NotebookForums.com › Forums › General Notebook Discussions › Notebook Forums - General › how to restrict my wifi signal from peeping tom's?
New Posts  All Forums:Forum Nav:

how to restrict my wifi signal from peeping tom's?

post #1 of 16
5/3/03 at 12:15am
Thread Starter 
using an SMC barricade 802.11b router and it just dawned on me that the signal is available to anyone that can pick it up. namely, my neighbors. how can keep people,like myself, at bay and off me signal?
Reply
Reply
post #2 of 16
5/3/03 at 12:56am
Turn on all of the built in security (WEP, access control lists if available, don't broadcast ssid, etc).
Reply
Reply
post #3 of 16
5/3/03 at 1:43am
Thread Starter 
are those settings accessible via windows, or must i somehow telnet into the router
Reply
Reply
post #4 of 16
5/3/03 at 4:36am
I think you would adjust the wireless settings from the same interface that you used to set up the router (probably web based, depends on the router). There should be a wireless tab or something similar.
Reply
Reply
post #5 of 16
5/3/03 at 12:54pm
Yeah, check your owner's manual, typically what happens is you enter (from a LAN-connected PC, not a wirelessly connected one) the interface of the AP - this is usually an IP address (like 192.163.0.0) enter whatever the number is into your browser and go from there.

-myrkat
Reply
Reply
post #6 of 16
5/4/03 at 2:47pm
The best way to keep people off your network to where your pretty much unhackable gr8gatzby, if your using DCHP, program your router to where exactly the number of computers you use on your network can connect, log them on to make sure they register with your routers DCHP, and then it's impossible for anyone else to connect to your router anyway since it believes it is full. Don't even need security crap then.
Reply
Reply
post #7 of 16
5/4/03 at 2:58pm
About the DHCP suggestion, I don't believe it will work. All a user has to do is guess an IP address in the proper subnet (not difficult when he/she can sniff all your packets). DHCP doesn't preclude the use of other IP addresses, it just sets up a range that is handed out automatically. You really need to use the built in security at a bare minimum. You can generally turn down the power output so that the range doesn't extend beyond your apartment.
Reply
Reply
post #8 of 16
5/4/03 at 5:03pm
Actually, it does. When DCHP assigns an IP address to a client, it records the MAC address, making it impossible for another computer to log on that IP address until the original MAC address is deleted or router reset. The built in WEP security does sometimes cause errors in the routers and require a power cycle to reset.
Reply
Reply
post #9 of 16
5/4/03 at 7:01pm
hsetdc, a MAC address is associated with an IP address whether you use DHCP or not. The MAC address can be spoofed. DHCP doesn't preclude manually assigning an IP address... A hacker can simply assign an IP address to a wireless card and if there is no other security present will gain access to the network. Also, what happens when the laptop is turned off? Unless you've got a very sophisticated DHCP server that IP becomes available again to anyone who requests it. All I'm trying to point out is that there are no completely secure systems, using WEP and changing the SSID are some basic steps that MUST be taken to provide some minimal security for a wireless lan. If more security is needed then some sort of VPN system needs to be set in place. If you have a VPN server a simple linux machine can help secure your VPN traffic.
Reply
Reply
post #10 of 16
5/4/03 at 11:52pm
I'm going from the point that you have a half decent router. All Linksys wireless access points retain MAC addresses and each MAC address keeps a static IP address. MAC addresses are not broadcasted so they cannot be spoofed. If your worried about security, you don't buy a cheap crappy dlink router or whatever anyway.
Reply
Reply
post #11 of 16
5/5/03 at 12:21am
DHCP is was never meant to be a security measure. MAC addresses are broadcast and they can be spoofed. You can filter by MAC address using an ACL but again, a MAC address can be spoofed (none of the current wireless security is foolproof). The only reason I'm arguing this point is that suggesting DHCP as a security measure will leave a wireless (or wired) network wide open irrelevant of the type/brand of router you purchase.
Reply
Reply
post #12 of 16
5/5/03 at 10:37pm
Well, I didn't think he was trying to keep out corporate hackers...simple solution to fix his problem without ever having errors.
Reply
Reply
post #13 of 16
5/5/03 at 10:47pm
I wasn't implying that he should take extreme action to secure his network, just that basic steps need to be taken. DHCP is not secure in any measureable way, period. Turning on WEP encryption and turning off broadcast SSID should not produce any sort of errors nor should it take more than five minutes.
Reply
Reply
post #14 of 16
5/6/03 at 10:53am
Click "Start", then "RUN", then type "CMD" hit enter.

type "ipconfig /all"

copy the gateway and type in internet explorer:

"http://192.168.x.x " (gateway IP address)

The login will be located in your manual. There are no "real" good methods to a secure wireless network yet ;-(

DHCP is in no way a security method.

I agree with MDChaser on the proper method for the most secure router would be:
1) WEP 128Bit. WEP="Wired Equivalent Privacy"
2) Do NOT broadcast ssid, THEN make it something unique.
3) ACL's if you got em.
4) DISABLE dhcp all together.
5) Change default Channel.

Quote:
Originally posted by hsetdc
I'm going from the point that you have a half decent router. All Linksys wireless access points retain MAC addresses and each MAC address keeps a static IP address. MAC addresses are not broadcasted so they cannot be spoofed. If your worried about security, you don't buy a cheap crappy dlink router or whatever anyway.
Your getting there bro, but a little deeper and you will see DHCP uses "leases", therefore, if someone turns a computer off, it will re-lease (no pun intended) the IP address to that computer. For that reason, it's no good.

Keep in mind there are NO real security methods for WEP based wireless. The problem is being worked on and other standards are due to come out.

If you want a secure network, disable wireless, and unplug the internet. ;-)
Reply
Reply
post #15 of 16
5/6/03 at 4:25pm
Here are two links that may help a bit as well. Most of what they say has already been covered above but they also link to other places and so can help expand the knowledge base available.

NTFAQ - How can I secure my wireless network connections?

and

PCMag Feb 25, 03 - Ten Steps to Secure Wireless Network

Hopefully the above articles help some.
Reply
Reply
post #16 of 16
5/6/03 at 6:16pm
My leases have durations of months. I used WEP but that became too much of a hassle with access point ecryption at times. I don't use a router/access point in one so the router restricts how many IP addresses the access point can transmit to and it's locked down to a specific MAC address. I'd like to see any of ya get on my network with a wireless card using my primative technology~
Reply
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Notebook Forums - General
NotebookForums.com › Forums › General Notebook Discussions › Notebook Forums - General › how to restrict my wifi signal from peeping tom's?