|
| wireless question | |
| | Author | Message |
---|
fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: wireless question 6/18/2012, 22:28 | |
| Currently I do not use wireless, my computer does not have a wireless card, but my router has wireless capability. I know very little about wireless. A friend came over and helped me set up the security on my router - just in case. Then we turned the wireless part off.
I have a question in case I ever do get a computer with a wireless card.
As I said, a friend came over and helped me set up security on my router. If I understand right, this is to prevent other people from being able to get onto my network. Is that correct?
This may be a dumb quesion - but here goes. Is there a way that the acutal signal can be intercepted. That is - if I was using wirelss - could someone intercept the signal from my computer to the routner or router to the computer? Would they maybe be able to intercept passwords etc?
Thanks, Fay
| |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| Subject: Re: wireless question 6/19/2012, 17:13 | |
| - fay47 wrote:
- A friend came over and helped me set up the security on my router - just in case. Then we turned the wireless part off.
If I understand right, this is to prevent other people from being able to get onto my network. Is that correct?
This may be a dumb quesion - but here goes. Is there a way that the acutal signal can be intercepted. That is - if I was using wirelss - could someone intercept the signal from my computer to the routner or router to the computer? Would they maybe be able to intercept passwords etc?
Thanks, Fay
To answer your questions, watch this You Tube video: https://www.youtube.com/watch?v=A88XB7_Jz7sIf you haven't secured your wifi with WPA or WPA2 instead of WEP, you should do so. You can provide even better protection by telling your wireless router that only the computer or ipad or iphone hardware with the MAC address(es) you specify in the Access Control part of your wifi router setup can have access to your wireless network. You can find the MAC address on the label on the back of your computer, or by the command ipconfig /all (will be specified as the "Physical Address"). With this setup, there is very little to worry about someone hacking into your private network. | |
| | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/19/2012, 22:42 | |
| Repa, I have a netgear wireless-N 300 model: WNR2000v2 I got into my router and checked the settings it is set for WPA-PSK(TKIP)+ WPA2-PSK(AES) I don't really know anythng about that. There is a place to enter settting for Gues Netowrk and netgear suggests to set the option to: WPA2-PSK[AES] I have not idea why it would be different than the regular setting I did not see where to specify the MAC address - but I could have just overlooked it. I will go back and look again later. Also listened to the You Tube viedeo that you posted the linkd for. None of it really answered my question. I could just not be understaning - and missed what they were saying. Maybe I am not asking the qustion properly Or maybe it is just a really stupid question I do need to kow all about proteting the network - and I have a lot to learn there and may have more questions. But, my question is, even if you have you network seucre so that no one can get on the network, can someone still intercept a signal you are seinding. Even if they can not connec to to the netork to do anytying - can they "see" what you are transmitting. Thanks Fay | |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| Subject: Re: wireless question 6/20/2012, 16:30 | |
| - fay47 wrote:
I got into my router and checked the settings it is set for WPA-PSK(TKIP)+ WPA2-PSK(AES) I don't really know anythng about that.
WEP and WPA are encryption methods used to encrypt your transmitted data. WEP can be much more easily broken by hackers than WPA and therefore WPA should be used. This is encryption software installed to encrypt the messages between your computer and the access point, but it only covers the first step your packets will take across the Internet. One thing I forgot to mention earlier is that on most wifi routers, you can prevent the transmission of the wifi router's SSID. Take a look at your instructions on where you might be able to do that on your router. If you unselect Allow broadcast of SSID in a router or access point, the SSID of that device will not be visible in another device's site survey, and must be entered manually. Not broadcasting the SSID adds a small bitg of security, but it is not a strong security measure, and should be used in conjunction with other security such as WPA.
But, my question is, even if you have you network seucre so that no one can get on the network, can someone still intercept a signal you are seinding. Even if they can not connec to to the netork to do anytying - can they "see" what you are transmitting.
The answer to your question is Yes! To understand this fully and how you might counter such attempts, read the following article:
https://ssd.eff.org/tech/wifi
The following website should prove very useful to you in configuring your Netgear wifi router:
http://documentation.netgear.com/dg834n/enu/202-10197-02/Wireless.4.4.html
Among other things, it tells you how to:
1. Turn off wireless connectivity completely.
2. Restrict access based on the wireless network name (SSID).
3. Restrict access based on the Wireless Card Access List (MAC Address).
4. Configure Mixed WPA-PSK+WPA2-PSK Security
Hope this helps! ] | |
| | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/20/2012, 18:05 | |
| Repa,
I read the articles and still have questions. I am havng a hard time getting my head wrapped aorund this wirepess stuff.
Sounds like it is kind of like I thought. There are 2 basic concerns. 1. someone connecting to your network. 2. someone intercepting your transmission even if not on your network Is that correct? To prevent someone from connecting to the network 1. turn off wiredless altogether or 2. turn off ssid broadcasting I have a quieson here. In my router there are 2 places a. under Advanced Wireless Settings b. under Guest network settings I don't undersntand it being in both places. What is if is set one way one palce and other way the other place? 3. limit acess by Mac number
Is this correct? I don't know if there is any way of preventing someone from intercepting a transmission but, to help prevent someone from being able to read what you are sending even if they do intercept use encyption - in my case it is wpa2-psk(TKIP] + WPA2-PSK[AES] You have to enter a passphrase - but I have no idea where the passphrase is used. Can you tell me that?
Do you use wireless at all? If so, do you have your security/encrtypion set so that you are comfortable using it for bank transactions etec (when on you home network) or do you limite your wirell to things that dont need to be secured?
Right now I don't even have a wireless device. Bit, I have a friend that sometimes brings her wireless laptop over for me to show her things. There are some things I wanted to show her that will require her to be able to access the internet. So, I figued it was a good time for me to learn a little bit
Thanks for the links, I did get some information from then. Just feel a bit like my head is stating to spin with all this LOL
Playing with this concerns me a little more than other things, because of the security factor.
Fay | |
| | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/22/2012, 16:11 | |
| THe more I read the mor confused I get. Been doing some more reading. Some things say to not broadcase the SSID. Othery say you should. I have only read part of this, need to read the rest but here it is: http://technet.microsoft.com/en-us/library/bb726942.aspxThis wrieless think is going to send me over the ende? LOL fay | |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| Subject: Re: wireless question 6/22/2012, 19:10 | |
| - fay47 wrote:
Sounds like it is kind of like I thought. There are 2 basic concerns. 1. someone connecting to your network. 2. someone intercepting your transmission even if not on your network Is that correct?
The first is correct, the 2nd isn’t. As far as I have been able to determine, your communication is safe from people who aren't on your network but not from those who are on the same network (e.g., at a hotspot like a café or motel). You should find this article to be interesting and informative.
http://cybercoyote.org/classes/wifi/hotspots.shtml
To prevent someone from connecting to the network 1. turn off wiredless altogether or 2. turn off ssid broadcasting I have a quieson here. In my router there are 2 places a. under Advanced Wireless Settings b. under Guest network settings I don't undersntand it being in both places. What is if is set one way one palce and other way the other place?
The Guest network is a feature of Valet hotspots and Linksys wireless-N routers that creates a separate network for guests. This secured network provides only Internet access to wireless devices, with the router limiting communication with other computers. It has a different password from the main network and does not allow file and printer access. Answers to questions about the Guest Network on your router can be found here:
http://www6.nohold.net/Cisco2/GetArticle.aspx?docid=f35bd58fda4148929ac482f3c7968e04_Guest_Network_Frequently_Asked_Questions.xml&pid=8&converted=0#1 3. limit acess by Mac number
Is this correct?
Yes, when all 3 are used together in combination.
I don't know if there is any way of preventing someone from intercepting a transmission but, to help prevent someone from being able to read what you are sending even if they do intercept use encyption - in my case it is wpa2-psk(TKIP] + WPA2-PSK[AES] You have to enter a passphrase - but I have no idea where the passphrase is used. Can you tell me that?
If a computer is not setup to access a particular wireless network, when you click to access available wireless connections in your area on your computer and click on a particular available wireless connection that you want to gain access to that is secured, a popup window will appear asking you for the pass phrase or Security Key. If the SSID is hidden from outside users, then they won’t see the network. For you to see it, you have to tell your computer to connect to that SSID even if it is hidden.
The place where your network access is set up with this information for your wireless router is as follows: Network and Sharing Center > Wireless Network Connection > Wireless Properties > 1) The Connection Tab on the Wireless Network Properties window provides options that allow you to select the network automatically and connect even if the SSID isn’t broadcasting. 2) the Security Tab contains the encryption type and Seciurity Key (pass phrase) information.
You can manually add the information for your router to a computer with wireless capability as follows:
Network and Sharing Center > Manage Wireless Networks > Add > Manually create a network profile.
This wizard creates a new network profile or locates and saves a profile for an existing network on your computer. You will need to know the SSID, Security type (WEP/WPA/WPA2), Encryption type (TKIP/AES), and Security key information for the network in order to create the profile. You will also be able to choose the options to connect automatically and connect even if the SSID isn’t broadcasted.
Do you use wireless at all? If so, do you have your security/encrtypion set so that you are comfortable using it for bank transactions etec (when on you home network) or do you limite your wirell to things that dont need to be secured?
I have 3 wireless laptop computers that connect to an Access Point, and one desktop on Ethernet. I use an ethernet hub to connect them all to my router/modem. I am comfortable with using the wireless computers to access banking and other financial matters on my network setup, but I rarely use them for such purposes and use the Ethernet connection more often for this than the wireless. I do not do any type of financial or banking transactions on the wireless computers when traveling. For information on the dangers of using hotspots and what steps you can take when traveling to make your computer less vulnerable, see the first link I gave you above.
You can see if any other computer is using your network connection by typing the following command on the cmd line: net view | |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| Subject: Re: wireless question 6/22/2012, 21:55 | |
| - fay47 wrote:
- THe more I read the mor confused I get.
Been doing some more reading. Some things say to not broadcase the SSID. Othery say you should. I have only read part of this, need to read the rest but here it is: http://technet.microsoft.com/en-us/library/bb726942.aspx
This wrieless think is going to send me over the ende? LOL
fay
Note that the article said "Although having users manually configure the SSID of a wireless network in order to connect to it creates the illusion of providing an additional layer of security, it does not substitute for either authentication or encryption." To rely on just hiding the SSID broadcast would be totally foolish. In my opinion, it will help a bit in conjunction with the other things mentioned, at least against those who aren't thoroughly familiar with networks. The problem cited in the article about non-broadcast networks compromising the privacy of the wireless network configuration seems to be a problem only with Windows XP, Service Pack 2 or Windows Server® 2003 with Service Pack 1, neither of which I have anymore, nor do you if I remember correctly. So, I am not going to worry about it and will continue to use the configuration as I have it with the SSID broadcast disabled. | |
| | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/23/2012, 14:33 | |
| Repa,
Lot of infomation. Don't know if I'll ever get it all straight in my head. Since my comuters does not have a wireless card I can't actaully look at stuff. Well, my company laptop does, but I odn't want to mess wiht it. They have things set up the way they want.
Maybe it will help some when my friend brings here netbook over and we can walk thru the stuff.
What can you tell me about the usb wireless connectors. I thought about getting one, just to be able to play with the wireless. But I don't kow if for me it is worth spending the money on just to play with.
In addition to your router you menioned an Access Point and a Hub. Are they th same thing or differnt devices.
Why do you need those. I have 3 computers connected to my router and could have 4 . All 3 are wired ethernet. My router has wrieless capability but it is turned off.
Thanks Fay | |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| Subject: Re: wireless question 6/24/2012, 22:20 | |
| - fay47 wrote:
- Repa,
What can you tell me about the usb wireless connectors. I thought about getting one, just to be able to play with the wireless. But I don't kow if for me it is worth spending the money on just to play with.
If you want to make your pc wireless, the Amped Wireless - High Power Wireless-N 600mW USB Adapter at Best Buy looks like a good prospect. My son has one like it that he uses on his son's pc. I really don't know much more about it other than what the writeup says about it.
In addition to your router you menioned an Access Point and a Hub. Are they th same thing or differnt devices.
They are different devices.
Why do you need those. I have 3 computers connected to my router and could have 4 . All 3 are wired ethernet. My router has wrieless capability but it is turned off.
I have 2 desktops without wifi and 3 laptops with wifi. I use a Netgear Access Point for my laptop internet connections that connects to the Netgear Ethernet Hub that connects to a Speedstream router/modem that connects to my telephone line. I have a Seagate GoFlex network storage device connected to the ethernet hub, and both of my desktop PCs connect to the hub via ethernet. A printer is USB attached to the GoFlex to give me network printing capability for any computer on my network, in addition to the Seagate Goflex 2 TB storage for backing up my 5 computers. My router is an older DSL router\modem combined and has only one ethernet port.
I had been using an older linksys router as a switch instead of a router because of incompatabilities with the speedstream router/modem, but decided to use a newer ethernet hub with 8 ports instead because it has gigabit capability and can be configured so that there is no bandwith loss if more than one computer is active on the network at the same time. Windstream gave me a new wifi router/modem with 8 ethernet ports that would have eliminated all of the other hardware, but it also introduced a vulnerability that opened some of my ports to broadcasting that were previously closed that are associated with the Goflex storage device that uses Network Address Translation (NAT). These ports weren't open previously. I could find no way to stealth this new router/modem 100% using the filters provided. Even though the right filters appeared to be available, they didn't work, so I went back to my old setup and the new wifi router/moden Windstream gave me is sitting on the shelf. | |
| | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/24/2012, 22:53 | |
| Thanks for the explanation. Complicated I don't quite understand it all - but I think I do some of it. So, the rouer/modem is not wireless and that is why you need the access point - is that true? You need the hub because the router does not have enough ports - is that true? The network storage device and connected pritner - kind of lost me a little bit. OOhhh - don't know how you get this all figured out There is or was a site you use to check to see which ports are open. I don't remember if I ever checked mine after I got the wireless router. I do not reember what the site is. Do you know? Fay | |
| | | Repa Site Administrator
Number of posts : 2378 Location : North Carolina Humor : Age: Older than Dirt! Registration date : 2008-09-19
| | | | fay47 Royal Geek
Number of posts : 1480 Registration date : 2008-10-17 Mood :
| Subject: Re: wireless question 6/25/2012, 15:55 | |
| I went out and ran the tests and it looks likes the router is doing its job. I first just ran the test like I have things. Then I used thier instructions and set WIndows Firewall to let their IP thru. All ports were still stealthed. Then I went into the router and made the change they said to make. Now things were different. Ports above 191 were still stealthed, but below 191 the oly ones stealthed were 19, and 135-139. Most of the rest wre closed but 3,53, and 80 were open. I wemt back and changed the setting back the way they were.
Since right now I am running with wireless disabled, I don't know what will happend if I enable that.
I still need to do some reading at the 2nd link. And I need to save both links so I can get back to them.
Thanks a lot.
Fay
| |
| | | Sponsored content
| Subject: Re: wireless question | |
| |
| | | | wireless question | |
|
Similar topics | |
|
| Permissions in this forum: | You cannot reply to topics in this forum
| |
| |
| | This candle stays lit in loving memory of our dear friends Janewm & Sheila |
Latest topics | » Ccleaner Icon Disappeared by Repa 9/26/2017, 23:45
» Are these pop ups real or hoax? by Repa 8/4/2017, 22:33
» SiteAdvisor Changed by wcturner 8/4/2017, 19:12
» Windows Defender Turned Off by Repa 5/16/2017, 09:25
» Java Runtime Update offered by Repa 12/22/2016, 20:57
» august windows updates by fay47 8/23/2016, 11:27
» Windows Defender Auto Scan by wcturner 8/14/2016, 17:59
» Windows Defender Updates by wcturner 6/10/2016, 00:11
» Flash Bug by wcturner 5/14/2016, 11:42
» Spybot Updates by Repa 3/31/2016, 16:12
» W Updates by fay47 3/19/2016, 09:20
» Battery Backup - UPS by fay47 2/28/2016, 18:14
» Bookmarks by wcturner 2/14/2016, 19:33
» windows update slow by fay47 2/13/2016, 21:52
» Keyboard Shortcuts by wcturner 2/1/2016, 18:02
» Malwarebytes Threats by Repa 1/27/2016, 23:52
» Avast SecureLine Disconnected by Repa 12/10/2015, 09:16
» Suggested Updates /Komando by wcturner 11/2/2015, 22:56
» Windows Updates by wcturner 10/14/2015, 18:46
» open office question by fay47 10/8/2015, 22:23
|
Warning! Beware of Download Manager install request in Ad Bar Under Geeks Logo | 10/31/2013, 16:09 by Repa | Just noticed that when I went to logon that there is an ad under the Geeks Logo that says, "your Download Manager might be outdated. Do you want to install it now?" Don't fall for it! Ignore it!
| Comments: 3 |
Share Us! | |
feeds | |
|