[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sheflug] Network design problem



Simon Brown wrote:
> * Lesley Binks (lesley.binks@xxxxxxxxx) wrote:
>> Now let's deal with your WAP.
>>
>> You should bear in mind that a wireless device is a receiver and 
>> transmitter.  It doesn't care who or what it receives from or who or 
>> what it transmits to.  When the data over a wireless connection is 
>> transmitted so that a WAP can receive it, any other suitable device in 
>> the range of the transmitting device can also receive it.  And there is 
>> much out there to sniff the air e.g. http://airdump.net/ .
>>
>> I assume your WAP uses DHCP to assign an IP address to any machine that 
>> connects to it.  If your wife is the only one using the wireless access 
>> point then make sure that the DHCP server on the WAP is set to rotate 
>> only one IP address, and that it will only accept from one MAC address 
>> plus use appropriate authentication methods that are not WEP or WPA.
>>
>> WPA2 can be sniffed but you can use 63 character passwords designed for 
>> machine to machine communication i.e. case sensitive and containing any 
>> character including alphanumerics, punctuation and special characters 
>> such as '@' or '>'.  These are harder to crack.  Change this password 
>> frequently.
>>
>> Your wife's machine should also be suitably firewalled and you will have 
>> to deliver the new password to her machine by a secure method every time 
>> you change it on the WAP.
>>
>> None of this is foolproof security but it may stop or hinder some people 
>> from using your network or using your wife's machine as a trojan on your 
>> network.
> Lesley, have you had something of a disagreement with your neigbours?
> 
> Simon

:)



_______________________________________________
        Sheffield Linux User's Group
  http://www.sheflug.org.uk/mailfaq.html
 GNU - The choice of a complete generation