all the info guys it is much appreciated.Although i would like to follow the direction of using WPA,i have just realised that i can't as the WGA54G GAME ADAPTER mentioned earlier can only support WEP (I think),I have set that up and also changed the default password for my router. Is there anything else i can do?

oldbag · 29 May 2007 at 22:11

Is WPA2 stronger than WPA?

csmager · 29 May 2007 at 22:22

ajm said:
Thanks for all the info guys it is much appreciated.Although i would like to follow the direction of using WPA,i have just realised that i can't as the WGA54G GAME ADAPTER mentioned earlier can only support WEP (I think),I have set that up and also changed the default password for my router. Is there anything else i can do?

It'll act as a deterrent. WPA is like a huge safe door, whereas WEP is more like a rubbishy padlock on a fence gate. There are people who can break WEP in under 60 seconds, but even useless tools like me can do it in under 5-10mins.

Before you commit to WEP, just double check on firmware updates for your game adapter - support may have been added.

tolien · 29 May 2007 at 23:16

Triad2000 said:
Is WPA2 stronger than WPA?

Yes, but both will take more time than anyone can really be bothered to crack - the major weakness with both is the passphrase. Use a weak passphrase, and you might as well not have bothered.

ajm · 30 May 2007 at 19:27

Thanks for the tip Charlie i will take a look and check it out (never thought of that). I didn't want to use WEP but i were limited with the gaming adapter

ajm · 31 May 2007 at 09:27

Well that's that idea gone there is no firmware update for WPA and doesn't look like there will be as i think they are fading this model out now.