Canadian TV, Computing and Home Theatre Forums banner

1 - 14 of 14 Posts

·
Registered
Joined
·
102 Posts
Discussion Starter #1
Is there any way to test if I have my own wi-fi setup secured? Athough I think I have everything setup OK - I don't really know and I am new to using a wireless router.

Is there a piece of legitimate software or a website I could use to verify my setting are OK and somebody cannot use my router for inapproprate use?
 

·
Registered
Joined
·
846 Posts
Provided your equipment (AP and clients) support it, use WPA2-AES security, along with an access control list on the AP - containing only the MAC (hardware) addresses for your laptop or any other additional equipment that will be using your access point. That's about as secure as you're going to get.

Additionally, turn off the setting for broadcasting your SSID - it doesn't secure anything, but does prevent casual users from seeing your network as available.
 

·
Registered
Joined
·
8,357 Posts
^^^^
MAC address filtering doesn't provide much security. It's very easy to discover and spoof MAC addresses. WPA2 provides excellent security, particularly if used with a strong password.
 

·
Registered
Joined
·
846 Posts
Regardless, WPA2 + an ACL is better security than just WPA2. Any security can be defeated with enough work - compounding the security available makes it that much harder and less attractive for those who would wish to get around it.
 

·
Registered
Joined
·
2,465 Posts
I think the OP's question (which I'm curious about as well) is not "how to make my network secure", but rather, "how can I test how/if my network is secure?"

Like, is there a legit site (i.e., not someone trying to sell you something) that can test your connection and give a comprehensive breakdown of what vulnerabilities (and the severity of them) that your current setup contains?
 

·
Registered
Joined
·
8,357 Posts
^^^^
No, there is no test site, as anything that tests it has to be within WiFi distance. Properly configured WPA2 is very secure, provided you don't use an easily guessed password. I get 63 random character passwords from www.grc.com.
 

·
Member #1
Joined
·
47,683 Posts

·
Super Moderator
Joined
·
11,130 Posts
Thanks for the link Hugh. Looks like I will have to fire up IE to get the ActiveX running. But a very useful tool for someone "new to using a wireless router". :)
 

·
Registered
Joined
·
102 Posts
Discussion Starter #9
Thanks for the info folks. I could run tests via one of my laptops, within wifi range obvisously, if a website is not the way to go.

I will check out Hughs link this evening. I know nobody will/should guarantee anything regarding vulnerabilities - but I am just worried I missed something obvious as I don't really know what I am doing. The info above is appreciated and informative but this is all a new language to me (so far).

Thanks
 

·
Registered
Joined
·
2,461 Posts
SheildsUP from Steve Gibson can be handy to make sure you haven't missed anything key in your router and computer. Some parts are more specific to your computer setup though, but the port protection part is obviously going to test your router settings as well.

Basically any wifi or hardwired router sold in the last 10+ years is an excellent firewall - you shouldn't need a s/w FW as well. And as far as the wifi part goes: WPA2 encryption and that's all. MAC address filtering and hiding your SSID is overkill IMO.
 

·
Registered
Joined
·
73 Posts
You will find some information to help you walk through a personal audit at this site:
http://www.ethicalhacker.net/content/view/16/24/

The end of the article provides guidance on how to protect yourself.

My best practices:
  • Strong complex passwords for WPA-2 (Uppercase, lowercase & numbers, etc...)
  • Strong admin password for your AP. Repeat it twice to make it longer.
  • Limit your broadcast range. I installed my AP in the basement and can barely get a signal past my front lawn.
  • Hide your SSID broadcast.

Good luck...
 
1 - 14 of 14 Posts
Top