Previous Thread
Next Thread
Print Thread
Rate Thread
Page 2 of 2 1 2
Re: Home LAN options?
Stymie #164881 04/12/07 03:05 AM
Joined: Oct 2006
Posts: 35
K
enthusiast
Offline
enthusiast
K
Joined: Oct 2006
Posts: 35
A lot of people are saying that wireless is not secure. There is a 128 bit encryption key and you can set it so just your own mac address can access the network and each mac address is unique. Also check your firewall setting and only open ports you use and if you are capable set access lists.

Drew


M22 mains, M3 center, outlaw 1070 receiver, 42" Plasma, A2 HD DVD, Dual SVS PB10-NSD
Re: Home LAN options?
tomtuttle #164882 04/12/07 03:58 AM
Joined: Sep 2004
Posts: 5,422
axiomite
Offline
axiomite
Joined: Sep 2004
Posts: 5,422
Quote:

umm, hey, Nick, whatcha using 38 Cat5 network lines for? Does homeland security know?




We bought the house new, but it was spec'd out by someone else who wanted at least 4 network, cable, and phone jacks in each room of the house. The living room has 6 of each, the home theater has it's normal 3, but the equipment rack has a set of 4 of each as well.

If I could plug it all in to a power source, maybe I would have a large electro-magnet!


Farewell - June 4, 2020
Re: Home LAN options?
kryolla #164883 04/12/07 04:37 AM
Joined: Dec 2003
Posts: 3,602
B
connoisseur
Offline
connoisseur
B
Joined: Dec 2003
Posts: 3,602
Quote:

A lot of people are saying that wireless is not secure. There is a 128 bit encryption key and you can set it so just your own mac address can access the network and each mac address is unique. Also check your firewall setting and only open ports you use and if you are capable set access lists.


One of my guys' friends works for a security company, one of those places that hires ex-hackers to consult. Took him 3 minutes to get into one of my neighbour's wireless LANs and about 10 to get into the other one. Again, networking is not my forte - so my understanding is a bit limited. Apparently it involved sniffing out the network key, and then a MAC cloning for the more difficult one.

Maybe more than Joe Q. Public will be doing, but there are guys out there like him, so I figure running a bit of cable instead of using the airwaves is pretty good insurance.

Bren R.

Re: Home LAN options?
kryolla #164884 04/12/07 01:29 PM
Joined: Aug 2006
Posts: 132
veteran
Offline
veteran
Joined: Aug 2006
Posts: 132
Quote:

You shouldnt worry about gigabit ethernet for home use, 100 mbs fully duplex is good enough. Hope this helps

Drew




For a lot of homes, this is probably true. If you plan on streaming movies or just copying them from one machine to another, you'll want a gigabit switch. Most if not all new PCs should be coming with gigabit NICs now and if they don't , they are very cheap to add. Even if you don't need one now, it makes good sense to future proof your setup while you have the chance. Just my 2 cents.




Re: Home LAN options?
Stymie #164885 04/12/07 03:04 PM
Joined: Oct 2006
Posts: 6,955
axiomite
Offline
axiomite
Joined: Oct 2006
Posts: 6,955
I've written lists of tips for groups a few times so heres a cut and paste from my notes version since the presentations are full of formatting. Even made brief, it's a long list. It's also the unedited, non spell checked version so don't make fun.

In no particular order...

Try and use WPA over WEP encryption if you have a choice. Both use 128 bit encryption but WEP sends part of the key out in it's very first packet. If the person sniffing your network happens to catch that packet, it can greatly reduce thier hack time.

Wireless is more famous for being wide open because most people don't know or bother to protect it but people can sniff your wireline network too when you are attached to the internet unless you are going through a VPN to somewhere specific.

Use a wireless router that does IP translation so your PC is not using a live IP on the internet.

Use the best firewall you can but even XP's built in one is better than nothing. Make sure it's turned on if you have nothing else. Wireless routers have firewall capabilities as well.

Learn, even just a little, about how your firewall works. Learn what a 'port' is and how to safely block and open them. Short version - A port is a numbered doorway into your computer via a netowork or the internet. Web uses port #80 for instance. A main feature of firewalls is that they can close all the ports that don't need to be used. Some open ports are required, some are relatively harmless while others, if left open, can allow total access to your PC.

Use Anti-virus and anti-spyware. No good having a firewall if you pick up a trojan that is designed to open a hole from the inside. If you won't pay for a mainstream version, at least download the free stuff. It is actually recommended to run multiple forms of antispyware from time to time as there as simply sooo many varieties.

Locking your network down to specific MAC addresses is good to do, but they can be easily spoofed as well. Of course they would need to know what it is first. Of course, even a freeware sniffer will tell them if they are watching your network.

Don't forget to change the administrator password in your wireless router. Change the username "administrator" too if it will let you.

Change the SSID (name of the network) from the default name. It doesn't really make much difference security wise but not changing it flags you as someone who probably didn't know how to secure their network.

Turn Off the SSID (Network ID) broadcast feature. Unless you have a lot of guests, you will have already programmed your PCs with the correct SSID. No need to advertise that you are 'out there'.

Here is one you might not think of. Your network could be fairly secure but if you turn on the 'auto-connect' feature on your wireless laptop, you might accidentally connect to your neighbors network, still be able to surf the net but now be possibly much less protected.

-------
No encryption is unbeatable but the good ones take such effort to break, they have to have a good reason to choose "you" to bother with.

Wireless is more famous for being wide open because most people don't know or bother to protect it but people can sniff your wireline network also when you are attached to the internet unless you are going through a VPN. It depends on how the service provider is set up, how many can directly 'sniff' your network but there almost assuredly a few who can.


All add this for this group....

I'm personally very comfortable with my security behind my wireless router, firewall and in being set up with all of the above precautions. Comfortable enough to make Internet purchases of expensive speakers using my Visa online.

If you are really concerned about the wireless feature, run some cat5 and stick to physical connections but don't forget to still use precautions to keep the Internet baddies out in general.

or....
you can always wrap your house in tin foil!


With great power comes Awesome irresponsibility.
Page 2 of 2 1 2

Moderated by  alan, Amie, Andrew, axiomadmin, Brent, Debbie, Ian, Jc 

Link Copied to Clipboard

Need Help Graphic

Forum Statistics
Forums16
Topics24,984
Posts442,691
Members15,643
Most Online2,699
Aug 8th, 2024
Top Posters
Ken.C 18,044
pmbuko 16,441
SirQuack 13,849
CV 12,077
MarkSJohnson 11,458
Who's Online Now
0 members (), 595 guests, and 0 robots.
Key: Admin, Global Mod, Mod
Newsletter Signup
Powered by UBB.threads™ PHP Forum Software 7.7.4