Security Advice, Please

[Sonnenburg]

I just put up a wireless router and after only a few times swearing I've got the mofo working. I hooked it up using the encryption for the wireless adapter. I was wondering if anyone could advise me on this:
1) Is my computer itself secure? I have PC-Cillin Firewall set up; with the encryption is that enough?
2) Is my bandwidth safe? Is there something I should be doing to stop people from swiping it?

[Dalton]

You're fine, although my experiences with PC-Cillin have been mostly of annoyance

[Xisiqomelir]

Use an MAC filter too. Every little bit helps.

[Sonnenburg]

It turns out its WEP (of course). Will a MAC filter beef that up?

[Xisiqomelir]

It turns out its WEP (of course). Will a MAC filter beef that up?

Every network adapter has a unique MAC. If you filter your router to allow only trusted devices on your network, working to spoof an allowed MAC is one more step a cracker needs to do to access your network. So, not perfect security, but a useful deterrent.

[phongn]

A MAC filter is a waste of time as it is too easily defeated. It also makes it more difficult for the administrator - encryption is enough.

[Faram]

MAC filering= useless crap do not do it.

Also turning off SSID broadcast is stupid and adds no security but a shitload of trubble.

Go for WPA2 and a good passkey.

[R. U. Serious]

1) Is my computer itself secure? I have PC-Cillin Firewall set up; with the encryption is that enough?

For your computer to be secure, make sure that you have all updates nd servicepacks installed available for your version of windows. Make sure that all software that does network-related things (browser, mailclient, filesharing etc.) is up to date.


As for a MAC-Filter: Somebody who takes the effort to crack a WEP-Key will mot be stopped by a mac-filter. However - to circumvent it, the attacker needs to spoof your mac. While the spoofing itself is done easily, the attacker also has to get a hold of your mac-adress. When you are using Wifi, this is always transmitted with every package - however if your computer is only turned on in the evening or at the weekends, drive-by hackers during the day will not be able to sniff your MAC to spoof it. (Of yource you could make an equally good case, that you should simply turn off your wifi-router when you're away or at night).

Also turning off SSID broadcast is stupid and adds no security but a shitload of trubble.

That I fully agree with it. The SSID is transmitted from time to time in the normal data anyhow, so turning off the broadcast literally does not achieve anything if you already are using WEP/WPA.

As has been said, if you can, then do switch to WPA(2). Otherwise at least use a 128/108bit WEP key.

[Uraniun235]

MAC filering= useless crap do not do it.

Also turning off SSID broadcast is stupid and adds no security but a shitload of trubble.

Go for WPA2 and a good passkey.

He just said his router doesn't support WPA.