Wireless security or else?

Chaz

observationist
Joined
Mar 11, 2003
Posts
11,327
Reaction score
7
Location
Wandering the Universe
Found this from XP news this morning. Almost a political discussion but I was hoping to let some people know about the possible ramifications of ot securing your wireless networks. I tend to keep my view of the criminals that do bad stuff on networks not the people that get used or attacked. The problem is if you start going after people that setup the network then somebody has to make a judgement call about what is considered a reasonable effort to secure the network.

Will the FBI Come After You if you Don't Secure your Wireless Network?

802.11 wireless networking technology has, in some ways, revolutionized the computer world. I remember setting up our first home network back in the mid-90s. It involved running Ethernet cables everywhere. Even today, wiring an existing structure is a tough job. We're in the process of moving to a new home and discovered first-hand that most professional "cable guys" are charging $80 or more per "drop" (Ethernet jack).

Then there are the locations to which it's just tough to run a cable - like the patio at the back end of the yard, or the living room with the twenty foot ceiling. Wireless is by far the solution of choice in those situations, or when you want to be able to roam all over the house with your laptop, without plugging and unplugging or trailing a long cable behind you.

However, as we've discussed here in the past, wireless presents some security problems. Buying that super add-on antenna for your wireless access point gives you a strong signal in the furthest reaches of the back yard - but it also makes it easier for your neighbors, or someone parked down the street, to pick up your signal and intercept your network communications or surf the Web on your dime. And even if you make sure your WAP's broadcast range isn't excessive, a determined "war driver" can extend his own portable computer's pickup range by using a directional antenna such as a Yagi. These are neither hard to come by nor expensive; you can even make one yourself out of a Pringles potato chip can or similar tubular structure.

Having somebody else use your bandwidth without your permission is annoying, and having them read your files could be troublesome, but the risk doesn't stop there. Wireless hackers could also use your computers as intermediaries to launch attacks on other systems, making it appear that you're the culprit. They could also visit child porn sites while connected to your network, or send messages related to criminal or even terrorist activities, which could be traced back to you. And that could result in the police or FBI showing up on your doorstep. Take a look at the real-life scenario described in a recent AnchorDesk column on ZDNet

Because of such possibilities, we've heard some in the industry and in government suggest that laws be passed requiring wireless networks to use encryption and other security measures, and fining folks who set up a wireless access point without doing so. The premise is that by having an open network, you "invite" the bad guys to use it for illegal purposes. In our opinions, it's a little like the ordinances in some cities making it illegal to leave your car unlocked. Of course, it's easier to hold the victims accountable for crimes than to catch the bad guys, since the victims are usually accessible and cooperative (at least, until they realize they're going to be fined as punishment for being burglarized).

The whole idea brings up visions of "net cops" out patrolling the streets with their wireless-equipped PDAs, intent on detecting all the wireless networks out there and busting those who don't have encryption enabled. Or will victims only be prosecuted if they report their networks being broken into, thus creating an atmosphere in which the bad guys can thrive, knowing their victims aren't going to report any security breaches (and will, in fact, probably do their best to cover up their own victimization)?

Now, we aren't suggesting that it's smart or desirable to operate a wireless network without taking all the security precautions available. That's just common sense, as is locking your car in these high-crime times. But are we blurring the lines between right and wrong when we make it a crime to leave your network unsecured, especially since many WAPs still come with security mechanisms turned off by default? Or does an unsecured network have such serious ramifications for the Internet community as a whole that it warrants imposing such responsibilities on the users of such networks? Let us know what you think, at [email protected].
 
OP
OP
Chaz

Chaz

observationist
Joined
Mar 11, 2003
Posts
11,327
Reaction score
7
Location
Wandering the Universe
I did have mine unsecured for a while because I just didn't bother to do it.

I did secure it last week when I saw a strange MAC address. Given what may be considered criminal these days it is a good idea to at least make a reasonable effort.

It is a little like locking your car, in that if someone knows what they are doing they can probably get in anyway.
 

az240zz

ASFN Lifer
Joined
Sep 11, 2002
Posts
3,314
Reaction score
542
I have a wireless router that someone else installed for me. How do I secure it? I have windows XP and use a Linksys router.

az240z
 
OP
OP
Chaz

Chaz

observationist
Joined
Mar 11, 2003
Posts
11,327
Reaction score
7
Location
Wandering the Universe
az240zz said:
I have a wireless router that someone else installed for me. How do I secure it? I have windows XP and use a Linksys router.

az240z

You should be able to logon by browsing to it using your web browser.

Three main points. The first to should always be done. The third is optional.

1. Change the default password.

2. Enable WEP encryption. Match the setting on your wireless computer to those on the access point.

3. You can also turn on MAC filtering. You need the MAC address for each wireless card you have. It will be a 12 character HEX number that looks something like this:
A9-C0-34-23-D1-79
 

jw7

Woof!
LEGACY MEMBER
Supporting Member
Joined
Aug 10, 2002
Posts
8,194
Reaction score
7
Location
Ahwatukee
SirChaz said:
You should be able to logon by browsing to it using your web browser.

Three main points. The first to should always be done. The third is optional.

1. Change the default password.

2. Enable WEP encryption. Match the setting on your wireless computer to those on the access point.

3. You can also turn on MAC filtering. You need the MAC address for each wireless card you have. It will be a 12 character HEX number that looks something like this:
A9-C0-34-23-D1-79
What SirChaz said, but there are a couple other things like turning off SSID broadcasting. Check the link a few posts above and there are additional measures.
 

Latest posts

Forum statistics

Threads
552,849
Posts
5,403,449
Members
6,315
Latest member
SewingChick65
Top