[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sheflug] Network design problem

To: sheflug@xxxxxxxxxxxxxx
Subject: Re: [Sheflug] Network design problem
From: Lesley Binks <lesley.binks@xxxxxxxxx>
Date: Sun, 16 Mar 2008 18:39:49 +0000
Delivered-to: sheflug@meiring.org.uk
List-help: <mailto:sheflug-request@sheflug.org.uk?subject=help>
List-id: <sheflug_sheflug.org.uk.sheflug.org.uk>
List-post: <mailto:sheflug@sheflug.org.uk>
List-subscribe: <http://sheflug.org.uk/mailman/listinfo/sheflug_sheflug.org.uk>, <mailto:sheflug-request@sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://sheflug.org.uk/mailman/listinfo/sheflug_sheflug.org.uk>, <mailto:sheflug-request@sheflug.org.uk?subject=unsubscribe>
Organization: None
Reply-to: lesley.binks@xxxxxxxxx, sheflug@xxxxxxxxxxxxxx
Sender: sheflug-bounces@xxxxxxxxxxxxxx
User-agent: Icedove 1.5.0.14pre (X11/20080208)

Simon Brown wrote:
> * Lesley Binks (lesley.binks@xxxxxxxxx) wrote:
>> Now let's deal with your WAP.
>>
>> You should bear in mind that a wireless device is a receiver and 
>> transmitter.  It doesn't care who or what it receives from or who or 
>> what it transmits to.  When the data over a wireless connection is 
>> transmitted so that a WAP can receive it, any other suitable device in 
>> the range of the transmitting device can also receive it.  And there is 
>> much out there to sniff the air e.g. http://airdump.net/ .
>>
>> I assume your WAP uses DHCP to assign an IP address to any machine that 
>> connects to it.  If your wife is the only one using the wireless access 
>> point then make sure that the DHCP server on the WAP is set to rotate 
>> only one IP address, and that it will only accept from one MAC address 
>> plus use appropriate authentication methods that are not WEP or WPA.
>>
>> WPA2 can be sniffed but you can use 63 character passwords designed for 
>> machine to machine communication i.e. case sensitive and containing any 
>> character including alphanumerics, punctuation and special characters 
>> such as '@' or '>'.  These are harder to crack.  Change this password 
>> frequently.
>>
>> Your wife's machine should also be suitably firewalled and you will have 
>> to deliver the new password to her machine by a secure method every time 
>> you change it on the WAP.
>>
>> None of this is foolproof security but it may stop or hinder some people 
>> from using your network or using your wife's machine as a trojan on your 
>> network.
> Lesley, have you had something of a disagreement with your neigbours?
> 
> Simon

:)



_______________________________________________
        Sheffield Linux User's Group
  http://www.sheflug.org.uk/mailfaq.html
 GNU - The choice of a complete generation

References:
- [Sheflug] Network design problem
  - From: Peter Humphrey
- Re: [Sheflug] Network design problem
  - From: Tom Bird
- Re: [Sheflug] Network design problem
  - From: Peter Humphrey
- Re: [Sheflug] Network design problem
  - From: Lesley Binks
- Re: [Sheflug] Network design problem
  - From: Simon Brown

Prev by Date: Re: [Sheflug] Network design problem
Next by Date: Re: [Sheflug] Network design problem
Previous by thread: Re: [Sheflug] Network design problem
Next by thread: Re: [Sheflug] Network design problem
Index(es):
- Date
- Thread