Re: What type of wirless network to use?
Disabling SSID broadcast is only marginally effective. It will stop only the most casual snoops because WinXp won't list your AP (access point) in the available networks list. I put the disabling of the SSID in the same category as using MAC filtering to keep folks from getting an IP from your router. One single tool will reveal both pieces of info in just a few seconds. As was mentioned in this thread, security should be multi-layered. To say that just using MAC address filtering will prevent someone from using your router even if they crack your 128bit encryption isn't true. If your WEP is hacked, it's trivial to clone your MAC addy and gain access. You can disable the SSID broadcast and stop some folks, you can use MAC address filtering and stop a few more, you can use WEP and stop even more.
Two years ago, on a frequently driven 30 mile trip, I logged approx. 100 access points. Of these 100, 20% were encrypted, 80% were wide open. Recently, I made the same 30 mile drive and logged over 1000 access points, 40% were encrypted, 60% still open. So things are getting better as folks are becoming better informed and realizing that open access points are a threat to their own computers and personal data.
Things you can do to make things harder for the bad guys:
Use a router-firewall
Change the default login and password of the router
Turn on WPA or WPA2 encryption
Use at least 8 characters for the passphrase (no dictionary words)
Block unused ports in the operating system.
Use a password to log into Windows
Stop using the default administration permissions for your login name
Don't share your whole hard drive
Know what you're doing with P2P sharing programs etc.........
Disabling SSID broadcast is only marginally effective. It will stop only the most casual snoops because WinXp won't list your AP (access point) in the available networks list. I put the disabling of the SSID in the same category as using MAC filtering to keep folks from getting an IP from your router. One single tool will reveal both pieces of info in just a few seconds. As was mentioned in this thread, security should be multi-layered. To say that just using MAC address filtering will prevent someone from using your router even if they crack your 128bit encryption isn't true. If your WEP is hacked, it's trivial to clone your MAC addy and gain access. You can disable the SSID broadcast and stop some folks, you can use MAC address filtering and stop a few more, you can use WEP and stop even more.
Two years ago, on a frequently driven 30 mile trip, I logged approx. 100 access points. Of these 100, 20% were encrypted, 80% were wide open. Recently, I made the same 30 mile drive and logged over 1000 access points, 40% were encrypted, 60% still open. So things are getting better as folks are becoming better informed and realizing that open access points are a threat to their own computers and personal data.
Things you can do to make things harder for the bad guys:
Use a router-firewall
Change the default login and password of the router
Turn on WPA or WPA2 encryption
Use at least 8 characters for the passphrase (no dictionary words)
Block unused ports in the operating system.
Use a password to log into Windows
Stop using the default administration permissions for your login name
Don't share your whole hard drive
Know what you're doing with P2P sharing programs etc.........
