On Sat, 2004-01-31 at 22:46, James Knott wrote:
elefino wrote:
So, is the current generation of wireless lan stuff (router/gateways and wireless nics, etc.) well protected, by default? I want to stick with DHCP and avoid static IP if I can -- I occasionally bring home different laptops from the office. I'm not supposed to monkey with extra profiles on the office machines, and they're all set up for DHCP. What's the mechanism that's used to ensure that somebody driving past my house can't grab a connection to my ISP if I deploy a wireless lan? Is exclusivity/ privacy based on MAC addresses or on certificate exchange? or.... what?
You'll want to use 128 bit WEP and change the keys occasionally.
I would also recommend you disable SSID broadcast and lock down your
node to the MAC addresses of the devices you will be using. While it is
unlikely someone would really spend the time needed to capture enough
packets to break the WEP encryption it is possible. You can leave DHCP
setup.
In addition I would suggest you use ssh if possible for important
communications such as accessing email or logging into servers to
protect your passwords.
Paranoia is your friend.
--
Scot L. Harris