HI all, I wrote this tutorial, so I am sharing it here with everyone. Feel free to ask if you have any questions.
Setting up a wireless network? Just like everyone else, you probably are, so here are a few tips to secure it.
1) DEFAULTS:
So, you just bought a wireless router, chances are you bought something like a d-link of a linksys. And all of the configuring we are going to do on this router, is done by a web interface, and to get there, it requires a password. The password that came with it, might as well not be there because every single one shipped with the same one, probably something like admin or change-me. I cannot stress enough the dangers of using a default password, its also staggering the number of people who don't change it, its like saying, I hate security, and want my identity stolen. Now, what to choose for a password, or rather, what NOT to use;
1) A dictionary word: programs will crack this in minutes if not seconds
2) Your Name
3) anything under 6 characters
4) all lowercase anything
5) anything important to you (birth dates, anniversary, etc.)
what to choose and some examples;
1) use numbers and letters
2) where you can, use capitol letters and lowercase
3) minimum of 6 letters, but a recommended 8+
4) consider not using numbers just at the end, but before, or in the middle
Some sample strong passwords;
27d0gSr4n (27 dogs ran, easy to remember, still strong)
14m0nk3Ys (14 monkeys, I'm running with the animal theme here)
0mgZ3br4as (omg zebras, another stronger password)
The warning about defaults goes to other things too, and often settings of popular programs, make sure you read your manual, and online to find out what you are in danger of.
2) Encryption
Can't stress this enough, because there are just too many people who leave there data lying around for anybody to come and take. Use the strongest encryption you possible can, preferably at the time of writing this, WPA2, with a good long key. You will almost never need to re-enter this one, so put it in a password manager, or a safe (basically anywhere that isn't a)sitting in your computer drawer, 2) on the side of your monitor, 3) anywhere else you wouldn't leave your credit card).
3) SSID
I would suggest changing from your default SSID, which is basically the name of your router. While this isn't necessarily a security weakness, leaving it the same would cause an attacker to pay more attention to it, believing it to be less secured (because it often is)
4) MAF
MAC address filtering is not a very good security measure, due to its ease of breaking it. However, it will keep some skiddies out, and can't particularly hurt, and I would still suggest doing it.
5) Limits your users
Limit the number of people who can connect at any one time, close to, if not the number of computers that will be using your network. If you can't connect on one of your machines, then somebody else is on, and you can A) figure out who B)hopefully plug your security hole and C) stop them from doing it again
5) Its still on?
For most home users, and even a lot of big techie guys, you aren't online at 2-5am, theres no reason for your wLan to be on either. Many routers have the option of turning off the wireless access/all access at certain times. For instance, if you are going on vacation, or you just aren't home, why leave it on 24/7 when it can be taken care of for you.
These are just some security tips, if you have any questions about implementing any of these ideas, feel free to ask
