Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)setting up a network in an unsecure environment
View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
Ragnor
8279 posts

Uber Geek
+1 received by user: 585

Trusted

  #440150 16-Feb-2011 10:38
Send private message

A gateway with Captive Portal is pretty much the only way to deal with people trying to spoof the mac address (although this is not a 100% solution to someone really determined), typically used by hotel's and cafe's so you might have seen it before.

http://en.wikipedia.org/wiki/Captive_portal

I think in the end it's just going to be easier and less maintenance and worry for you to keep things separate.

Your PC > Wireless > Router/Modem > Internet (WPA2 AES change password every now and then)

Your PC > LAN > Switch > rest of hall 



webwat
2036 posts

Uber Geek
+1 received by user: 145

Trusted

  #440679 17-Feb-2011 12:57
Send private message

phant0m: I know virtually zilch about networking apart from the odd bit I've picked up from wrestling with LAN networks over the years.

Security wise beyond setting up a "longass" password & putting up MAC & IP filtering; none of my friends were really that savvy with code/hacking (apart from PaulYell) and even then he only hacked a PC once and it took him the whole LAN Sealed


The consensus seems to be that a wireless network will draw CS students like bears to honey. That was the main worry for me. I'm not paranoid about attacks from the internet; more about attacks from within..eeeek

If I used something like ESET (what I use) would they be able to hack into my PC? I'm not to sure how clever they will be as they are first year students... Surely there must something to keep them out of the network altogether? I thought that the Drayteks firewall would be enough. It sounds like  I would need a separate hardware firewall or something Undecided?


TBH I'm more confused now than when I first posted Tongue out I guess I will just have to cower behind my wired network.....

A wired network is not something to cower behind (your modem's firewall does that for you) and removes the chance of forgetting to setup security again if you ever need to reset the router.

Wireless could be secure enough for a basic netowrk if you setup with hidden SSID, a good password on WPA2, as well as MAC filtering. Not even the wired network is 100% intrusion proof unless you have invented the "perfect" firewall, but the above combination of wireless security settings will make you a tougher target than most of your neighbours.




Time to find a new industry!

rattewisday
205 posts

Master Geek
+1 received by user: 5


  #440682 17-Feb-2011 13:02
Send private message

There seems to be a lot of misinformation in this thread.  A WPA2-AES encrypted wireless connection with a strong, long password is SECURE.  You are more at risk of someone physically breaking into your room than of someone breaking into your wireless network, if it is secured in the way described above.  A brute force attack even with military grade supercomputers for a max length (63 chars) password is not feasible and there are no known weaknesses that will reduce the compute time for an attack on WPA2-AES.  There is no need for hiding SSID's, MAC address filtering - these are POINTLESS and can be broken in a matter of minutes.



phant0m

21 posts

Geek


  #440690 17-Feb-2011 13:13
Send private message

well I'm mostly worried about threats from withinSurprised as in computer science students Yell I'm either going to buy a Draytek 2710ne which seems to be pretty good all round or the cheaper option - NETCOMM NB6PLUS4Wn

rattewisday
205 posts

Master Geek
+1 received by user: 5


  #440692 17-Feb-2011 13:16
Send private message

From within meaning physical access? Or just close-by CS students on their laptops? If people have physical access there is really nothing you can do to stop a motivated CS student..

phant0m

21 posts

Geek


  #440695 17-Feb-2011 13:17
Send private message

I just mean CS students who can see my wifi (not with physical access to the computer/network)

 
 
 
 

Stream your favourite shows now on Apple TV (affiliate link).
kyhwana2
2572 posts

Uber Geek
+1 received by user: 233


  #440698 17-Feb-2011 13:26
Send private message

phant0m: I just mean CS students who can see my wifi (not with physical access to the computer/network)


As long as you use WPA2 + a really good passphrase, it doesn't matter if they can see it or not.

rattewisday
205 posts

Master Geek
+1 received by user: 5


  #440706 17-Feb-2011 13:44
Send private message

kyhwana2:
phant0m: I just mean CS students who can see my wifi (not with physical access to the computer/network)


As long as you use WPA2 + a really good passphrase, it doesn't matter if they can see it or not.




kyhwana2 is correct.  There is literally NOTHING they can do aside from breaking into your room.  Doesn't matter if they have a brother who works for the CIA - there is still no way they can break into it.

phant0m

21 posts

Geek


  #440712 17-Feb-2011 13:57
Send private message

alright sweet as, that makes me feel a lot better about the whole situation. thanks a lot everyone Wink

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright