|
Currently 10% Off For Life! Click here for more details.
What Wi-Fi Hackers can do on Unsecured Wi-Fi Networks If you don't properly secure your wireless network, Wi-Fi eavesdroppers can... See your real-time traffic:
Connect to your network:
Seeing What a Wi-Fi Eavesdropper Can See You can read and read about Wi-Fi security, but nothing will get the point across as effectively as actually seeing what eavesdroppers can see on an unsecured wireless network. Figure 1 shows an example of an email message sent from a computer on a unsecured wireless network with Microsoft Outlook, using a POP3 account.
Figure 2 below shows an example of what an eavesdropper could have captured using a free tool called Wireshark while the email was being sent.
As you see, they can see exactly what was in the e-mail. Just imagine if this was an e-mail containing real sensitive information, and someone passing by in their car captured the wireless packets. If that isn’t bad enough, see what they could have captured in the packet trace, shown in Figure 3 below. It clearly shows the POP3 server address, user name, and password for the account—everything they need to get onto your email server.
Securing your Wireless Network Keep in mind, encryption is the only method that adequately secures the real-time traffic, such as e-mails and web browsing, on your wireless network. Other security methods, such as MAC address filtering and disabling SSID broadcast, are intended as additive measures to further control network access. Using encryption is also the only way to really prevent unauthorized connections. Encryption Methods for Wi-Fi Networks Here's a review of the different encryption types: WEP (Wired Equivalent Privacy): This first Wi-Fi encryption standard was quickly cracked and debunked. In some cases, Wi-Fi eavesdroppers now can decode and crack a WEP key within seconds. WEP only provides protection against the average user searching for a open Wi-Fi network. It does not adequately protect against Wi-Fi hackers wanting to wreak havoc, whether their goal is to steal or intercept customer data or trade secrets. The Actiontec routers used by the Verizon internet service and many other ISPs default to WEP, so it is important to change this immediately. WPA/WP2 (Wi-Fi Protected Access): The first WPA version, based on TKIP encryption, was secure for several years. Now holes have been discovered and its not fully secure. However, the second version, WPA2, is based on the newer AES encryption standard, which is secure. Both versions can be used in two very different modes:
Benefits of Using Enterprise-Level WPA/WPA2 Encryption Using the Enterprise mode provides two very important benefits:
What's Required for Enterprise Encryption & What We Provide The special ingredient of the Enterprise mode is a RADIUS server, which is also used by ISPs and other Internet services such as VPN providers. This server enables the password-based (802.1X/PEAP) authentication and overall superior encryption. The problem: setting up and configuring your own RADIUS server can take hundreds or thousands of dollars, and a great deal of time and expertise. In addition to the RADIUS server, you would have to create and maintain your own Public Key Infrastructure (PKI), and possibility a database or backend. The solution: sign up to use our hosted RADIUS servers through the AuthenticateMyWiFi™ service. Get the top-notch wireless security without the high monetary and time costs! Additionally, we provide step-by-step guides on setting everything up. Plus as shown on the Service page, we provide more than just the basic authentication service. Here are articles by Eric Geier (Founder and CEO of NoWiresSecurity) on a variety of wireless networking topics:
WPA/WPA2-Enterprise (802.1X) Related 15 Reasons to Use Enterprise WLAN Security Implement WPA2 Enterprise Encryption on Your WLAN Moving to WPA/WPA2-Enterprise Wi-Fi Encryption 6 Secure Linux Wi-Fi Authentication Servers Configuring 802.1X Authentication in Linux Troubleshooting Checklist for 802.1X on Your WLAN Tips and Tricks for Using 802.1X in Windows Using Third-Party 802.1X Clients on Windows, Linux or Mac How to Use Enterprise Wi-Fi Encryption and 802.1X in Mac OS X Ease 802.1X Deployments With the SU1X Configuration Tool Review: Avenda Quick1X 802.1X Configuration Tool Review: XpressConnect from Cloudpath Networks 6 Open Source Projects for 802.1X Network Authentication Pushing 802.1X Settings to iPhones, iPod Touches, and iPads
General Wireless Networking Upgrading Wi-Fi Security from WEP to WPA2 Bringing Your Wireless Network Up to Speed What Wi-Fi Eavesdroppers See on Unsecured Networks Ten Tips and Considerations on Upgrading to Wireless N Tips to Secure Your Small Business Wi-Fi Network Seven Troubleshooting Tips for Wireless N Networks Supercharging Your Cheap Router with Enterprise Features Troubleshooting Network Sharing Issues Understanding the Wi-Fi Security Guidelines of PCI DSS Ten Networking Hacks for Your Windows Registry Securing Your Wi-Fi Hotspot Sessions Secure Your Network (and Clients) Against Hole 196 Free Wi-Fi Stumblers Do the Work But Save You Money 7 Things Wi-Fi Hackers Hope You Don't Know 8 Open Source and Linux Router Projects Busting (or Trusting) Wi-Fi Security Myths Recovering and Securing your Wi-Fi Encryption Key Importing and Exporting Network Settings of Windows
NEW: Free Wi-Fi Stumbling and Surveying Tools
|
|||
|
Home ·
About Us ·
Affiliates · Press
· Contact Us
|
