 Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | reply to someone
Re: Cause more Wi-Fi theft said by someone :MAC address filtering offers zero security. All it takes is about 30 seconds with a sniffer to clone the MAC address of any valid connected client. Hiding your SSID also offers zero security as all it takes is any wireless sniffer to discover any APs.
Hiding your SSID and MAC address filtering offer 'security though obscurity' which, in this case, is so weak compared to a properly secured wireless network that they're pointless.
and dont forget all new routers with wps have back doors open unless you run an open source alternative.
at the end of the day wired networks are far more secured.
i run two subnets, and have an extra router heavily filtered and open free to use ..... let them go to thre easy route and log it
Who would do mac address filtering or hide their SSID??? That would be pointless.
All you need is to use a 15+ character WPA2 AES key and your router cannot be hacked by anyone. |
|
 ctceoPremium
join:2001-04-26
South Bend, IN
 ·magicjack.com
 ·AT&T U-Verse
| The best way to remain secure is to lock your shit down so tight even wannabe hackers will not have the "want" to bother.
Step 1: Don't Broadcast your SSID
Step 2: Use a limited IP Pool
Step 2: Set up false AP's (they're relatively cheap)
Step 3: Use MAC filtering
Step 4: Use AP authentication
Step 5: Use the maximum available encryption when possible, including authentication certificates with timestamped devices.
Or just don't use wireless... Remember though there are those and agencies who can act (even on wired connections) as if none of the above exists...
--
----
As long as superstition prevails, we will fall short of eradicating war, poverty, and hunger. -J. Fresco
khanacademy.org
en.lernu.net
www.k12.com
churchofreality.org
kopimistsamfundet.se
zeitnews.org
thezeitgeistmovement.com
thevenusproject.com
--- |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | said by ctceo:The best way to remain secure is to lock your shit down so tight even wannabe hackers will not have the "want" to bother.
Step 1: Don't Broadcast your SSID
Step 2: Use a limited IP Pool
Step 2: Set up false AP's (they're relatively cheap)
Step 3: Use MAC filtering
Step 4: Use AP authentication
Step 5: Use the maximum available encryption when possible, including authentication certificates with timestamped devices.
Or just don't use wireless... Remember though there are those and agencies who can act (even on wired connections) as if none of the above exists...
Steps 1, 2, 3 are pointless and do nothing for security.
Step 4 only works if you use WPA 2 AES with a 15+ character password or better security. |
|
| reply to Oh_No
ERD Commander can crack p-codes |
|
ctceoPremium
join:2001-04-26
South Bend, IN Reviews:
·magicjack.com
·AT&T U-Verse
| reply to Oh_No
Incorrect.
Some devices will not even display AP's that aren't broadcasting an SSID. This reduces probability.
Use a limited IP Pool. If all your Devices are assigned to an IP address in a limited pool, New devices can't connect unless and old device has lost connection.
If you are unaware of how to spoof your MAC address, you will not be able to connect.
Step 4 is sort of a "to degree" type of security, the more modern the less easy it is to not only find info on how to hack, but the actual act of doing so is that much more complex and takes more time to accomplish as opposed to older methods.
Now if you combine several of the above, you can save yourself a lot of trouble as people who want to hack are targeting the weakest point, AGAIN making your AP more secure.
What was that you said again?
--
----
As long as superstition prevails, we will fall short of eradicating war, poverty, and hunger. -J. Fresco
khanacademy.org
en.lernu.net
www.k12.com
churchofreality.org
kopimistsamfundet.se
zeitnews.org
thezeitgeistmovement.com
thevenusproject.com
--- |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | said by ctceo:Incorrect.
Some devices will not even display AP's that aren't broadcasting an SSID. This reduces probability.
Use a limited IP Pool. If all your Devices are assigned to an IP address in a limited pool, New devices can't connect unless and old device has lost connection.
If you are unaware of how to spoof your MAC address, you will not be able to connect.
Step 4 is sort of a "to degree" type of security, the more modern the less easy it is to not only find info on how to hack, but the actual act of doing so is that much more complex and takes more time to accomplish as opposed to older methods.
Now if you combine several of the above, you can save yourself a lot of trouble as people who want to hack are targeting the weakest point, AGAIN making your AP more secure.
What was that you said again?
The 1st three steps do nothing for anyone that wants to connect to your AP. Besides windows most other programs show hidden SSIDs, most computers can spoof mac adress by going to the mac address setting in their cards driver, ips can be set to static.
The first sign of cluelessness with router security is when someone brings up hiding their SSID and using mac filtering. LOL
Those are not security features in any way and a waste of time to do.
The only method is using security that cannot be hacked.
Like WPA2 AES with a 15+ character passcode.
What was it that you said again??? |
|
ctceoPremium
join:2001-04-26
South Bend, IN | You obviously didn't get the post the first time I posted "lock your shit down so tight" is the phrase you'll want to pay attention to. Go ahead say it a few times to yourself if you need to. |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | said by ctceo:You obviously didn't get the post the first time I posted "lock your shit down so tight" is the phrase you'll want to pay attention to. Go ahead say it a few times to yourself if you need to.
Then why do you keep posting to do things that everyone knows have nothing to do with security in any way.
I cant understand why you dont get what you are posting.
Please re-read what you keep posting and report back. |
|
ctceoPremium
join:2001-04-26
South Bend, IN | Because they do.
I don't understand why you can't understand what I am posting.
Don't need to, I posted them in response to WiFi theft, in case you can't remember. |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | You dont understand what you are posting.
You are trying to say networking options are some kind of security that protects against wifi theft when anyone that knows anything about wifi knows that none of those items you keep defending protect against anything.
Please re-read what you posted and post a correction.
Thank you. |
|
ctceoPremium
join:2001-04-26
South Bend, IN | I'm sorry that you are misunderstood.
Perhaps this link will help you out, »en.wikipedia.org/wiki/Network_security
Take Care. |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL
3 edits | I guess you wrote that crap.
I read that and lol'd at how it was obviously written by someone who knows nothing about security.
I updated the wiki page for you so you dont keep thinking something is a security feature when it is not.
I posted this from your router by typing in your mac address into the device setting for my wifi card, connecting to your router that had a "hidden" SSID and using a static IP address.
LOL, your router was so secure.
In my opinion setting up a mac filter, disabling DHCP, and kind of "hiding" your SSID still means a fully open router and would not hold up in court as circumventing security.
The only security is setting up a password with unhackable security so your router will not give authorization to someone who does not know the password. |
|
ctceoPremium
join:2001-04-26
South Bend, IN | Good for you. |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | said by ctceo:Good for you.
Glad I could help correct you to stop the spread of bad information. |
|
ctceoPremium
join:2001-04-26
South Bend, IN Reviews:
·magicjack.com
·AT&T U-Verse
| |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL
1 edit | There is really something wrong with you.
Sorry but no matter how much you cry, hiding SSID, mac filtering, and static IP addresses are not security in any form of the word.
It might have been viewed as security measures back in 2001, but certainly it has not been viewed as security measures since around 2004.
Hiding your SSID was never intended to be a security feature in any year. Search for this: said by :
Robert Moskowitz, senior technical director at ICSA Labs warned against it as far back as Dec 2003, in a paper titled “Debunking the Myth of SSID Hiding”.
Next time when you google choose to search the last year only.
You are a funny person who likes to spread bad information.
Look at your wiki link:
said by »en.wikipedia.org/wiki/Network_security :
Enable MAC Address filtering to keep track of all home network MAC devices connecting to your router. (This is not a security feature; do not rely on it.)
Assign STATIC IP addresses to network devices. (This is not a security feature; do not rely on it.)
If using Wireless: Change the default SSID network name, also disable SSID Broadcast; as this function is unnecessary for home use. (Security experts consider this to be useless and not a security feature).[5]
LOL |
|
ctceoPremium
join:2001-04-26
South Bend, IN | Again, Good for you. I'm sorry you feel that way. |
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | Don't be sorry. I am glad I could help prevent you from spreading bad information. |
|
ctceoPremium
join:2001-04-26
South Bend, IN | No No. I'm sorry you were misinformed. I think your failing to understand what your talking about. |
|
|
|
Oh_NoTrogglus normalus
join:2011-05-21
Chicago, IL | Dont be sorry. Just be glad I corrected you from telling people to do things that provide no level of security.
Check your wiki link, it agrees with me and anyone that knows about wifi security. |
|
