LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-07-2014, 02:33 PM   #1
Rab1873
LQ Newbie
 
Registered: Mar 2014
Posts: 2

Rep: Reputation: Disabled
Unhappy insecure Wi-Fi


Halp,

Just heard the report put out by the bbc news and I use Wi-Fi!!!

I always keep the door locked in my flat and I have a dog is there anything else I can do to secure my wi-fis???
 
Old 03-07-2014, 02:37 PM   #2
lleb
Senior Member
 
Registered: Dec 2005
Location: Florida
Distribution: CentOS/Fedora
Posts: 2,630

Rep: Reputation: 495Reputation: 495Reputation: 495Reputation: 495Reputation: 495
WPA2 personal is normally enough to keep most people out. you can also enact ACLs to lock down via MAC address, but that is also not 100%. if its wifi, its open to much easier hacking then a hardwire. those are just the facts, but dont leave the default settings and in most cases if you have a standard WiFi SoHo router/access point you will want to update your firmware ASAP.
 
Old 03-07-2014, 02:38 PM   #3
Mr. Alex
Senior Member
 
Registered: May 2010
Distribution: No more Linux. Done with it.
Posts: 1,238

Rep: Reputation: Disabled
Locked doors for Wi-Fi?
 
1 members found this post helpful.
Old 03-07-2014, 02:42 PM   #4
ComNetGrad
LQ Newbie
 
Registered: Mar 2014
Posts: 3

Rep: Reputation: Disabled
I put condoms over the stick-out-thingies - I think it helps, i haven't had a virus yet!!!

I saw the BBC thing and it worried me too. I might invest in some extra-safe ones from the co-op on my way home from work.

Last edited by ComNetGrad; 03-07-2014 at 02:44 PM.
 
1 members found this post helpful.
Old 03-07-2014, 02:48 PM   #5
Rab1873
LQ Newbie
 
Registered: Mar 2014
Posts: 2

Original Poster
Rep: Reputation: Disabled
Ok thanks ComNetGrad, I found the sticky out thingies and put some condoms on this. My Girlfriend isn't happy she seems to think this won't work but makes sense I don't want a virus.

Lleb I don't really understand what your saying. Is that something about a firewall in the blue writing? I don't think that sounds very safe... my girlfirend won't let me do anything to her flat.
 
Old 03-07-2014, 02:49 PM   #6
ComNetGrad
LQ Newbie
 
Registered: Mar 2014
Posts: 3

Rep: Reputation: Disabled
Yeah man, firewalls are the worst. I tried to install one in my last flat and lost my security deposit The firefighters kept looking at me like i was an idiot ...
 
Old 03-07-2014, 03:08 PM   #7
suicidaleggroll
LQ Guru
 
Registered: Nov 2010
Location: Colorado
Distribution: OpenSUSE, CentOS
Posts: 5,258

Rep: Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947Reputation: 1947
Don't feed the troll...
 
Old 03-09-2014, 06:31 AM   #8
ext2
LQ Newbie
 
Registered: Jan 2013
Location: Indonesia
Distribution: Red Hat Enterprise Linux Server release 6.4 (Santiago)
Posts: 15

Rep: Reputation: Disabled
Quote:
Originally Posted by Rab1873 View Post
Halp,

Just heard the report put out by the bbc news and I use Wi-Fi!!!

I always keep the door locked in my flat and I have a dog is there anything else I can do to secure my wi-fis???
Maybe, you can change your password wi-fi or if you use wi-fi public like on the office or airport, you can install firewall or antivirus security.
If you use WEP authentication, you should change to WPA auth.

I hope this can help you
 
Old 03-10-2014, 07:05 AM   #9
Soadyheid
Senior Member
 
Registered: Aug 2010
Location: Near Edinburgh, Scotland
Distribution: Cinnamon Mint 17.0 at present.
Posts: 1,167

Rep: Reputation: 201Reputation: 201Reputation: 201
One of the main passwords you should change is the Router's Administrator one... The one that is set by default to "changeme" (Virgin Media)

You should NEVER leave this password as supplied as a prospective hacker can compromise your router settings if they get access through non-secured WiFi.

The supplied WEP/WPA authentication ones are probably obtuse enough but again... Better safe...

Play Bonny!

Hattip:
 
Old 03-10-2014, 07:17 AM   #10
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 2,166

Rep: Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751
Quote:
Originally Posted by Soadyheid View Post
The supplied WEP/WPA authentication ones are probably obtuse enough but again... Better safe...
Not if you're in Ireland and have a WiFi router provided by "a well known ISP". The default WEP/WPA authentication is based on running the SSID through an algorithm, just run the SSID through any of a number of websites and you've the password.
 
1 members found this post helpful.
Old 03-10-2014, 12:43 PM   #11
Soadyheid
Senior Member
 
Registered: Aug 2010
Location: Near Edinburgh, Scotland
Distribution: Cinnamon Mint 17.0 at present.
Posts: 1,167

Rep: Reputation: 201Reputation: 201Reputation: 201
Quote:
Not if you're in Ireland and have a WiFi router provided by "a well known ISP". The default WEP/WPA authentication is based on running the SSID through an algorithm, just run the SSID through any of a number of websites and you've the password.
Interesting... I don't think I have that problem here in the UK. I generally change the SSID anyway.


Play Bonny!

 
Old 03-10-2014, 01:27 PM   #12
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 2,166

Rep: Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751Reputation: 751
Quote:
Originally Posted by Soadyheid View Post
Interesting... I don't think I have that problem here in the UK. I generally change the SSID anyway.
So do I, but knowing of the exploit was very handy when my father-in-law installed his "upgrade" router from the ISP, meant I could set my phone up to use his WiFi without having to look at the bottom of the box
 
Old 03-10-2014, 01:58 PM   #13
metaschima
Senior Member
 
Registered: Dec 2013
Distribution: Slackware
Posts: 1,982

Rep: Reputation: 490Reputation: 490Reputation: 490Reputation: 490Reputation: 490
I avoid WiFI and do everything I can not to use it. When I do use it, I always use WPA2 and change the password often.

You may also want to have a router that can run dd-wrt or openwrt just in can your router has a backdoor.
 
Old 03-10-2014, 05:00 PM   #14
jefro
Moderator
 
Registered: Mar 2008
Posts: 15,374

Rep: Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198Reputation: 2198
I think the deal was some brands of routers.


As for wifi, a person could access it eventually. Seems you need some 2 million packets or so to crack it. A changing password would protect that if used.

Other options,

Limit wifi to only times when you need it. I use my router to set times when I am there. You can also turn it off to save energy.

Reduce power output. You'd be surprised how far your signal can travel. Few people however can change power settings.

Change default logon password and maybe user.

Don't enable any services or access to wan.

The wacky comments should not be used towards new members and maybe not at all.
 
Old 03-10-2014, 05:55 PM   #15
metaschima
Senior Member
 
Registered: Dec 2013
Distribution: Slackware
Posts: 1,982

Rep: Reputation: 490Reputation: 490Reputation: 490Reputation: 490Reputation: 490
To be more specific:
WEP is completely compromised and can be cracked in minutes
WPA TKIP is weak and can be cracked in minutes
WPS can be cracked in hours
WPA2 CCMP uses AES and should be strong enough for anyone but the NSA and other three letter agencies. However it is only as strong as your password, so consider changing it often and also not broadcasting your SSID.
http://en.wikipedia.org/wiki/Wi-Fi_Protected_Access
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
linux too insecure???? jakesjohn Linux - Security 6 08-22-2008 08:49 AM
Why is system() insecure? reverse Linux - Security 5 12-03-2007 07:47 PM
Would not having a domain name be insecure? RHLinuxGUY Linux - Security 4 01-27-2007 01:53 AM
NFS insecure? Micro420 Linux - Security 8 12-15-2006 02:56 AM
xlock insecure... Synesthesia Linux - General 5 02-05-2006 01:36 AM


All times are GMT -5. The time now is 06:45 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration