curious in Tulsa
@sbcglobal.net
| Can One SSID Be More Secure Than Another?
Everyone knows to set a "unique" SSID for their wireless network. I also see recommendations to use a "random" SSID. Is there an advantage to using one which is truly random, like we use for our wireless network passphrases? Of course I understand that a secure passphrase is much more important than the SSID, but it would be easy for me to use a long, truly random SSID if there were any advantage to it.
Opinions? |
|
Cudni
La Merma - Los De Aca
Premium,MVM
join:2003-12-20
Someshire | no, none
Cudni |
|
docrice
join:2008-03-31
Fremont, CA
| reply to curious in Tulsa
Cryptographically, no, it doesn't make a difference. However, it may help a bit if you used an SSID value that wasn't located in any rainbow table. That being said, as long as you somewhat customize the final SSID and not use the default factory "linksys" or "Netgear" values, you should be ok. |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
| reply to curious in Tulsa
Unlike Cudni I do have an opinion! 
(yeah yeah he was answering the question LOL)
As for the opinion, merely that this is a waste of a thread as doing some basic research or reading the gazillion threads in this forum on the topic would have told you that Cudni short and sweet answer to be right on.
--
Ain't nuthin but the blues! "Albert Collins".
Leave your troubles at the door! "Pepe Peregil" De Sevilla. Just Don't Wifi without WPA, "Yul Brenner"
LlamaWorks Equipment |
|
curious in Tulsa
@sbcglobal.net | With all due respect, I don't think this thread is a waste. From docrise's response, I infer a random SSID is a simple and effective way for thwarting attacks utilizing rainbow tables. Thanks for the info, docrise. |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS | Fill your boots at the altar of ignorance. I always say a false sense of security is far worse than knowing you don't have any. |
|
sded
Premium
join:2002-11-04
San Diego, CA | reply to curious in Tulsa
I had a revelation from another thread. For best security, put the router on channel 6, change the SSID to linksys, cut the power to a minimum, and get lost in the clutter.  |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS | Do you know what the purpose of the SSID is?
If your having problems with too many B/G units in the area, suggest using A wifi. If your concern is security simply use WPA/WPA2. |
|
SoonerAl
Old Enough To Know Better
Premium,MVM
join:2002-07-23
Norman, OK
|  said by Anav  :Do you know what the purpose of the SSID is? If your having problems with too many B/G units in the area, suggest using A wifi. If your concern is security simply use WPA/WPA2. Right on brother...
Using a unique SSID for the home wireless network to aid in identifying and troubleshooting purposes and the use of WPA2/WPA with a long random key is the best security you can have for home users.
The rest is smoke and mirrors... 
Personally I broadcast my unique wireless network SSID and use a 63-character random ASCII key and WPA-PSK (AES). My wireless network runs at full power 24/7 whether I am home or not on short term or long term travel. No unathorized intrusions here.
--
"When all else fails, read the instructions..."
MS-MVP Windows – Desktop User Experience |
|
digitalslurp
Premium
join:2008-04-22
Richmond, VA
clubs:
 ·Vonage
 ·Verizon FIOS
| said by SoonerAl :Personally I broadcast my unique wireless network SSID and use a 63-character random ASCII key and WPA-PSK (AES). My wireless network runs at full power 24/7 whether I am home or not on short term or long term travel. No unathorized intrusions here. Same here. WPA2-PSK AES with a 63 character key. |
|
t1n0m3n
join:2003-10-16
Oklahoma City, OK
edit:
May 11th, @02:19AM
| reply to curious in Tulsa
Since the SSID is clear text inside of a packet sent, it does not make sense to have a randomly generated SSID. Anyone with a wireless sniffer can see the SSID anyway (even if it is set as "hidden"). I would suggest, however, that the SSID that you choose not give any information out (like SmithFamilyWiFi or some such SSID.) Personally, since I have several SSIDs, I name mine WiFi-A, WiFi-B, WiFi-G, etc...
I do totally agree with the very long, randomly generated PSKs though. Make sure that the randomly generated PSK has all four character sets (lower case, caps, numbers, and symbols.) |
|
t1n0m3n
join:2003-10-16
Oklahoma City, OK
edit:
May 11th, @02:21AM
| reply to curious in Tulsa
Also, there is a good reason to hide your SSID. This (along with MAC filtering) keeps your neighbors from accidentally connecting to your wireless and running up your log files. There is not really a good reason security wise to use MAC filtering and hidden SSID, but it sure is nice not to have your neighbor's auto wireless NIC detecting and attempting connections.
So unless you absolutely need a broadcast SSID, I would recommend you set your SSID to hidden. |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
| Could not disagree more.
SSID is a communication method, which lets others deconflict. You must be one of those annoying eh-holes that figures using your blinker,while driving might give advance warning of your intentions.
As well hiding your ssid can make reconnecting to your own network a bit bumpier that it has to be (often the source of issues people report here from time to time)
If there is so much conflict and saturation in your neighbourhood, your way better off using A wifi.
--
Ain't nuthin but the blues! "Albert Collins".
Leave your troubles at the door! "Pepe Peregil" De Sevilla. Just Don't Wifi without WPA, "Yul Brenner"
LlamaWorks Equipment |
|
t1n0m3n
join:2003-10-16
Oklahoma City, OK
edit:
May 11th, @11:42PM
| said by Anav :Could not disagree more. SSID is a communication method, which lets others deconflict. A single neighbor with their auto connecting Windows machine can drive up log files on your wireless device to the point of being useless to monitor issues. Hidden SSID (and MAC address filtering) can be a useful tool when you wish for others to not try to auto connect (via windows) to your network and try to authenticate over and over and over.
said by Anav :As well hiding your ssid can make reconnecting to your own network a bit bumpier that it has to be (often the source of issues people report here from time to time) Hence the part "So unless you absolutely need a broadcast SSID" |
|
Anav
Sarcastic Llama? Naw, Just Acerbic
Premium
join:2001-07-16
Dartmouth, NS
| Hiding your SSID does not hide it. My wifi finder has no trouble finding them hid or not!
Two thoughts, first, turn off the logging that one finds annoying; second, with a good wpa/wpa2 key, not really interested in attempted connections anyway.
comes down to personal preferences I suppose. |
|
Link Logger
Premium,MVM
join:2001-03-29
Calgary, AB
 ·Shaw
| reply to curious in Tulsa
Think of SSID as more of a convenience feature then part of your security arsenal. Maybe having an SSID of 'Sumo Jello Wrestling Fan' might reduce the number of people who might want to hack or otherwise connect to your router, but you never know.
I like to include a taunt in my SSIDs as I enjoy watching people try, or if they did connect then as Mordac any system connected to my network falls under my control BWAH HAH HA HA HA HA HA HA Snort!!!
Blake
--
Vendor: Author of Link Logger which is a traffic analysis and firewall logging tool |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
| said by Link Logger :Think of SSID as more of a convenience feature then part of your security arsenal. Maybe having an SSID of 'Sumo Jello Wrestling Fan' might reduce the number of people who might want to hack or otherwise connect to your router, but you never know. I like to include a taunt in my SSIDs as I enjoy watching people try, or if they did connect then as Mordac any system connected to my network falls under my control BWAH HAH HA HA HA HA HA HA Snort!!! Blake So, what did you see from your taunts?
--
Ant @ »antfarm.ma.cx and »aqfl.net. Please do not IM/e-mail me for technical support. Use the forum! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer |
|
