Securing Wireless Access Point

If you have wireless router broadcast on your workplace or home, you might be at risk of intrusion. Yes! You might have configured your wireless router with password protected or using MAC filtering. None of both method provide bullet-proof solution. For example in my hometown, i got plenty of free wireless access which are not protected by password or MAC filtering. Most of them are not Tech-savvy user and the technician from the store their bought from never help them to protect the wireless router by educate or hints their consumers.

Nowadays, WEP cracking are so easy and tutorial are wide available to grab.

How about MAC filtering protection mechanism? Well, using MAC filtering does not protected data confidentiality when transmitting from your computer to the wireless router. Crackers can easily grab all information you had send from your computer to the wireless access point. For example, when you login to certain sites which was poorly design and use http authentication instead of https (using ssl) authentication, your password can be easily grab and exposed. Using tools like WireShark can easily analyze your network settings and data transmission. You might be wondering that since we are using MAC filtering protection, the attackers cannot be able to access our router because their Network Card MAC address was not being set in the router configuration. Thing are not as easy as you though.

First, what attacker needs to do was, to grab your or other computer Network Card MAC Address in your wireless network that had been set in the router configuration. Attackers can either perform packet injection (too advance skills) or use MAC Grabber to obtain the correct Network MAC address.

Then, with the list of Network Card MAC address, attacker can use tool like macchanger from Linux to change their MAC Address on their computer to the list of MAC address which their had successfully obtains. Now without any barrier he/she are now in your network and wandering around to collect information.

Below are some of the baisc solution to protect your wireless router being access by unwanted intrusion :
1. Change your WEP password every week or use WEP2 password protection instead.
2. Use combination of WAP and MAC filtering.
3. Broadcast thousand of fake AP (Access Point) where this might confused them which AP to connect.
4. Turn off broadcasting of your SSID
5. Use strong and long password for your wireless router login.
6. Check your wireless log every single day to see whether their were unwanted intrusion accessing your router.
7. If possible turn off your wireless broadcast if you don’t need so.

Advertisements