cancel
Showing results for 
Search instead for 
Did you mean: 

WiFi Security

10
Newbie
Posts: 5
Registered: ‎25-09-2008

WiFi Security

I have a problems with outsiders trying to attach to my WiFI network, there is a path outside our house and a seated area where people often stop for lunch, there thay try to attach, my router 'sees' them,  and refuses access as the password is wrong all attempts at access are logged which takes up router time.

What I'd like to do is:-

1) Hide the SSID broadcast.

2) Set the security to 'None'

3) Invoke Mac address filtering so only pre-coded Mac addresses will be allowed access.

 

Anyone have any thoughts?

 

 

9 REPLIES 9
VileReynard
Hero
Posts: 12,616
Thanks: 579
Fixes: 20
Registered: ‎01-09-2007

Re: WiFi Security

Then you will have zero security.

Hiding the SSID broadcast doesn't stop outsiders seeing it - how do you think your wifi devices know what SSID they are connecting to?

It is easy to spoof MAC addresses.

If you switch off security then everyone could log all your unencrypted clear text.

 

"In The Beginning Was The Word, And The Word Was Aardvark."

Baldrick1
Moderator
Moderator
Posts: 12,318
Thanks: 5,509
Fixes: 429
Registered: ‎30-06-2016

Re: WiFi Security

@10 

Hiding the SSID might fool some devices. However I don't know if this is possible with Plusnet hubs. I know you can on some Asus devices. However 'hidden' networks still show up on WiFi sniffer apps.

Turning off security makes no sense whatsoever.

I doubt that your bandwidth is being significantly impacted by these attempts at theft.

Moderator and Customer
If this helped - select the Thumb
If it fixed it,  help others - select 'This Fixed My Problem'

198kHz
Seasoned Hero
Posts: 5,753
Thanks: 2,813
Fixes: 41
Registered: ‎30-07-2008

Re: WiFi Security

Agreed on all points with previous answers.

As long as it's WPA2 with a strong password I don't see a problem.

Murphy was an optimist
Zen SOGEA 40/10 + Digital Voice   FRITZ!Box 7530
BT technician (Retired)
idonno
Champion
Posts: 1,564
Thanks: 498
Fixes: 6
Registered: ‎22-10-2015

Re: WiFi Security

I don't use a hub (TP-Link router /Fritz!Box) and use mac filtering for everything - I run a white list. Even if they got the password, if they aren't on that white list, still no connection. I don't run a guest network either. Bit of a pain when people come visit/stay but it does mean I have control of who connects and who doesn't. Hiiding the SSID simply shows up as hidden round these parts but showing it I don't think it makes much difference to be honest. No security is exactly what it says on the tin....NO security i.e. open house, all hours......... Good luck on that one.

 

If the Hub doesn't do what you want, you need to spend some money on a better router.

Ever helpful. Grin Sure, I’d love to help you out. Now which way did you come in?
VileReynard
Hero
Posts: 12,616
Thanks: 579
Fixes: 20
Registered: ‎01-09-2007

Re: WiFi Security

That MAC address security is cumbersome and doesn't protect you against a semi-serious attack.

https://linuxconfig.org/how-to-gain-access-to-a-mac-whitelist-wifi-network 

BTW, I haven't tried this out. 😀

"In The Beginning Was The Word, And The Word Was Aardvark."

bobpullen
Community Gaffer
Community Gaffer
Posts: 16,926
Thanks: 5,012
Fixes: 317
Registered: ‎04-04-2007

Re: WiFi Security


@10 wrote:

What I'd like to do is:-

1) Hide the SSID broadcast.

2) Set the security to 'None'

3) Invoke Mac address filtering so only pre-coded Mac addresses will be allowed access.

Anyone have any thoughts?



Others have already said it, but throwing my hat into the ring - It's a bad idea.

Bob Pullen
Plusnet Product Team
If I've been helpful then please give thanks ⤵

idonno
Champion
Posts: 1,564
Thanks: 498
Fixes: 6
Registered: ‎22-10-2015

Re: WiFi Security


@VileReynard wrote:That MAC address security is cumbersome and doesn't protect you against a semi-serious attack.

As it says in the comments..... "The reality here is these instructions would have been valid in 2013 but we are 2017".

Even so It would have been overkill years ago for what I use the internet for and we certainly don't have park benches where people can spend hours loitering around trying to connect. 😃

Ever helpful. Grin Sure, I’d love to help you out. Now which way did you come in?
VileReynard
Hero
Posts: 12,616
Thanks: 579
Fixes: 20
Registered: ‎01-09-2007

Re: WiFi Security

The beef of the commenter was that the instructions use old varieties of software (but still commonly used) when people should be using newer varieties.

Didn't say the old software isn't still distributed...

But the point is that captures are interpreted using MAC addresses - which cannot be encrypted as these specify source and destination devices within the LAN. No TCP/IP addresses are required.

So if you know a whitelisted MAC address (which you do) you can connect (no password) to the network.

For genuine security from semi-casual connections, scrap wifi and use ethernet cabling.

"In The Beginning Was The Word, And The Word Was Aardvark."

7up
Community Veteran
Posts: 15,855
Thanks: 1,602
Fixes: 18
Registered: ‎01-08-2007

Re: WiFi Security


@10 wrote:

What I'd like to do is:-

1) Hide the SSID broadcast.

2) Set the security to 'None'

3) Invoke Mac address filtering so only pre-coded Mac addresses will be allowed access.

 

Anyone have any thoughts?


My thought is that you must like drama..

Why would you want no security after admitting you're getting people trying to connect to your network? - You're utterly nuts to want to give them an open door.

Mac addresses can be spoofed. Okay yes you'd need to be pretty serious about attaching to that network but there are people out there that look like you and me who will happily do so. They don't actually go around dressed like white wizards wearing a special hackers hat.

I need a new signature... i'm bored of the old one!