Technology Advisor

Securing Your Wireless Network

01-06-2009 10:57 AM

Doug

Lots of small businesses have a need for more than one computer, and chances are if you have more than one computer then you will want them all connected to the Internet. Unless all of your computers just happen to be located near each other, then I am betting you have a wireless router. Today’s wireless routers are fairly inexpensive and easy to setup, but they do not come with security configured by default. So unless you’re willing to risk someone possibly gaining access to your sensitive business data or using your bandwidth, then you need to configure the security of your wireless router.

The first task in securing your wireless router is to turn on encryption. When it comes to enabling encryption there are several standards to pick from, and you should pick the strongest standard supported by all of the computers that will be accessing your router. This usually means that you should try and use WPA (Wi-Fi Protected Access) before using WEP (Wired Equivalency Privacy) because WEP has some well known weaknesses. However it is better to use WEP than nothing at all if you have computers that do not support WPA.

Routers usually have a built in webpage that allows you to configuration the device. To access this administration site you will need to supply a user id and password. The default password that most devices are shipped with is usually considered weak. In some cases they are as simple as “admin” or “password”. These default passwords are well known by hackers and should be changed immediately. When changing the password you should create a password that consists of upper and lower case characters as well as numbers. If your router supports it you should also use special characters (e.g. *, ?, ^, #).

Many routers allow you to administer them over the Internet. While this may be a convenient feature it means that anyone around the world can potentially gain access to your router. Unless you really need the ability to access your router remotely you should disable this feature. In some cases this setting is turned on by default so it is best to double check it.

Just making the changes listed above will make your wireless router more secure. However there are other things that you can do to gain even more security. These changes include disabling SSID (Service Set Identifier) broadcasting, enabling MAC address filtering, and using static IP addresses. Using these techniques however will require more effort in setting up, connecting to, and maintaining your router.

Additional information on securing your wireless router can be found at the following links:

http://www.firewallguide.com/wireless.htm#Wireless_Security
http://en.wikipedia.org/wiki/Wireless_security

Doug Mulkey

Principal Software Architect

Message Edited by Doug on 01-06-2009 03:18 PM

Kudos!

Thanks!

All Users' Tags:

Comments

Comments (1 - 2)

01-25-2009 11:50 PM

MCSLC

Thanks for the outstanding article on wireless router security. You would not believe how many small businesses routinely leave their wireless devices installed with a default configuration with wireless security turned off. In an area where every business uses the same telephone company device, it is a real problem.

Since this is a Peachtree forum, I might add, users will be very disappointed running Peachtree across a wireless network connection. Stick to the cables, so Peachtree sizzles.

Permalink

Kudos!

Thanks!

02-05-2009 01:14 PM

GovernmentSecurity(anon)

Very well written article, even though information for securing wireless networks has long been available people have continued to not secure wireless networks. Even when consumer device manufacturers have shipped the wireless access points preconfigured with security features people still disable them. Unfortunately users will always opt for ease of use over security. With proper education they will hopefully realize the risks that an open access point presents even a residential one.

Permalink

Kudos!

Thanks!

Post a Comment

Name

E-Mail (your e-mail will not be shown)

<blockquote><hr>Doug wrote: Lots of small businesses have a need for more than one computer, and chances are if you have more than one computer then you will want them all connected to the Internet. Unless all of your computers just happen to be located near each other, then I am betting you have a wireless router. Today’s wireless routers are fairly inexpensive and easy to setup, but they do not come with security configured by default. So unless you’re willing to risk someone possibly gaining access to your sensitive business data or using your bandwidth, then you need to configure the security of your wireless router. The first task in securing your wireless router is to turn on encryption. When it comes to enabling encryption there are several standards to pick from, and you should pick the strongest standard supported by all of the computers that will be accessing your router. This usually means that you should try and use WPA (Wi-Fi Protected Access) before using WEP (Wired Equivalency Privacy) because WEP has some well known weaknesses. However it is better to use WEP than nothing at all if you have computers that do not support WPA. Routers usually have a built in webpage that allows you to configuration the device. To access this administration site you will need to supply a user id and password. The default password that most devices are shipped with is usually considered weak. In some cases they are as simple as “admin” or “password”. These default passwords are well known by hackers and should be changed immediately. When changing the password you should create a password that consists of upper and lower case characters as well as numbers. If your router supports it you should also use special characters (e.g. *, ?, ^, #). Many routers allow you to administer them over the Internet. While this may be a convenient feature it means that anyone around the world can potentially gain access to your router. Unless you really need the ability to access your router remotely you should disable this feature. In some cases this setting is turned on by default so it is best to double check it. Just making the changes listed above will make your wireless router more secure. However there are other things that you can do to gain even more security. These changes include disabling SSID (Service Set Identifier) broadcasting, enabling MAC address filtering, and using static IP addresses. Using these techniques however will require more effort in setting up, connecting to, and maintaining your router. Additional information on securing your wireless router can be found at the following links: <a target="_blank" href="http://www.firewallguide.com/wireless.htm#Wireless_Security">http://www.firewallguide.com/wireless.htm#Wireless_Security</a> <a target="_blank" href="http://en.wikipedia.org/wiki/Wireless_security">http://en.wikipedia.org/wiki/Wireless_security</a> Doug MulkeyPrincipal Software Architect<div class="message-edit-history">Message Edited by Doug on 01-06-2009 03:18 PM</div><hr></blockquote>

Automatically convert carriage returns to HTML line breaks

Word verification by reCAPTCHA

Type the characters you see in the picture above: Type the numbers you hear:

About Technology Advisor

Find resources and information about technology products and services you may not have known exist. This is where you'll find reviews, news, and notes from Sage Software experts and special guest contributors.

Labels

User	Tags
MikeS	19
Doug	3
Bill_Coleman	3
mobill	3
ShariW	2