Nowadays, four thousand or five thousand of dollars in notebooks are already equipped with wireless LAN card, wireless router prices are also down the road, 200 yuan can buy a well-known brand of 54Mbps wireless router. With a wireless router, without destroying the family's existing decoration pattern, you can enjoy the pleasure of surfing the Internet, and can move everywhere, really realized in the home to enjoy the convenience of surfing the internet everywhere.
As the home wireless internet is still a new thing, many home wireless network users only stay in the use of the stage, for wireless internet security vulnerabilities are not yet known. Often hear a user sigh, the home did not install wireless network equipment, open the notebook but search the wireless internet signal, enjoy the joy of free internet is self-evident, and have a family of wireless network equipment friends are still free for others to provide the Internet access services, selfless dedication of the pain do not need to say more. To stop acting as a "sucker" for providing free internet access for others, the security loophole in plugging wireless Internet access is a compulsory course. Below, the author briefly describes how to plug the security vulnerabilities of home wireless LAN.
Shut the door of the wireless router
At present, wireless routers are many families to build wireless LAN main equipment, set up wireless LAN, many users are "able to use" as the principle of the wireless router in the default settings, ignoring the security of wireless LAN. To this end, in the use of wireless routers to build a wireless LAN, be sure to add a password to the router, close the door of the wireless router.
The convenience of the Internet facilitates users to access a variety of information, but also to some people want to experience the "hacker" pleasure of the destruction to provide a convenience. Google, Baidu or any one of the search tools can find the wireless router's default username and password, which is also a threat to the security of wireless LANs a big hidden danger. To do this, you must change the default password for the wireless router after the wireless LAN is built. In some wireless routers (such as tp-link) products, not only provides the ability to modify the wireless router password, but also provides the ability to modify the user name of the wireless router.
Take Tp-link's tl-wr641g as an example, the user can modify the username and password at the same time as the login password (pictured below). After modification, the intruder will not easily enter the wireless router device, Wireless LAN Security is also protected. (Computer science)
When setting the wireless router password, do not use too simple password, also do not use easily guessed user name, only in this way, wireless router security can be guaranteed, wireless Internet access will be more secure.
Reasonable setting parameters of wireless internet
Wireless Internet access is also a setup option that is prone to security risks, especially setting options such as SSID broadcasts, and related security settings, which are easy to create a security risk. Reasonable set of wireless internet parameters, wireless LAN can be a security loophole blocked. In the wireless Internet parameter setting item, the following several settings items are easy to create the security loophole, the following will kill the method to share to the user.
1. Turn off SSID Broadcast
The SSID (Service Set Identifier) can also be written as Essid, used to differentiate between different networks, can have a maximum of 32 characters, the wireless card sets a different SSID can enter different networks, SSID is usually broadcast by the wireless router, You can scan the SSID in the current area by using XP's own scanning capabilities. Simply put, the SSID is the name of a local area network, and only computers set to values with the same SSID name can communicate with each other.
By default, the SSID of the wireless router is the brand name of the router and is the default, which undoubtedly gives the intruder an optimal opportunity. To do this, we must change the default SSID of the wireless router. For security, it is recommended that the user turn off the SSID broadcast for the wireless router.
2, open wireless Internet security settings
To increase the security of wireless Internet access, the Wireless Internet Security settings option is available in the wireless router, and the manufacturer usually shuts down the wireless router when it leaves the factory. This feature can be enabled to improve the security performance of wireless Internet access.
After the wireless Internet security setting option is turned on, the user must also make relevant settings for the security type, security options, and key format selections. After all settings have been set up, the client must be configured to communicate with the wireless router properly, and the client settings must match the settings of the wireless network card on the client side.
After this series of settings, the wireless router's security performance will be greatly improved, wireless Internet access will be more secure. In addition, the related settings of the DHCP service are also the key to the security of wireless Internet.
Disabling a DHCP server
On the surface, the DHCP server has nothing to do with the security of a wireless internet connection. In fact, the security of wireless Internet access is also a major threat after the wireless router has a DHCP server enabled. To do this, to improve the security performance of wireless Internet access, you must prohibit the DHCP server.
If the DHCP server is turned on in the wireless router, the wireless router automatically assigns an IP address to the wireless network client, so that the wireless client obtains the IP address, subnet mask, DNS and gateway information from the wireless router. After acquiring a series of information, such as IP address, the wireless router will undoubtedly be exposed to the public, others can easily use the resources of the wireless router. To do this, enabling the DHPC server reduces the security performance of the wireless router and becomes a hidden vulnerability.
In addition to shutting down the DHCP server, some of the security settings in the wireless router are also important for improving the security of wireless Internet access.
Smart use of wireless router security settings
In the settings of the wireless router, some of the options in the "Security settings" can effectively block security vulnerabilities, make wireless internet more secure, and often use security settings that include both MAC address filtering and IP address filtering. When MAC address filtering is enabled, it is important to select options such as "Allow only MAC addresses that have been set up in MAC address lists to access wireless networks" in the filter rules, otherwise the MAC address filtering will not be enforced. IP address filtering is similar to MAC filtering.
After setting up MAC address filtering and IP address filtering, some illegal intruders will find it difficult to invade the wireless router, and the wireless Internet becomes more secure.
Wireless network is a more open network than the wired LAN, and the security vulnerabilities are relatively more. To do this, we must enable some of the security settings options in the wireless router to make wireless Internet access more secure.