RealTown's RealTalk

They can spoof mac addresses as well. The only way to have total security is to not use the internet. The next step is to only use a wired connection while transmitting secure data, but that depends on the security of the website as well.

Also, remember not to say credit card numbers on cordless phones, or if you have a baby monitor in the room. It is very easy to use a scanner to pick up these conversations for at least a good mile (if the scanner has a good antenna). Newer cordless phones, and baby monitors that have digital scrambling are harder. Old analog phones are easy, newer digital phones are harder, but I'm sure with the right equipment, still possible.

Steven Hong, e-PRO Realtor

RE/MAX Associates Plus

Minneapolis, MN

		RealTalk Powered by RealTown Communities
	Security Re: wireless network security Pat Hallesy Licensed Real Estate Agent Fredericksburg, VA Sep 07, 2008 You can also make your wireless connection hidden from the public (probably would not have helped in your case as they were sophisticated enough to break your encryption and use your login to attempt to do the transfer). Another layer of security is to limit the computers allowed access to your network (using the computer's own MAC address. Pat Hallesy View / Reply on the Web Reply to Community You are subscribed to RealTalk on RealTown Communities. If you have forgotten your password, click here. To unsubscribe from this list, click here, or send an email to RealTalk@RealTown.com with "RealTalk:unsubscribe steven@stevenhong.com" as the subject (without quotes).

Lisa wrote:

"Ultimately, we found out that someone had cracked the WPA key on my wireless network and piggybacked into my account when I had logged in because the only IP address that had accessed my online account was my own. I have closed accounts and opened new ones and changed passwords on everything. I also changed user names on lots of things. One thing I almost overlooked and thought I would share in case this happens to you, I renamed my wireless network and created a new and more complicated WPA key.

Be sure to change your passwords periodically."

Lisa et al;

I could not help but chime into this thread…So many homeowners/businesses leave themselves open to attack of this kind everyday..They'll go out to the 'big box store," buy a wireless router/access point and drop it onto the network..Next thing, "war drivers and crackers" are hitting it up for info, or just to steal their bandwidth to upload/download files..Remember, if someone is attacking another site from your wireless network, or downloading kiddies porn, your IP address (http://en.wikipedia.org/wiki/IP_address) at your home/business will be the one the FEDs come knocking on…

Here are more basic tips when setting up wireless networks…Remember, IT guys like me and the knowledgeable bad guys, have tools to detect, collect and crack networks, but we are trying to deter the 80% of the "drive by/neighbor hackers." Short of installing a RADIUS (http://en.wikipedia.org/wiki/RADIUS) server at home/the office, you will not be able to prevent a dedicated cracker from getting into your wireless network, there simply are too many tools/tricks to be used…

That said, let's look at what good/reasonable wireless security is:

DO NOT USE IT for confidential/sensitive transmission of data, period..Plug straight into the network, wireless is a convenience tool…

Use WPA security, harder to crack than WEP…

Change the routers password…

implement a strong password/passphrase not in the dictionary such as "A1rborne A!! The Way * @#$" This is not easy to guess or brute force attack, and yet I can easily remember it..

Disable your SSID from even broadcasting in the first place. If it cannot be seen by the average "drive by hacker," they can't hack it..Now, we use Netstumbler (http://en.wikipedia.org/wiki/NetStumbler) to sniff out networks, so really determined folks will still find it, but this is a good thing to do..

Implement MAC address filtering, so that only the MAC addresses of your network cards, are allowed to access the network..(http://en.wikipedia.org/wiki/MAC_filtering)

Activate the PC filtering option for internet access thru the policy section of most routers, and perhaps limit the time/hours the network is active..Do you really need to broadcast your wireless while away at work during the day and while sleeping? We do this for our business networks…No reason to let someone sit in their car in the parking lot and collect packets as they float by…

If possible, reduce the transmission power of the router to prevent excessive leakage..

Now, I realize that these measures might be more than you are comfortable implementing on your own, so hire a good IT guy/company to do this if necessary…Also, you must monitor your network as well with the built in logging features…

Good luck…

Sincerely,

Randall C Fullerton-Certified e-PRO Trainer

RC Fullerton
Managing Partner
Peritus IT Solutions
"Small Business & Real Estate Technology Specialists"
704-605-4950
www.peritusit.com