I set up a home wireless LAN with the following configuration using a popular wireless broadband router.
1. Changed default SSID.
2. Changed Default channel.
3. Enabled 256 bit WEP.
4. Disabled broadcasting of SSID.
5. Generated WEP key using random numbers, letters, & symbols. Also did the same when changing the default admin password.
6. Enabled Mac filtering.
7. Disabled DHCP
8. Disabled remote admin capability (must be connected to LAN to change settings.)
9. Enabled built-in NAT firewall.
I regularly xfer confidential information between hosts on this wireless segment.
I think it is bullet proof but I will be setting up this same configuration for several friends/family so I need to know SPECIFICALLY what vulnerabilitlies still exist, if any.
(Please, no generic responses like “nothing’s bullet proof unless you unhook it from the net” or “yea, if you want to be safe, you got to get you one of those danged ‘ol VPNs set up.” The points will be given to anyone with specific vulnerabilities)
I look forward to your responses…
Thanks!
🙂
“May every spam you receive magically come true.”
-Spencer F. Katt (eWeek)