Your home secure WIFI
Most home users happy when someone Wi-Fi network involved and breakups. Although she then used for online banking and other sensitive operations, do not even think that should give it secure. Issues of home Wi-Fi (using IP 192.168.ll) networks relate primarily to the bad credentials bad choices encrypt communication and undue identification data detection hardware. To prevent abuse of the weaknesses, we have three basic tips to secure home Wi-Fi network.
To be able to change the settings for home network, connect to the control panel of our Wi-Fi router. It has in most cases the web interface and the default IP address where to find him. So open your Internet browser and enter it into the corresponding IP address – most likely it will be 192.168.0.1 or 10.0.0.138 – where it can be found in the information your ISP.
The administration interface then we have:
1) Encrypt communication with the latest encryption standard
Encrypt your Wi-Fi network with WPA2 AES
If you do not want to endanger sensitive data, we need your Wi-Fi network to close and encrypt it. For encryption, we always choose the latest available encryption standard, all older lump sum can be considered compromised. At present, therefore, we choose WPA2 (Wi-Fi Protected Access 192.168.ll) with AES encryption (Advanced Encryption Standard). Optimally without retroactive support for TKIP (Temporal Key Integrity Protocol). Outdated WEP (Wired Equivalent Privacy) is far avoided.
Related circumstances WPS function (Wi-Fi Protected Setup, 192.168.ll). It gets easier pairing router with client devices, but does so at the expense of safety. Thanks to the WPS do not have for each newly connected device and set network password. WPS is, however, poorly designed and in case of attack to break into in a matter of hours. If you do not necessarily need, WPS cut.
2) Get rid of logins admin / admin – change password
Many routers have factory set username admin and the password is also admin. The administration interface must change mainly the password. Whether it’s just “admin”, or another manufacturer’s default password – it is not safe. Password “admin” as the first attacker tries, another default password to try to break the database under the preset passwords router manufacturers.
The password is chosen either the recommended combination of lowercase letters, uppercase letters, numbers, diacritics and special characters, or you can use multi-word story about the many characters that we can continue to make unavailable using so-called. Leetspeak – thus replacing letters with numbers and other characters on the basis of similarity.
If it allows the router, and change the administrator login name. Generally, it is the choice of username should avoid reference to oneself – take necessary so that you are entering into administration router login and select “router”. It is safer than login as “John” Administrator Joseph.
3) Change and hide the SSID broadcast
Routers have preset the name of the network that broadcast. It helps you configure Wi-Fi. At a time when we have a network set up, we had this broadcast name change. It makes it easy to identify because the attacker router manufacturer, or his model, and deduce other sensitive data.
The network name can be found in the administration interface under the name of the SSID and change it to any name without reference to the router manufacturer. SSID not hide, not a security feature, but rather a security vulnerability in cases of sophisticated attacks. Individuals that would discourage a hidden SSID will certainly get through another security walls.
MAC address filtering, in which the router is set to MAC addresses may be the only one to join him. We can apply this step, however, we complicate the connection of new devices – at the cost of security that the attack be delayed for a period of eavesdropping MAC address – ie about 5 minutes;
change the router’s firmware – firmware default is exchanged for another, in most cases, open-source solutions. Its security depends, however, on maturity, while developer community of software. This is an intervention into the system router, which is a substantial risk and is intended only for advanced users.
Whether basic steps to secure Wi-Fi network, enter any other measures should be borne in mind that the weakest element of the system, no matter how secure a person is a security risk represents the largest grant access to someone potentially dangerous.