Question about computer stuff

[splinterkb]

Hey I got a question. I just got a wireless broadband router for my internet, and I'm wondering if its more at risk than a regular broadband connection. Should I install a firewall?

 

[diablo]

From what I understand, the only way a wireless router would be more 'at risk' than a wired would be if you're in a heavily populated area or apartment complex, and even then the only thing you'd really have to worry about is someone else using your router to get on the internet. In any event, you should always have a firewall and passwords set up regardless of which one you use.

 

[Warboss Alex]

As with diablo, a firewall is a must regardless of what connection you use.

A wireless router is no safer/more dangerous than an ethernet connection (because it's still the one connection people tap in to if they're gonna hack you) as regards hackers BUT if you don't secure your connection other people in the neighbourhood could use it.

Most routers seem to have their own firewall anyway though I also have one on my laptop (which uses a wireless connection).

 

[Abbott]

Originally posted by splinterkb
Hey I got a question. I just got a wireless broadband router for my internet, and I'm wondering if its more at risk than a regular broadband connection. Should I install a firewall?

OK...what do you mean by regular? Connecting it directly to a PC?

As far as risk is concerned, it depends on where the attack comes from, and how well you set up security.

If the attacker is coming through the Internet, then it makes no difference. If the attacker is using a wireless NIC and is nearby, then it's riskier with the wireless AP/router, especially using default settings.

Yes, install a firewall. If you're like most people, the best choice is to install some software on your PC.

But if the sky is the limit, then ideally you'd have a hardware firewall between the Internet and your network, a Cisco router, a Cisco wireless AP, and another hardware firewall in between the router and the AP.

But failing that, you should install firewall software on each PC that uses the router. You didn't mention that you had a hardware firewall, so I have to assume you don't have one.

Plus, don't ever use the default settings, ever!

Change the SSID, change the channel, turn off SSID broadcasting, and enable MAC address filtering.

When you turn off SSID broadcasting, your AP becomes undiscoverable, so you have the know the SSID before hand before you connect to the network. The PC can't discover the network.

MAC address filtering only lets PCs with certain specific NICs to connect to the AP. If you turn it on, you have to enter in the MACs individually. If you use Windows, you can get the MAC address by typing ipconfig /all at the command line (Start > Run > cmd). The info you'd need would be after "Physical Address." Be sure to use the option that applies only to wireless connections, as opposed to any connections (wired or wireless). And you'll need to update the settings any time a NIC needs replacing, is added, or is removed.

Plus, turn on encryption. Use the highest settings your AP and PCs will support.

WPA2 > WPA > WEP > Nothing

AES > TKIP

Unfortunately, you can only use the highest settings supported by the weakest client / AP. Hopefully they all support WPA or higher, but if not do the best you can.

Make the key out of strange gobbledy-gook that doesn't make any sense at all. Mix lower and upper case letters, numbers, and symbols. Make it as long as possible. If you must write it down, put the paper in a place where no one will find it, ideally a safe-deposit box.

Hope that helps.


Ben

 

[Alicorn]

Oh NM, I didn't read the last post.