We have more than just the domain authentication enabled on our secure network. Since most of the simpler method had already been detailed I didn't see a need to repeat them. Only reason I mentioned the 2003 server domain authentication is that if they should get past the security at the wireless point they'd still have some hurdles to over come. Even if you do manage to connect the server causes you to be dropped in less than 2 minutes over to the less secure network. Drove my partner crazy when he reinstalled something that reset part of his authentication. He'd connect but it wouldn't respond properly to the ongoing challenge so the server would drop him. Finally complained to me that the "server was not reliable" when he connected with his laptop but was from his desktop (wired access).
If all someone wants is to park outside and check their email I could care less. I've pretty much determined that the local police department uses a specific name for their LAN between the unit in the police cars and their hand holds as a result of a name that has cropped up in my sniffers of available wireless networks not just outside my place but when I've been working the elections at the scout house, doing some volunteer work at the local elementary (primary) school or even once at Starbucks. I do know when I tried it out of curiosity that it seems to be secure against a regular connection attempt. I also know that the network comes and goes which is consistent with something in a vehicle. Cheryl D. Wise Certified Professional Web Developer MS-MVP-FrontPage www.wiserways.com mailto: [EMAIL PROTECTED] 713.353.0139 Office -----Original Message----- From: Trusz, Andrew [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 02, 2004 9:54 AM To: [EMAIL PROTECTED] Subject: [wdvltalk] RE: OT: wireless network adaptor question -----Original Message----- From: Cheryl D. Wise Subject: [wdvltalk] RE: OT: wireless network adaptor question We actually have 2 separate wireless networks. One secured with authentication again a Windows 2003 domain controller on the higher speed g network. The other pretty much wide open though not on any of the router defaults that has no access to our intranet but does have internet access. We use that one for guests and a bit of a honey pot if someone thinks they will be breaking into our system. Cheryl D. Wise Certified Professional Web Developer MS-MVP-FrontPage www.wiserways.com mailto: [EMAIL PROTECTED] 713.353.0139 Office -----Original Message----- From: Scott Glasgow Good suggestions, all, and you might also want to take some other security measures, as well. In addition to turning off the SSID broadcast as Todd suggests, change the default SSID or network name. Use MAC ACLs to only allow your wireless NICs to access the network. Change your WEP key and, if your software/hardware supports it, have the keys generated dynamically at log on. There's a good deal that can be done to limit the access of the baddies to your network; most of wireless's bad security rap is because people leave everything at the defaults and don't implement the security that is there. Like all networks, wired or wireless, invasion is still possible. But if you make getting into yours enough of a pain in the arse, the war driver or curious neighbor will likely look elsewhere rather than truck with you. Google on "wireless security" and you will find a wealth of security information for wireless networks. ============================================================================ = Traffic on the w2k3 network is unencrypted? If so, how are you stopping sniffing of the unencrypted packets? All sorts of information is there for the picking. With wireless it isn't the edges that are a problem, it's the interior. drew ____ . The WDVL Discussion List from WDVL.COM . ____ To Join wdvltalk, Send An Email To: mailto:[EMAIL PROTECTED] Send Your Posts To: [EMAIL PROTECTED] To set a personal password send an email to [EMAIL PROTECTED] with the words: "set WDVLTALK pw=yourpassword" in the body of the email. To change subscription settings to the wdvltalk digest version: http://wdvl.internet.com/WDVL/Forum/#sub ________________ http://www.wdvl.com _______________________ You are currently subscribed to wdvltalk as: [EMAIL PROTECTED] To unsubscribe send a blank email to %%email.unsub%% To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. ____ � The WDVL Discussion List from WDVL.COM � ____ To Join wdvltalk, Send An Email To: mailto:[EMAIL PROTECTED] Send Your Posts To: [EMAIL PROTECTED] To set a personal password send an email to [EMAIL PROTECTED] with the words: "set WDVLTALK pw=yourpassword" in the body of the email. To change subscription settings to the wdvltalk digest version: http://wdvl.internet.com/WDVL/Forum/#sub ________________ http://www.wdvl.com _______________________ You are currently subscribed to wdvltalk as: [EMAIL PROTECTED] To unsubscribe send a blank email to [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
