Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Page 2 of 2 FirstFirst 12
    Results 11 to 18 of 18

    Wireless Security...

    This is a discussion on Wireless Security... within the Sky Broadband help forums, part of the Sky Broadband help and support category; My tips for wireless security 1) MAC address filtering 2) Small DHCP Pool 3) If you dont need DHCP then ...

    1. #11
      Christopher's Avatar
      Christopher is offline Sky User Member
      Exchange: Sacriston
      Broadband ISP: Connect
      Router:
      Sky TV:
      Join Date
      Oct 2006
      Location
      Durham
      Posts
      78
      Thanks
      0
      Thanked 0 Times in 0 Posts
      My tips for wireless security

      1) MAC address filtering
      2) Small DHCP Pool
      3) If you dont need DHCP then dont use it!
      4) use WPA over WEP
      5) hide your SSID
      6) change network address from standard class C 192.168.x.x to a class B 172.16.x.x (its less common)
      7) change the admin username and password for your router
      8) change WPA key every now and then
      9) subnet your network, block other subnets? (i tried it never worked on my BT router)
      10) create firewall rules blocking all inbound addresses apart from addresses you have assigned or the addresses in your DHCP pool, remember keep your DHCP pool as small as possible.

      number 10 works best if you assign static IPs and block all IPs other than the static ones, anyone else trying to connect wont be able to because of an address conflict.

      You could keep your DHCP pool large but reserve all of the addresses sp they never get assigned, these are all just theoretical points but I think their worth following, even trivial ones like hiding the SSID, most war drivers are looking for an easy target.


    2. Advertisement
    3. #12
      Saturday's Avatar
      Saturday is offline Sky User Super Mod
      Exchange:
      Broadband ISP: Sky Broadband Unlimited Pro
      Router: Sky Hub SR102
      Sky TV: Sky+HD box
      Join Date
      Sep 2006
      Posts
      6,086
      Thanks
      20
      Thanked 52 Times in 47 Posts
      Well I suppose none of that can hurt but if you do 4 and 8 then the rest is a waste of time - a bit like putting a thin wooden barrier in front of a 6 inch thick steel door.

    4. #13
      Christopher's Avatar
      Christopher is offline Sky User Member
      Exchange: Sacriston
      Broadband ISP: Connect
      Router:
      Sky TV:
      Join Date
      Oct 2006
      Location
      Durham
      Posts
      78
      Thanks
      0
      Thanked 0 Times in 0 Posts
      suppose your right haha nice example, I always keep my DHCP turned off, dont like using it, nothing wrong with statically assigning IP addresses

    5. #14
      GuitarJammin'76's Avatar
      GuitarJammin'76 is offline Sky User Member
      Exchange:
      Broadband ISP: Sky Max/Unlimited
      Router: Sagem F@ST 2504
      Sky TV: Sky+HD box
      Join Date
      Jun 2010
      Posts
      58
      Thanks
      0
      Thanked 0 Times in 0 Posts

      Re: Wireless Security...

      Quote Originally Posted by garyb View Post
      Hi,
      In the past 2 hours my USB adapter has dicovered 4 unsecured Sky networks!I am not an expert in wireless security by any means but have configured my LAN as follows in the hope it may help others secure there home networks.

      This obviously wont suit everyone but it helps me sleep easier!

      Changed Default Administrator Passwords
      Enabled WEP Encryption [32 characters]
      Changed the Default SSID
      Enabled MAC Address Filtering on Netgear router
      Restricted DHCP range to allow only 2 IPs [laptop & desktop]
      Block inbound traffic
      Enable outbound traffic on port 25, 80, 443 & 3389 [work purposes]
      Disabled SSID Broadcast
      Turned off the router when not in use
      Disabled C drive share & file & printer sharing
      Installed XP SP2 & Windows defender [Free]
      Enabled XP firewall
      Installed AVG or Avast AV [free]

      Am I paranoid or are my fears real!!

      G

      MS defender
      Windows Defender: Home Page
      AVG - AVG UK - Real-time protection against viruses, spyware and malicious websites
      I've done stacks of research on this, and my findings indicate that WEP is RUBBISH! My experience also points to this fact - given that the details of my prepaid card (I will never use a proper credit card online) have been picked up by people in the past - that was before I went with WPA or WPA2. WPA is the minimum you want these days - WPA2 is the best security available and I am somewhat disappointed with Sky for not getting off their backsides and including that option in a much needed firmware update! Do yourself a favour and ditch WEP and go with WPA or WPA2 if your router supports it.

      As to the clowns with completely unsecured networks, they might as well hang a sign outside the house saying: free financial/private details available right here!

      Remember, a person doesn't even need to sit outside your house to pick up your details if your security is rubbish - they can drive past at 30mph and they have the equipment to pick up every network in the area. From what I've read, it then becomes a similar principle to a burgular looking for a target - if they see open windows everywhere (WEP), then they'll target the place, as they can get in and out with the minimum of fuss. If they see an alarm, good, well secured doubleglazed windows and a 'beware of the dog' sign (WPA2), they'll most likely look for an easier target - same principle with 'wardrivers' (that's what it means when someone cruises a neighbourhood looking for networks to crack).

      Above all, chuck WEP.

    6. #15
      GuitarJammin'76's Avatar
      GuitarJammin'76 is offline Sky User Member
      Exchange:
      Broadband ISP: Sky Max/Unlimited
      Router: Sagem F@ST 2504
      Sky TV: Sky+HD box
      Join Date
      Jun 2010
      Posts
      58
      Thanks
      0
      Thanked 0 Times in 0 Posts

      Re: Wireless Security...

      Quote Originally Posted by Saturday View Post
      Well the easy answer is why turn SSID off? It really won't enhance the security of your network at all. Anyone who is capable of even trying to get into your network can detect it with or without SSID being broadcast. WEP will protect you against casual snooping but WPA is much more effective. If your card won't support it then if you're worried about security then you should consider replacing it.

      The reason you're having problems is probably because of a feature within XP SP2. You can get a Microsoft hotfix for this if you really feel you need it.
      WPA v WPA2? Why doesn't the Sky router support the very latest version - WPA2? Or WPA + WPA2, if that makes a difference?

    7. #16
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,131
      Thanks
      64
      Thanked 1,641 Times in 1,602 Posts

      Re: Wireless Security...

      WPA2 is the best security available and I am somewhat disappointed with Sky for not getting off their backsides and including that option in a much needed firmware update!
      It is included in the latest firmware upgrade for the Sagem. Unfortunately bugs in it forced them to withdraw it a few days after it was released.

      See Sagem Firmware 2.6 upgrade?

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      http://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





    8. #17
      GuitarJammin'76's Avatar
      GuitarJammin'76 is offline Sky User Member
      Exchange:
      Broadband ISP: Sky Max/Unlimited
      Router: Sagem F@ST 2504
      Sky TV: Sky+HD box
      Join Date
      Jun 2010
      Posts
      58
      Thanks
      0
      Thanked 0 Times in 0 Posts

      Re: Wireless Security...

      Interesting - does that mean that Sky are going to give up on upgrading us to WPA2, and leave us with WPA which, while it is miles better than WEP, isn't the best available? If you have had details picked up by people before, albeit while with WEP, then you tend to want the best that's available, you know?

    9. #18
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,131
      Thanks
      64
      Thanked 1,641 Times in 1,602 Posts

      Re: Wireless Security...

      I would think they will be at work sorting out the bugs. To be honest they should not have released it until the bugs were fixed, someone will have had a hard knock on the knuckles. As WPA2 is available in the Standard Sagem firmware, it should not be that difficult just to insert their 'lock down' code.

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      http://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





     

     
    Page 2 of 2 FirstFirst 12

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2017. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION