7 Jun
2005
7 Jun
'05
9:41 p.m.
Am Di, den 07.06.2005 schrieb Bryan J. Smith um 23:17:
The idea, as always, is to make yourself a smaller target than the next guy.
As always, standard:
- No SSID broadcast
- No Open System access
- MAC filtering
- WEP
- Always VPN
Use WPA/802.1x if you've got it.
Bryan J. Smith mailto:b.j.smith@ieee.org
Proven what not secures wireless LAN: MAC Filtering, SSID hiding, LEAP Authentication (EAP-TLS, EAP-TTLS or PEAP would be secure alternates), switching off DHCP, postitioning of the antenna, change to 1a (5 GHz) or to Bluetooth
Paper about good instructions: http://www.lanarchitect.net/Articles/Wireless/SecurityRating/
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp
Serendipity 23:37:15 up 14 days, 22:14, load average: 0.50, 0.44, 0.28