Change your router's password!

[mugwump]

If you have a home router, make sure that you change the password from the factory default (the user id is usually admin and the pasword is password) The exploit described below will probably pop up pretty quickly now that it's been described.

Check your documentation or visit the vendor web site to get instructions on how to change the password. Include numbers and special characters for a strong password.

Symantec Sounds Warning on Router Passwords

Edited: link fixed.

[Kyobanim]

If someone buys a router for the house and doesn't change the default password they deserve everything they get, (or have taken from them). That's just plain stupid.

When in doubt, RTFM

(your link doesn't work)

[Ambush Master]

I set up a Wireless Network a while back and, for the "Wireless Access" side of it, I set up the router to only allow access by specific MAC Addresses.

People driving by can see the WAP, but they can't access it.

Later
Martin

[NousDefionsDoc]

Quote:

Originally Posted by Ambush Master

I set up a Wireless Network a while back and, for the "Wireless Access" side of it, I set up the router to only allow access by specific MAC Addresses.

People driving by can see the WAP, but they can't access it.

Later
Martin

I did too. Well, the guy that set it up did. I have no idea how to change a router password.

[Ambush Master]

Quote:

Originally Posted by NousDefionsDoc

I did too. Well, the guy that set it up did. I have no idea how to change a router password.

If you want to Skype, give a shout and I'll walk'ya through it!!

Later
Martin

[mugwump]

At home, I wouldn't need an ISP at all. I could leech off of any one of 3 unsecured wireless connections of my neighbors. All 3 are called "Linksys". I'd bet a month's mortgage payment that all still have the default settings.

[mugwump]

Quote:

Originally Posted by Kyobanim

(your link doesn't work)

Link fixed. At least the link didn't go to a midget porn site. I hate when that happens.

[kgoerz]

Besides changing the routers password I also use Air Alarm/Air Snare. Don't remember the exact name, I am not at my house now to check. This program sounds an alarm when someone not in your network is using it or trying to hack in, it was free off a cd that came with windows magazine. I live on a farm and the alarm went off one day. I drove out to the main road and no shit there was a guy sitting in his car. I didn't get a good look but I am 90% sure he had a laptop sitting on his lap. When I pulled up behind him and got out he sped off. I was wearing my pistol rig so this might of spooked him. Gave his license to the cops but of course there was nothing they could do, go figure. No law against sitting in your car on the side of the road. No way to proove what he was doing.
I am sure there are a few free programs on the net like the one I use. Anyone using something similar out there? I plan on hard wiring my home network when I return home. I couldn't imagine having a wireless network living in the suburbs. I would like to find a program that ID'S the computer that is hacking you. Not just the IP number but the name of the computer would be great. Last question, is there a program that will tell you if your emails are being monitored on a network.

[sfbaby1982]

Awesome, this is a topic that I might be able to contribute to.

You have to understand that the problem with your network is that it is broadcast. If you set your network to only access a specific MAC address that will allow you to limit the traffic but not the visibility to the network. Most routers/access points allow you to decide whether you would like to broadcast the SSID. If you record this SSID on the router and turn that option off then your router will not be read by windows based machines without very advanced software. Beware though if you have a wireless network it can be easily read and accessed by apple computers. Just as Apple computer can usually bypass the security at pay-and-use internet wireless cafes, such as Starbucks(think about that for your next computer purchase).

Those two measures are good but a dedicated firewall between your computer and the access point is key. And i'm not talking about Windows Firewall. Most routers/access points have built in features that can help you. You just have to get someone to help you at this point because it involves data packet handling and port restrictions that if not done properly can help accelerate balding.

If you block the SSID from being broadcast and apply at least WPA "personal" encryption it should be good enough to keep that guy sitting in his car at bay. Most of the time without the right equipment and dedication they will drive right past. Just realize that your 2.4GHz router can be read from 3 miles or more. I've done it with a "cantenna" just to prove that very point to a farmer who didn't believe that it was worth paying me, a poor college student at the time, 20 bucks to set security up for him. Now he wasn't a fellow professional but those steps I listed above will prevent someone from being able to do just that for the most part. (He almost pissed himself when I proved it to him)

Remember that email is sent over the air in plain text. Every email. If you want to send stuff that is private then buy a program such as Truecrypt or Steganos and use that to send encrypted "volumes" or packages. Just make sure that the other side has the key to open them and the same program. That will provide you with a bit of security. Hope that helps a little.

Ricky

[kgoerz]

Thanks for the info. Good stuff

[sfbaby1982]

Hey! I may be a killer but I'm totally confident in my Geek! Don't judge me!









(Totally Joking...your welcome, any time man)

Ricky

[LongWire]

Good Shit Ricky.....I may have to pick your brain at some point!!!! (such as that Mac Starbucks bypass....that would be helpful!!!!!)

[sfbaby1982]

Sure thing man.

R

[Sionnach]

SF Geeks? There's hope for me yet!

Good advice.