1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How much security is enough?

Discussion in 'General Discussion' started by Soylent, Jun 26, 2005.

  1. Soylent

    Soylent Network Guru Member

    Hi, I have the WRT54G, and I have it set up like this:

    WPA TKIP encryption on
    MAC address filter on (permit only my MACs)
    and "Max DHCP Clients = 2" (my two client machines)

    Is this enough to prevent a drive-by getting into my network? What else can I do for more wireless security?
     
  2. jagboy

    jagboy Network Guru Member

    that looks like it is good enough. and looks like it can stop casual wardrivers. but a wireless network is never %100 secure. there are tools that could break wpa here is a link:
    http://www.tinypeap.com/html/wpa_cracker.html

    and here is a link to a wep cracker:
    http://airsnort.shmoo.com/

    here are some mac spoofing tools:
    http://www.gorlani.com/publicprj/macmakeup/macmakeup.asp

    but a layered approach is the best way and that is what you have. maybe if you want some better secuirty that will stop alot of hackers is maybe a captive portal with authentication.
     
  3. Soylent

    Soylent Network Guru Member

    Is that something like RADIUS? I figured that sort of thing is difficult to set up
     
  4. jagboy

    jagboy Network Guru Member

    yes it is like radius. and is a little hard to setup. the only thing that i have problems with is that i you need a external serverv of the captive portal.
     
  5. Soylent

    Soylent Network Guru Member

    Lol, well I believe I'll stick to my current settings then. Thanks for the help and the links!

    SG
     
  6. jagboy

    jagboy Network Guru Member

    no problem
     
  7. Soylent

    Soylent Network Guru Member

    Actually, I have another question. I noticed that in the WPA setup area, I can choose an encryption algorithm of "TKIP" or "AES". I googled tkip vs aes, and I found that tkip is a key management method, and AES is an encryption method. So what the heck does Linksys mean by offering these choices? And which is more secure?

    Thanks again :)
    SG
     
  8. jagboy

    jagboy Network Guru Member

    well me personally i think that TKIP is more secure. becuase one that is what linksys says. and becuase TKIP is the default standard for WPA. also more networked devices support TKIP.

    but i think that wpa2 will use AES encyption. i am not sure.
     

Share This Page