Like this CertiGuide? Get it in PDF format!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+
 9  Chapter 2:  Communication Security (Domain 2.0; 20%)
      9  2.6  Wireless
           9  2.6.4  Vulnerabilities

Previous Topic/Section
Unauthorized Access
Previous Page
Pages in Current Topic/Section
1
Next Page
 802.11a
Next Topic/Section

More 802.11b Lockdown Tips

While changing defaults such as the SSID, change the password on access points.

Turn off DHCP and assign static addresses, if possible.

Make sure hardware has upgradeable firmware.

Consider configurations that are “closed”. Some vendors offer non-open options, such as turbo mode, if not, use an access point that does not broadcast an SSID.

The coverage on wireless security to this point has been a discussion on locking down the wireless LAN. 802.11b is also used for public access. Some sites are ad hoc, meaning that people who don’t mind sharing a bit of their broadband access run them. One site created to help find these sites is http://www.freeap.com. The other approach is offered by firms such as Boingo259 Wireless who offers paid subscriptions to ‘hot spots’. Project Rainbow260 is sure to make commercial hot spots very commonplace. Since public access is the point, WEP would not be running. Be sure to install a personal firewall261 before joining a hot spot. If your business can take advantage of any ad hoc or commercial hot spot, remember to access any web page containing internal corporate data via https, instead of http. One final option in the wireless LAN that is worth exploring is 802.11a, seen next.

Figure 26: Any computer with a USB port can become a wireless snooping point just by using a small USB based receiver

 

 __________________

259. http://www.boingo.com

260. http://zdnet.com.com/2100-1105-944732.html

261. http://www.theguardianangel.com/firewall_comparison.htm

Previous Topic/Section
Unauthorized Access
Previous Page
Pages in Current Topic/Section
1
Next Page
 802.11a
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $


Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.