Wireless Security

[Pablo72]

I'm a home user, who seldom uses the internet, except maybe for the occassional downloading of a game patch, a bbit of retail therapy and looking on this forum. As such my system is never constantly connected to the net.

I have a wireless router and was just wondering how important is is to use WPA security rather that WEP on the router.

Any advice is greatly appreciated.

Thanks again

 

[Pablo72]

Anyone?

 

[J.B]

WEP isnt great WPA is the way, also use MAC filtering, if you really want disable SSID.

Not to be rude but why would you not encrypt it? if you leave your front door open and then put a sign up on it saying 'Im open' would you expect to have your tele when you got home?

Also your paying for an ISP service which anyone else nearby can use for free!

so if i carry on i could ramble all day, in answer, yes encrypt it (at the very least)

 

[Dr_Evil]

Not to be rude but why would you not encrypt it? if you leave your front door open and then put a sign up on it saying 'Im open' would you expect to have your tele when you got home?

Also your paying for an ISP service which anyone else nearby can use for free!

so if i carry on i could ramble all day, in answer, yes encrypt it (at the very least)

But.... He's using WEP at the moment. Not the best of encryption, but your standard neighbours won't be able to hack it surely....

I used WEP for a year, until i upgraded my security to WPA. Not that i got hacked, but just in case and to keep up...

I agree with the "disable SSID broadcast" this will prevent from people actually being able to see your Wireless network.

As for MAC filtering - you have to also limit the number of IP's given out (specify short IP range) but then if one of your machines isn't on, will it be given out to an "unidentified" machine logging onto your network?

 

[Pablo72]

WEP isnt great WPA is the way, also use MAC filtering, if you really want disable SSID.

Not to be rude but why would you not encrypt it? if you leave your front door open and then put a sign up on it saying 'Im open' would you expect to have your tele when you got home?

Also your paying for an ISP service which anyone else nearby can use for free!

so if i carry on i could ramble all day, in answer, yes encrypt it (at the very least)

My question was which one is better WEP or WPA... not whether I should bother using any form of encryption! But thanks anyway... I think!

And at no point in my original message did I even suggest that I use no encryption.

 

[J.B]

sorry i read it in the wrong way , but in answer to the question, WPA is better

 

[benjo plz.]

Use WPA. Not worth bothering with MAC filtering or turning off SSID broadcasts.

 

[Dr_Evil]

especially when using a longer key....

 

[benjo plz.]

especially when using a longer key....

eh?

 

[Dr_Evil]

http://blogs.zdnet.com/Ou/?p=127

 

[Uhtred]

Use WPA. Not worth bothering with MAC filtering or turning off SSID broadcasts.

Yup, mac filters and the lack off SSID just causes you grief. WPA with a 8 strong password is all you need...

 

[Pablo72]

Sorry to ask, but why exactly is WEP no good? I'm not doubting it, just curious?

 

[benjo plz.]

Sorry to ask, but why exactly is WEP no good? I'm not doubting it, just curious?

It's pretty easy to crack, although WPA is not that much harder (That article's a year old now, cracking has moved on a lot). Encryption like WPA2/TKIP/AES etc is the way forward .

 

[Pablo72]

It's pretty easy to crack, although WPA is not that much harder (That article's a year old now, cracking has moved on a lot). Encryption like WPA2/TKIP/AES etc is the way forward .

But for a home user is this really needed? I don't mean security in general, but rather such a strong security system. Would your average PC user honestly know how to crack a 128 bit WEP?

Or is it really that simple to hack into my 2 gig a month broadband account?

 

[Mr-White]

i have WPA, MAC filtering and have removed my SSID, if you have the security facilities you may as well use it. from what ive seen it takes about 20-30 minutes to crack WEP by sniffing the packets being sent and recieved.

MW

 

[Energize]

You can crack wep in under 5 mins using freely and easily avalible software. Thats why you shouldn't use it.

 

[benjo plz.]

Would your average PC user honestly know how to crack a 128 bit WEP?

It's not your average pc user you should be worried about .

i have WPA, MAC filtering and have removed my SSID, if you have the security facilities you may as well use it.

Not worth using mac filtering or ssid hiding, they can both be got around in about 30 seconds.

from what ive seen it takes about 20-30 minutes to crack WEP by sniffing the packets being sent and recieved.

You can crack wep in under 5 mins using freely and easily avalible software. Thats why you shouldn't use it.

It's more like 3. You just create artificial traffic, meaning far more dropped packets.

 

[Mr-White]

3 mins now woah last article i read was longer, even cracking evolves quickly

if they can get your SSID in 30s whats the advantage of broadcasting the SSID ?

how long does WPA take to crack ?

MW

 

[benjo plz.]

3 mins now woah last article i read was longer, even cracking evolves quickly

if they can get your SSID in 30s whats the advantage of broadcasting the SSID ?

how long does WPA take to crack ?

MW

It's also the fact that processors have gotten far more powerful, with Conroe etc.

You don't have to bother typing it in?

11, but it varies with key length.

 

[Energize]

WPA 2 with TKIP is what you should use since it changes the key periodically and uses an 128bit aes based algorithm.