Quote:
Originally Posted by theFez
i would also suggest turning off dhcp and only allowing your assigned ips to connect and change the default location of the administration page. by default it is usualy 192.168.1.1
right now, sitting in my living room i can connect to 3 different wireless networks that have the default admin password, default admin page location, no encryption, broadcast ssid, and have dhcp enabled.
the real pain in the ass is that i have had to turn my ssid broadcast back on because it was hard to get my laptop to connect to my network with all these other ones around.
|
Actually fez, that's some excellent advice and something I overlooked.
Whilst I wouldn not necessarily
disable DHCP, you could change the size of the scope so as to only allow enough IP addresses for your own clients.
In other words, if you know you will only be using your access point with one or two devices in your own house, why bother "offering" up to 50 or 100 IP addresses.
Additionally, changing the "location of your administrative" page really means changing the IP addresse of your access point and the default gateway etc. Whilst this will add abosolutely zero additional security, it is nice not to have your access point having the default values. It can also cause problems with your client "flip flopping", especially if it shares the same SSID as a nearby AP.
Finally, I neglected to mention that I would try to use a different channel from the default. Generally speaking you should use channel 1, channel 6 or channel 11. Different manufactures set their access points to use different default channels. It's also the way to avoid interference from nearby access points.
Of course these final three settings are a
little bit more "technical" and some users may not be comfortable playing around with them. But it's still good advice.
Mr Mephisto