Announcement

Collapse
No announcement yet.

secure wlan

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    secure wlan

    Hi,

    Will turning off SSID broadcast, encryption eg VPN, MAC address filtering as well as authentication be a sufficient level of protection for wlan?

    By turing SSID broadcast off, it effectively reduce casual war driver. Is there a way still to get the SSID if AP is configure not to broadcast and with MAC address filtering on?

    Furthermore encryption will protect again sniffer and authentication against unauthorized used.

    Any futher suggestion and comment to increase wlan security?
    Tags: None
  • #2
    Re: secure wlan

    Originally posted by jetcyc
    Will turning off SSID broadcast, encryption eg VPN, MAC address filtering as well as authentication be a sufficient level of protection for wlan?
    Probably

    By turing SSID broadcast off, it effectively reduce casual war driver.
    Not if they are running Kismet

    Is there a way still to get the SSID if AP is configure not to broadcast and with MAC address filtering on?
    As soon as a client logs on, the SSID will be broadcast.

    Comment

    • #3
      Re: secure wlan

      Originally posted by jetcyc
      Will turning off SSID broadcast, encryption eg VPN, MAC address filtering as well as authentication be a sufficient level of protection for wlan?
      Sufficient for what? Remember security increases with what it is you want to secure... if someone wants to get your data bad enough they will... and most likely by digging through your trash first. :) If you find something valuable, do put it on the airwaves.

      Originally posted by jetcyc
      By turing SSID broadcast off, it effectively reduce casual war driver.
      Depends what the wardriver is using, Netstumbler cannot currently detect cloaked APs, Kismet can.

      Originally posted by jetcyc
      Is there a way still to get the SSID if AP is configure not to broadcast and with MAC address filtering on?
      Sure, remember that once a client that is allowed to connect the SSID will appear.... if you do not want the SSID to appear check out this thread to block beacons completely. : http://www.personaltelco.net/index.c...rmwareSwapping

      Originally posted by jetcyc
      Any futher suggestion and comment to increase wlan security?
      Of course... check out Thorn's RFC Thread on the NS forums
      NetStumbler.com Forums > Misc Forums > Off-Topic > RFC: Wireless security checklist

      http://forums.netstumbler.com/showth...&threadid=2920
      *you must be registered*

      Comment

      • #4
        Re: Re: secure wlan

        Originally posted by blackwave
        ...
        Of course... check out Thorn's RFC Thread on the NS forums
        NetStumbler.com Forums > Misc Forums > Off-Topic > RFC: Wireless security checklist

        http://forums.netstumbler.com/showth...&threadid=2920
        *you must be registered*
        Damn. This thing shows up in the strangest places! :D

        Maybe I should edit it into the FAQ threads on the NS site.
        Thorn
        "If you can't be a good example, then you'll just have to be a horrible warning." - Catherine Aird

        Comment

        • #5
          Re: Re: Re: secure wlan

          Originally posted by Thorn
          Damn. This thing shows up in the strangest places! :D

          Maybe I should edit it into the FAQ threads on the NS site.
          ah, that's right it is in the OT forum!... Great idea Thorn, it should be a FAQ item! :D

          Comment

          • #6
            Re: Re: Re: secure wlan

            Originally posted by Thorn
            Damn. This thing shows up in the strangest places! :D
            As do you.
            I see you've also been lurking here for a while.

            Comment

            • #7
              Re: Re: Re: Re: secure wlan

              Originally posted by fitzStewart
              As do you.
              ;)
              I see you've also been lurking here for a while.
              Yeah, I just don't have that much to say here. That, and I'm firm believer in read first, then post. I'm still reading here, for the most part. This one caught my eye though, and just had to respond.
              Thorn
              "If you can't be a good example, then you'll just have to be a horrible warning." - Catherine Aird

              Comment

              • #8
                Re: Re: Re: Re: Re: secure wlan

                Originally posted by Thorn
                ;)

                That, and I'm firm believer in read first, then post.
                I LOVE YOU!!!!!!


                Why can't everyone be like this?
                the fresh princess of 1338

                What did I do to make you think I give a shit?

                Comment

                • #9
                  Re: Re: Re: Re: Re: Re: secure wlan

                  Originally posted by octalpussy
                  I LOVE YOU!!!!!!


                  Why can't everyone be like this?
                  <blushing>
                  Ah, I bet you say that to all the WiFi enabled, cybernetic, law enforcement units. :)
                  </blushing>

                  Seriously, browse the NetStumbler forums when you have some time. You'll see I am a big advocate of reading first.
                  Thorn
                  "If you can't be a good example, then you'll just have to be a horrible warning." - Catherine Aird

                  Comment

                  • #10
                    Re: Re: Re: Re: Re: Re: Re: secure wlan

                    Originally posted by Thorn

                    Seriously, browse the NetStumbler forums when you have some time. You'll see I am a big advocate of reading first.
                    Actually, I'm registered over there. I too, am a huge advocate of reading first!
                    the fresh princess of 1338

                    What did I do to make you think I give a shit?

                    Comment

                    • #11
                      I prefer shooting first.. reading fits in there somewhere, I'm sure.

                      For those who do not frequent the NS forums, Thorn is probably the most patient and helpful mod I have seen in my travels... not to mention he REALLY knows his shit when it comes to RF et al.
                      if it gets me nowhere, I'll go there proud; and I'm gonna go there free.

                      Comment

                      • #12
                        Thanks, c0nv3r9. You people really will have me blushing. :)
                        Thorn
                        "If you can't be a good example, then you'll just have to be a horrible warning." - Catherine Aird

                        Comment

                        • #13
                          WLAN Security Checklist

                          Just as a followup to the above exchange, the completed checklist is now available in the NetStumbler FAQ Forums. Specificly, the FAQ: WiFi Security thread.
                          Thorn
                          "If you can't be a good example, then you'll just have to be a horrible warning." - Catherine Aird

                          Comment

                          • #14
                            Re: WLAN Security Checklist

                            Originally posted by Thorn
                            Just as a followup to the above exchange, the completed checklist is now available in the NetStumbler FAQ Forums. Specificly, the FAQ: WiFi Security thread.
                            Great Job Thorn!

                            personally I would add :

                            0. Assume everything going over the air is public to anyone with the right configuration and equipment. Use wireless as the last viable option :)

                            Comment

                            Previous template Next
                            Working...
                            X