Michael's Piece of the Webv5.3             10 years on the web
Open All Night

HOME
Blog
Photos
Michael's Guide
Computer Services
Gatti Family Tree
Crafts

My External Sites
Gatti Family Group
eBay Items

Contact Michael



Michael's Guide

Chapter 3- WEP or WPA?

Another important part of configuring your router is enabling security protocols. I mentioned in a previous chapter that all wireless routers have some type of built in security. It will be in the form either WEP or WPA. You should whichever your router offers.

Wired Equivalent Privacy (WEP) is the original security protocol for wireless routers. As the name implies, it is supposed to provide roughly the same level of security that you would have in a wired network. There are two versions. One offers 40-bit encryption and one offers 128-bit encryption. You should choose 128-bit. The 40-bit version is obsolete and insecure. WEP encrypts all traffic that flows through your wireless network and requires that users enter a password to join your network. WEP will mainly be found on older routers. If your router does not offer WPA, you definitely should enable WEP.

Wi-Fi Protected Access (WPA) provides a higher level of security for your wireless network. It is much harder to crack. The level of security it provides is roughly equivalent to a Virtual Private Network (WPN) connection. WPA is found on many newer routers. If your router offers this, you should use it instead of WEP.

TIPNo matter which security protocol you use you should make sure you choose a strong password (also referred to as a WEP/WPA Key). Encryption is useless if someone can guess your password.

Chapter 4 - SSID Broadcasting

Wireless routers have a setting that allows you to choose whether or not you broadcast your router's SSID (name). Many people will tell you that this setting does not matter. If you are trying to prevent a serious hacker from getting into your network, they are correct. This will do nothing to stop a determined hacker. However, it does provide an added layer of security if you are trying to prevent a random passerby from connecting to your router. If you do not broadcast your SSID, it will not show up in the list of available wireless networks on the user's computer. Anyone wanting to connect to your network will have to type in the name of your network before they can make a connection.

There are plenty of ways to find a network even without its SSID, but a casual user will not attempt it. This is another reason to change your SSID from the default. I have logged onto plenty of networks named "Linksys" when I saw no SSIDs being broadcast just by trying it to see if one was out there.

Chapter 4 - The Most Drastic Solution

The ultimate way to restrict access to your network is to lock it down by MAC address. Every device has a unique MAC address. By allowing only certain MAC addresses can connect to your router, you can choose what specific computers can connect. If you set it to only allow the computers you own, you have effectively banned everyone else from connecting.

This, of course, has its pros and cons. If you routinely have guests who need to access your network, you will need to add their MAC address to your router's settings. You will also need to remove them when they leave, if you don't want the to get on again. This could be more trouble than it is worth. That is a decision only you can make.

However, if you have the same computer(s) connected to the network all the time, this is a great solution. MAC addressed can be spoofed or faked, but unless you have incredibly valuable data on your network, this is not really something the average user needs to worry about.

TIPA MAC address is a unique identifying hexadecimal number that is assigned to every network device whether it is wired or wireless. It stands for Media Access Control. Despite a common confusion, it has nothing to do with Macintosh computers. All computers with a network card have a MAC address for each network card. Routers, network printers, etc. also all have MAC addresses. MAC addresses are like fingerprints. No two devices have the same one.

Chapter 6 - Conclusion

No matter how you slice it, a wireless network opens up new avenues for people to get into your computer network. But if you follow the tips in this guide you can minimize your risk. For an average home user, this will be more than enough security. If you read this and then you decide to open your network to the world, that’s fine too. I’m sure your neighbors love you. Just be sure you take at least some precautions such as turning off file and printer sharing.

Despite the extra trouble of having to worry about setting up security for your wireless network, the benefits of switching to a wireless network far outweigh the inconvenience. You can move your computers from room to room with minimal effort. If you have a laptop, you can wander around the house and find a quiet spot to work anytime you want. Once you have that ability, you’ll wonder why you didn’t do it sooner.

DISCLAIMER
While every attempt has been made to assure all information in this document is accurate, the author assumes no responsibility or liability for any damage or undesired effects resulting from the use of this information. Configurations are different on every computer and results may vary.

This document is copyright 2005 Michael Gatti. No portions may be reproduced or distributed without the express written consent of Michael Gatti.

 

<< PREVIOUS PAGE | RETURN TO MICHAEL'S GUIDE
Google
 

©1997-2012 Michael Gatti