Archived from groups: alt.internet.wireless (
More info?)
OK... Let's start...
First, it's missing the major error of not changing the default password.
Most people just connect their wireless router or access point and that's
it. I wonder if anyone has ever uploaded modified firmware onto someone
else's router.
Then, there's the turn off SSID broadcasts part. Doing so will make it very
difficult to connect to your network under Windows XP when using the
built-in wireless service. In addition, turning off SSID broadcasts makes
it more difficult to choose broadcast channels that do not overlap with
other wireless networks.
There's the "not changing the SSID means an intruder can access your network
and the contents of your hard drive, including any personal data" part.
That's not the case if you are have properly set up your firewall and/or
have password protected network access to your computer. In addition,
changing your SSID does not at all prevent people from accessing your
network or computer. Ideally, you would also want to use an SSID that in no
way identifies that it is your network (actually, the default "default" used
by some devices works pretty well).
WEP is no good. It would be nice if CNN would mention the better
alternative, WPA, by name. All new wireless hardware should support it and
people should only buy those products. These days, buying something that
only supports WEP does not make sense.
MAC addresses can easily be spoofed and you would not want to protect a
corporate network by merely restricting access to certain MAC addresses.
Turning off DHCP does not help. In fact, if you're using your laptop on the
road, you need to configure it to obtain its address via DHCP. The only
time it helps to not use DHCP at home is when you have a wireless
printerserver or other network devices that you have to connect to by IP
address. In those cases, you would still leave DHCP on but assign those
devices an IP address below the assignable range.
Finally, the easiest way to keep people off your network is to use WPA with
a long passphrase (say at least 20 letters where one word is not a real
word). However, this will not shield you from people connecting to your
network over the Internet. In this case, putting your computer behind a
router helps a lot.
-Yves
"Sandy A. Nicolaysen" <sandynic@verizon.net> wrote in message
news:6b25p05rn4tl5gs5j30d41b9c621u2cq54@4ax.com...
> On Wed, 10 Nov 2004 21:25:01 GMT, neillmassello@earthlink.net (Neill
> Massello) wrote:
>
>>Sandy A. Nicolaysen <sandynic@verizon.net> wrote:
>>
>>> http://www.cnn.com/SPECIALS/2004/wireless/
>>>
>>> An interesting read anyway.
>>
>>Which (predictably) repeats the current myths about wireless security.
>
> Since I'm new to wireless, could you point out which are the myths? I
> don't mean quote the articles or anything, just which parts of the
> technology they are wrong about. I'm NOT being a smartass here. I'm
> really curious. Thanks, Neil, for any info.
>
> - Sandy
>