I recently purchased my first home computer. It is a wireless laptop with Windows 7. I also set up my wireless router. I only use my laptop for email, Internet, and to do bills and banking. I’ve read that for security on wireless networks, I should: 1) change the default network name, 2) Activate address filtering, 3) Disable SSID broadcast, 4) Disable DHCP and set a fixed IP address range on the router. Is all this necessary? I did encrypt it with WPA encryption and have Norton installed. It also says I should turn “off” my router when I log off. Please advise me.
Wireless Home Network Security
The more you can do to secure your wireless home network, the better. While it may seem unlikely that someone would target your computer, you’d be surprised. In fact, I was watching a show on TV last night, System Crash (a four-part series that is currently airing on the Smithsonian Channel), that said that because financial institutions are so well secured from hackers that hackers have been known to actually follow bank employees home and hack into their home networks in hopes of finding remote access passwords to the financial institution! While a hacker may not be staking out your home specifically, if your network isn’t hidden from public view and tightly secured, it is vulnerable to anyone who stumbles across it.
Encrypting with WPA Encryption
Encrypting with WPA (Wi-Fi Protected Access) encryption is definitely a good first step. This encryption technology is far superior and more secure than earlier forms of encryption such as WEP (Wired Equivalency Privacy).
Changing the Default Name and Disabling SSID Broadcasts
Even with WPA encryption, it is conceivable that a talented hacker equipped with sophisticated password cracking tools can break through your barriers. Because of this, other measures should be put into place. Changing the default name from something generic like “Linksys” to “XYZ” can deter hackers specifically searching for home networks that have default router settings. Don’t use names that can identify your network as belonging to you because if a hacker is specifically looking for your network, it would be conveniently named and easy to find. Better yet, disable SSID broadcasts, and your network name will not be broadcast to others within range in the first place.
Activate Address Filtering
Activating address filtering is also extremely useful. When activated, only computers and devices that you have specifically allowed may connect to your network. If an unauthorized computer tries to connect, it will be blocked. If your home network is small, this is an easy, effective way to block intruders. Simply look up each network device’s MAC address and enter into your router’s designated address filter area.
Disable DCHP and Setting IP Addresses Manually
Disabling DCHP is another measure that you can take. DCHP automatically assigns IP addresses to devices within range of the network - possibly unauthorized devices. By disabling DCHP and setting ranges of IP addresses manually, it is less likely for an unauthorized device to be accepted into the network.
As far as turning off the router when not using your computer goes, that is certainly an added step that you can take to keep hackers at bay when the computer is offline. However, with all of the other safeguards in place, it shouldn’t be necessary. If it gives you added peace of mind, by all means, turn it off.
Celeste Stewart | January 25th, 2010
You can leave a comment, or trackback from your own site.
