I have take a quite a few courses over last two semesters on computer and network security. even a class which helped me understand privacy and legal issues to an extent. all this has given me insight to the security process and loopholes. Of course this has made me from being a cautious user to a over cautious one. I look twice at the link of the websites i open, check three times the kink of my bank site before entering user name and password. earlier my password used to be some thing like 8 -10 characters now more than 15 characters long.
Another thing learned any encryption or security protection can be broken, only difference being the time taken from less tan 30 seconds to 30 years. Any way i would not like to make others paranoid but every one should be concerned. the first thing i will discuss is wi-fi connection. you can find plenty of article online how to make work and work securely so i wont talk about that but point you few of the links.
To mount a attack on 128bit encrypted wireless connection you need to have considerable experience acumen and resources. Well if your connection is unsecured (NOT having even the widely criticized WEP ) then it would be like a open door, even the next door kid has full access to it. but using WEP protection is like a door with a easy to open lock. Cryptanalyst's have been able to break the really bad implementations in less than 30 seconds. few of the Biggest mistakes people make while implementing systems are
Another thing learned any encryption or security protection can be broken, only difference being the time taken from less tan 30 seconds to 30 years. Any way i would not like to make others paranoid but every one should be concerned. the first thing i will discuss is wi-fi connection. you can find plenty of article online how to make work and work securely so i wont talk about that but point you few of the links.
To mount a attack on 128bit encrypted wireless connection you need to have considerable experience acumen and resources. Well if your connection is unsecured (NOT having even the widely criticized WEP ) then it would be like a open door, even the next door kid has full access to it. but using WEP protection is like a door with a easy to open lock. Cryptanalyst's have been able to break the really bad implementations in less than 30 seconds. few of the Biggest mistakes people make while implementing systems are
- leaving the admin password blank or to default
- for the wireless router
- for your computer
- NOT using any protection -- really really stupid
- having key of dictionary word - really stupid
- even if its hard to spell for humans automated computer programs can break them in few minutes using Brute Force attack
- having a key of few letters(less than 8) - stupid
- NOT ever changing their WEP or WPA key. - Not a good Idea
- change at least once in 3 months as one of the fundamentals of breaking any encryption is the more data you have using a single encryption key the more easy it is to break that encryption that is the reason the military communications change key almost every day for their communication
Setting UP Wireless connection
The article give steps to set up WEP 128bit security but i would seriously advice to use any higher version of WPA if available. if not then make sure u have pretty long key the best way to create a long key to use a long sentence with few number in front or end as an example.
"289284whathappnesinvegasstaysinnewyork" ---(DONT USE THIS JUST EXAMPLE)
Good Article
Really nice article also talks about setting up a personal honeypot(will talk about what this is in next post). but an advice, i would say don't even think of doing it can act a back fire a blackhat hacker with access to you honeypot can mount a attack on some else and you can beheld liable.
The article give steps to set up WEP 128bit security but i would seriously advice to use any higher version of WPA if available. if not then make sure u have pretty long key the best way to create a long key to use a long sentence with few number in front or end as an example.
"289284whathappnesinvegasstaysinnewyork" ---(DONT USE THIS JUST EXAMPLE)
Good Article
Really nice article also talks about setting up a personal honeypot(will talk about what this is in next post). but an advice, i would say don't even think of doing it can act a back fire a blackhat hacker with access to you honeypot can mount a attack on some else and you can beheld liable.
No comments:
Post a Comment