1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security...

Discussion in 'Other Linksys Equipment' started by Eugenios, May 30, 2005.

  1. Eugenios

    Eugenios Network Guru Member

  2. jagboy

    jagboy Network Guru Member

    i dont aggree with this guy in many ways Rolling Eyes
    like mac address filtering. sure it can be spoofed. but how many packets need to go by till you get a mac. same thing goes for wpa. but i dont get me worong it is a lot hard for wpa. but come on. mac address filter is one of the only things that home users have beides wpa, wpa radius etc...

    he should have wrote a bolg on how to secure your network not bash the tools we use the secure them.

    i belive in a layer aproch. if you out lets say mac address filter according to thi guy is not safe and out i dont know leap authentication and hide your ssid Disable DHCP and use LEAP authentication and aslo use wpa what hacker would go through all this when he/she could find a easier victime. this is time consuming to go though all the layer of security. granted that they are crappy security methods exept for wpa but still better haveing a small front door to a house then having none.
     
  3. Eugenios

    Eugenios Network Guru Member

    I agree with you that no one is "the" expert in security, simply because someone will always find a way to crack the uncrackable.

    On the other hand, WPA-AES seems to be the best security available for wireless networks at this moment and I don't understand why LinkSys doesn't support it on the WPC54G. I am now using only WPA-TKIP with a very secure passphrase. But it is not my own network that I am worrying about. When I install a wireless for my client I want to give him the best security possible, because if someone tampers with his network I will be the first to be blamed.

    Personally I don't like wireless networks because it is still at a children's stage in life. However, it is obvious that it is very usefull in some situations. I would like to see secure wireless networks in business environments. This is something that will really sell.

    Eugenios
     
  4. jagboy

    jagboy Network Guru Member

    and it does, doent it.
     
  5. Guyfromhe

    Guyfromhe Network Guru Member

    he says he wrote an article on securitng your network as well..
    I can't see it hurting to have that stuff on, it will deter many people but using it alongside encryption, and unless you deploying a major network of several hundred computers that changes on a daily basis it really doesn't take all that long to implement MAC filtering... some of those things such as turning DHCP off can be annoying but MAC filtering though hardly a seious roadblock it will probably stop 70% of people parked outside your house, particularly if your wlan isn't used that much...
     
  6. Guyfromhe

    Guyfromhe Network Guru Member

    probably the best way to keep your wlan safe is to have a neighbour with an open AP
     
  7. jagboy

    jagboy Network Guru Member

    this is true
     
  8. Eugenios

    Eugenios Network Guru Member

    It sells, and people are using it without any security. That's their problem you might say, and I agree. But if I sell it to a customer of mine I want it to be secure otherwise my customer will chop my head off when someone hacks into his business.

    Eugenios
     
  9. jagboy

    jagboy Network Guru Member

    that stinks
     
  10. Eugenios

    Eugenios Network Guru Member

    Stinks, no stinks, its the I.T. mans responsibility. There are alot of I.T. companies that sell stuff "as is" without setting up the wireless network with the right security options. Also there are alot of I.T. administrators that don't know how to do their job right. I work as a consultant and outside man, giving my services to big and small companies. That is why I must be carefull if I want to have a good name in the market.

    Eugenios
     
  11. jagboy

    jagboy Network Guru Member

    have you used wpa2 i have not heard anythig about it being cracked yet in the hacking community
     
  12. Eugenios

    Eugenios Network Guru Member

    WPA2 is the newer encryption protocol that is not supported yet by most wireless products. It is suppose to be one level higher in security then the previous WPA encryption. When producers of wireless products start supporting WPA2 it will definitely be prefered by users and companies.

    Eugenios
     
  13. jagboy

    jagboy Network Guru Member

    yes i know but have u tried it yet. i think i know some wireless adapters that support it. and the new beta firmware for the WRT54G(s) support wpa2
     
  14. Eugenios

    Eugenios Network Guru Member

    I have the WAP54G (access point) which already has support for the WPA-AES. It is my PCcard WPC54G that does not support it and I have tried using other drivers (Broadcom, HP) but they do not work with my PCcard. I can only use the driver that came with the card. LinkSys says that it knows about this problem and that they do not have a solution. It seems that they are not going to make a new driver (beta or not). They also told me to change my card for a LinkSys WPC54G that supports version 4. GREAT!!! But I just bought this card, what am I suppose to do with it? Throw it out the window? And I can't find the PCcard which supports version 4 here in Greece anyway.

    This is some kind of stupidity of LinkSys. Selling a PCcard with documentation which says that it supports WPA-AES but when you install it, it doesn't. I hate it when I buy a product that says it does things that it really doesn't do... :(

    Eugenios
     
  15. jagboy

    jagboy Network Guru Member

    sell it on ebay. then buy a WPC54G v4 off of ebay.
     
  16. bluedog

    bluedog Network Guru Member

    I think the author is just saying don't feel safe if you are only using one of these methods because they can be easily bypassed.

    I agree with Jagboy, the layered approach is always good as there will always be a way in. Also, I think most of the consumer routers are meant to keep out the casual home users. Those demanding more security to keep their networks safe need to use better appliances to do so. Maybe paint your house with the special paint to keep the signal in. Cover the windows... Put up a fake unsecured AP (honey bucket) like Guy was referring too..

    Just a couple of ideas, but bottomline... It is always wise to be cautious,

    -BD
     
  17. Eugenios

    Eugenios Network Guru Member

    I don't think I will go that far. I bought mine just a month ago which means that my guarantee is for another 11 months... and I don't want to spend anymore time on this subject.

    What I will do however, if I buy another wireless card, is make sure it supports WPA-AES! :D

    Eugenios
     
  18. Eugenios

    Eugenios Network Guru Member

    I was thinking of putting special metalic bars around the house that cut off any incoming signals, but my neighbors will probably sue me for disrupting all their wireless components! :lol: :lol: :lol:

    I am not afraid of my neighbors kid. All he could do is use my Internet line. The whole discussion is about using wireless in an office, where you don't want the adjacent office to see your company secrets. This is where WPA-AES comes in. For now, it is the most secure encryption.

    Eugenios
     
  19. jagboy

    jagboy Network Guru Member

    dont under estimate kids i am only 15 and i have been able to get into my neighbors wireless networks and i have been able to get into there computers. and it is not all that hard since linux is free and easy to use
     
  20. Eugenios

    Eugenios Network Guru Member

    99% of home networks today don't have any security. Only some PC's with XP-SP2 have the default security settings which is much better then nothing. So I am not amazed that you can get into your neighbors network and PC.

    If however you got into a company network and downloaded all their data, then erased it, and then sent the company a letter telling them that you can resotre their data for a few million dollars, well.... THAT's ANOTHER STORY!!!!!!!! :lol: :lol: :lol:

    Keep up the good work!

    Eugenios
     
  21. jagboy

    jagboy Network Guru Member

    black mail? sound good to me thanks for the idea
     
  22. Eugenios

    Eugenios Network Guru Member

    Is that what they call it? Black Mail? Hmm... I think of it more as white mail because the company that will get their data back will be white with happiness! :lol:
     
  23. jagboy

    jagboy Network Guru Member

    that is if they get the data back.
     
  24. Eugenios

    Eugenios Network Guru Member

    If they want to have a good reputation, they should always give back the data! :lol: :lol: :lol:
     
  25. jagboy

    jagboy Network Guru Member

    @Eugenios

    u said u setup networks how much does that pay?
     
  26. Eugenios

    Eugenios Network Guru Member

    It depends on the size of the network, if it is hardwiring or wireless, and if it involves setting up the PC's as well. To get an idea, think in "working hours" ...how long would a specific job take you to complete. If you charge, lets say $40/hour then you can get an idea of how much it pays. Keep in mind that you would charge less then $40/hour if the specific job is very big.
     
  27. jagboy

    jagboy Network Guru Member

    wow what happen when no one need or everyone has a network setup in Greece
     
  28. Eugenios

    Eugenios Network Guru Member

    What are you saying? That $40/hour is too much or too little?
     
  29. jagboy

    jagboy Network Guru Member

    $40 is a good price to charge.
     
  30. Eugenios

    Eugenios Network Guru Member

    Good is vague. Like saying that $40 isn't much and that I should charge more. Give me an idea of what you charge in N.Y.
     
  31. jagboy

    jagboy Network Guru Member

    in NY people would maybe charge about the same price. maybe more, alittle more. in NYC if it is a big company you normally would find that they charge alot more than $40 an hour.
     
  32. Eugenios

    Eugenios Network Guru Member

    Here in Athens it is somewhat similar, a student would charge even less then $40 but a computer company would charge around $60 for the first hour and $40 for every next hour.
     

Share This Page