Thread: Wireless Security Blackpaper
View Single Post
Old 07-20-2002   #5 (permalink)
blackwave
Do I look like I'm joking
 
blackwave's Avatar
 
Join Date: Apr 2002
Location: SoCal, OC
Posts: 4,507
Quote:
Originally posted by Sh00t3r
So why is my linksys AP using BOTH? Should I set it specifically to open?
If someone has unlimited resources and unlimited time, they are going to get into your network, and using wifi would be the simplest way go about it.

Security is just a method to slow attackers down that have intent to enter areas that are not meant as public.

Some measure of obscurity if often better than none because it is unknown to the capability of your attacker. For example if the attacker is unskilled, they may move on to simpler targets. If the attacker is unskilled, yet using a script written to attack your configuration specifically, well then better make sure your configuration is not set to any defaults, and is as unique as possible which may foul the script, and then they would move on.

By relying on the design of the boxes created by the manufacturers we are soley trusting that those guys had some brains to allow for changes, such as firmware updates. On top of making your system unique after you pull it from the box, be sure to upgrade to the latest firmware, software from the site.

This is pretty much all one can do that is within control of the
end-user.

1. I would think that both have been set on for default for simpler configuration for dumb users. Personally I would set mine to use whatever security offered, as per the reasonings above.

2. Though also I would make sure that anything I would be putting on air to be via vpn tunnel for extra measures of security, as well as locking down the AP/Router as best as possible.

3. Anything going over the air should not be any type of sensitive data. I would not be too concerned over any normal internet usage such as buying something online, most connections are using ssl, which add a little bit more security.

4. Also make sure your schema is secure, your os hardened, your email applications hardened, as well as anything else used on said system... it certainly does not help to have all this security, and be running a hot version of kazaa... I hate seeing this type of gaping hole on user's networks...

5. By making your target more difficult to penetrate, the chances are more likely that the attacker will either:
a. more to a simpler target.
b. find another method of penetration, such as dumpster diving, social engineering, etc...

6. Lastly, if someone wants to get in bad enough at all costs, they most probably will in one form or another.
__________________
-=BW=-
blackwave is offline   Reply With Quote