WizGidget

October 27, 2010

Secure your WiFi, part 2

Filed under: Tips & Tricks — pmckinley @ 1:28 AM

Last week we talked about the importance of WiFi security. This week we’ll talk about how to do that.

Your router will generally have a “WAN” (wide-area network) jack, and four “LAN” jacks.  The WAN jack connects to your cable or DSL modem: it’s your connection to the internet.  The LAN jacks can be used with network cables to your computer.   And lastly of course it will have a “wall wart” power supply that must be connected.

Most if not all WiFi routers have some form of web-based configuration tool.  The best way, at least initially, to access the configuration tool is to connect the router to your computer with a network cable.  Once they’re connected, you should see a network connection icon in the system tray which is the group of icons in the right end of the taskbar at the bottom of your screen.  Check the manual for your router to see what the URL for the configuration tool is: it will probably be “192.168.0.1″ or something like that. Type that into the address bar of your web browser, where you would normally type a website URL.  You should get a login screen: the login will probably be “admin” with a blank password.

Once you’ve logged into the configuration tool, you might want to explore the different tabs and links to familiarize yourself with the interface.  Don’t change anything yet, just familiarize.   Then, the first thing to do is to change the password for the router — obviously having a blank password isn’t very secure.  If the router has the ability to change the admin login name, change that too, preferably to something besides “admin” or “administrator”.

Next, find the setting for whether the router will allow access to the configuration tool from the internet.  My router hides this under the “tools” tab, in the “admin” option, listed as “Enable Remote Management”  This feature should be disabled — you don’t want people being able to access your router configuration from the internet!

Next, find the configuration for wireless.  Mine is under Setup/Wireless Settings.  Change the SSID which is the Wireless Network Name to something meaningful to you, but not others — you don’t want a drive-by to be able to identify your router.  Next, set the security mode to WPA or WPA2.  You may see “WEP” as a security mode, WEP is not very secure.  If there is an option for it, use WPA2.  You will need to set a pre-shared key for the WPA/WPA2.  Choose something you can remember but would be impossible for somone else to guess,  and the more characters it has, the better.  You will need to record your network name and the pre-shared key for setting up wireless devices on your network.  When you set up your computer to use wireless, select the network with the name you chose, and when prompted put in the pre-shared key, that should get you connected.

The WiFi Alliance has a pretty good article on website security, you can see it at www.wi-fi.org/security.php.

Next week: more on Botnets. As always, you can read this and other Wizgidget articles at wizgidget.com

October 20, 2010

Secure your Wifi, Part I

Filed under: Belton Journal, Tips & Tricks, Warnings — pmckinley @ 1:00 AM

I have an investment property that was built in 1977.  I would have thought that even at that late date, it would have been wired for phone service, but it isn’t.  Someone came along after the home was built and snaked phone lines all over the outside of the house.  Most modern houses are pre-wired for phone service.  Around 1995 I had a house built, and rode the cutting edge — I fixed the house not just for network cable, but also made it easy to rewire the house for newer technology that might come along.  I had every major room in the house network-ready.  Some modern homebuilders build networking capability into their homes.

Hard-wired network is the best — it’s the most secure, and gets the best network speed internal to the network although the speed of the connection to the internet is usually still defined by your cable or dsl internet connection.  More commonly these days we tend to use wireless networks, called WiFi.  It’s relatively easy to set up, and you don’t need a network jack next to your computer.  You can take your laptop (or any wifi-capable device) anywhere in the house and get to the network.  This is very convenient, and way cheaper than having your house wired for network.  A good WiFi router is about as cheap as the same network switch you’d need to hook up the wired connections.

As with everything else, the WiFi has a price in addition to the dollars and cents.  The newer wireless-N can handle speed nearly that of the 100Mbs links, but they’re still not quite as fast, although since the internet speed is still limited by the cable or DSL connection, that’s usually not a problem.   The real challenge is that not only can you get to your network from just about anywhere, so can your neighbors and the strangers driving down your street. I even have a utility on my cell phone that I can use to find WiFi connections that are “open” (unsecured), just driving down the street.

“I don’t care” you may say, thinking that your internet connection is blazing fast and you don’t mind if your neighbors “borrow” a bit of your bandwidth.   The problem with that attitude is that, your neighbor’s computers may be infected with a virus that uses the network to find other computers to infect.  If you happen to have a budding computer genius living nearby, they would have full access to your network — they could potentially snoop all of your internet activity, read all your emails, etc.  The more sinister possibility is that someone in a car somewhere within a quarter mile or so of your house could use your network connection to perpetrate internet crimes such as sending out spam — which would be tracable to your network.  The first person convicted under the Can-Spam law happened to be someone who was doing his spamming via “borrowed” WiFi network (see http://articles.techrepublic.com.com/5100-22_11-5398787.html)

Next week, we’ll talk about how to fix this issue by securing your WiFi connection.

October 6, 2010

It’s Time to Upgrade Your Web Browser

Filed under: Tips & Tricks — pmckinley @ 12:05 AM

First, a bit of errata: last week’s article as published in the Belton Journal had the title from the previous week — it should have read “Instant Messaging”.

As time goes on, new features are added to the standards for website development. What this means is that older web browsers will not work properly with websites that use the newer features. At some point website developers have to simply drop support for older browsers in order to keep up with the times on their websites without having to try to support a zillion mutually incompatible browser versions. For example, Google recently announced that they will no longer support IE6 (Internet Explorer version 6).

There are also security vulnerabilities that are discovered in older web browsers, and although the browser manufacturers like Microsoft or Mozilla come out with updates, it becomes more and more difficult for them to update the older browsers. Plus, there are some really nice features that have become available in the newer browsers, such as tabbed windows.

There are some companies that have standardized on a given browser, for instance I have worked with several clients that only allow IE6.  I believe they have already done some modifications on IE6 to handle its security issues.  Unless you have some company policy issue or other reason to stay with the older version, if you want the best web browsing experience, it would be a good idea to update to the latest browser.

There are several browsers to choose from. I prefer Firefox, which can be downloaded from http://www.mozilla.com/en-US/firefox/personal.html (look for the download button in the right column). There is an add-on for Firefox (IE Tabs) that allows you to view a webpage using the IE rendering engine from within a Firefox window (look at https://addons.mozilla.org/en-US/firefox/addon/1419 or https://addons.mozilla.org/en-US/firefox/addon/10909″) for the websites that have been written to run only on Microsoft products (shame on them!).  This keeps you from having to run both Firefox and IE. Firefox has a bewildering array of add-on tools in addition to the IE Tabs add-on, check https://addons.mozilla.org/

If you’re running on a PC, and insist on using Internet Explorer, you can get downloads for the current Internet Explorer (v8) at href=”http://www.microsoft.com/windows/internet-explorer/worldwide-sites.aspx, or V7 http://www.microsoft.com/windows/internet-explorer/ie7/. If you’re going for the V7 version, look for the “Get Internet Explorer 7 in the middle column, with the “Select your operating system” dropdown menu — right under the really obvious Internet Explorer 8 “Download Now” button.

There are other browsers to choose from as well of course:

  • Apple’s Safari, which will run on Windows as well
  • Opera
  • Google’s Chrome
  • and many others.

One browser suite that is interesting is SeaMonkey, which like Firefox is provided by the Mozilla organization.  I recommend SeaMonkey to clients who need to create web pages for their company or organization, but don’t have hundreds of dollars to spend on a professional web development tool.  It’s a bit clunky, and the editor doesn’t really understand CSS (Cascading Style Sheets, the web technology that allows really nice web pages) but it’s free and works reasonably well.

Powered by WordPress

Bad Behavior has blocked 30 access attempts in the last 7 days.