WiFi

Wireless security for new notebook users

In Internet, Laptop, Security, WiFi on 16 January 2008 with 1 comment

My cousin, Narissa, just got a laptop for Christmas and asked me about wireless security. I figure now is a good time to revisit this because she’s probably not the only one that received a notebook for the holidays. Fortunately, she’s thinking about security; most people probably just connect to open wireless access points without a second thought. Very scary.

For wireless connectivity at home, I’ve been using a Linksys WRT54GL (hacked with DD-WRT) since July 28th, 2006. (link)

If you don’t want to use DD-WRT, make sure you’re using WPA security with a good password. I recommend Steve Gibson’s Ultra High Security Password Generator. People might scoff, but I don’t think I’m easily hackable.

When you’re out, you’ll need to either pay for a connection that’s available or find a free hotspot. You can also buy a Wi-Fi card from a provider, like Verizon, but you probably don’t rely on your laptop that much to justify the cost.

I stay secure wirelessly with the power of DD-WRT, PPTP, and VPN. That means that no prying eyes can see what I’m doing.

If that’s too difficult to grasp (which it is for me, even though I got it to work), HotSpotVPN or PublicVPN probably would be best suited for you. (via GRC Security Now! Podcast #10) Those aren’t free, but fairly inexpensive.

Also, prevent getting a branded notebook bag which screams, “I’m new and important – steal me!” I bought a SleeveCase from Waterfield Designs (SFBags.com), which then goes in my inconspicuous Jansport backpack or my Jack Bauer messenger bag.

Timbuk2 also has a wide variety of notebook bags, which I’ve heard are excellent.

By the way, do you notice that laptops are called notebooks now? They run way too hot to sit on your lap for long periods of time, hence the technical name change.

Am I overly paranoid by worrying about people sniffing wireless packets? Have you thought about wireless security before reading this? Where do you buy non-branded notebook bags?

Disclaimers: I’m not affiliated with Linksys, HotSpotVPN, PublicVPN, WaterField Designs, Timbuk2, or Jansport. However, I’m using an Amazon affiliate link for the Linksys router.

Prevent packet sniffing with DD-WRT, PPTP and VPN

In Security, WiFi, Windows XP on 14 May 2007 with 1 comment

If you connect to the internet wirelessly, a firewall and antivirus software won’t prevent possibly sensitive information — transmitted from your laptop to the router — from being seen by packet sniffers. Why do you need to implement a security system like this? (My emphasis added.)

Uses of packet sniffers: “Spy on other network users and collect sensitive information such as passwords (depending on any content encryption methods which may be in use)”

The bits that fly through the air are probably unencrypted by default. In a setting where the wireless access point is wide open, your data can be transmitted in plain text.

When I bought my Linksys WRT54GL and installed DD-WRT last July, I didn’t realize I didn’t need to use Hamachi and Remote Desktop to prevent packet sniffing.

Five months before I bought my new router, Scott Hanselman wrote, “Configuring PPTP VPN with alternate Linksys Router Firmware.” Here’s some additions I’d like to offer:

My server IP is the same as my router.
Dynamic DNS through DynDNS is free!
In DD-WRT v23 SP1, you can find the PPTP Server settings under Administration > Services.
Generate a password from GRC, and see Microsoft’s Password Checker.
I manually selected MS-CHAP v2. It seems secure enough to encrypt all my packets.

Today, I’m at the Arcadia Public Library working on an essay and studying for finals, in addition to testing PPTP VPN for the first time ever. Trying to scare my mom, I printed to my home printer. I browsed my home computer’s shared folders. Lastly, I was sniffing packets with Sniphere. Filtering my assigned IP address at the library, all of the packets showed a bunch of gibberish. Yes!

Unlike the Hamachi solution, there shouldn’t be any downtime because my router is always on. Also, I don’t need to keep my computer on, unless I need file access. I think this means I don’t need Hamachi anymore.

Besides buying the DD-WRT-supported router, which I needed anyway, this setup was free!

Linksys WRT54GL and DD-WRT v23

In Networking, WiFi on 28 July 2006 with no comments

Today, I was finally able to buy a new wireless router. The DD-WRT wiki recommended the Buffalo WHR-G54S as the cheapest and best price/performance 100% compatible wireless router. However, since Mwave only keeps the major brands in stock at will call, I went with the Linksys WRT54GL.

I could’ve went the safe route and kept the default Linksys firmware, but I didn’t. I felt compelled to use DD-WRT, which is free firmware for several brands and models of wireless routers. If my router will run better with it for free, why not? There’s the possibility that I could’ve turned it into a brick, but I think the chances of breaking it were slim since I had one of the supported devices.

Fortunately, everything went successfully and my new router is running DD-WRT. Dynamic DNS now works again, since my D-Link DI-614+ wasn’t supporting it anymore. (I use Remote Desktop occassionally.) OpenDNS servers are set on my router as well. So many features, so much power! (Not like I’ll use them all.)

Notes:

I have the WRT54GL v1.1.
I flashed the firmware just fine within Firefox.
To find the UTC/GMT time setting, use timeanddate.com. For Los Angeles, California, we’re on UTC -08:00/first Sun Apr – last Sun Oct.
Print the DD-WRT wiki pages to PDF, rather than keeping the instructions open in a bunch of browser tabs. (Try PDFCreator – it’s open-source software!)
I use Dynamic DNS (with DynDNS) so I can just point Remote Desktop to a subdomain with gotdns.com. Since my DSL service (AT&T Yahoo) is on a Dynamic IP, if that ever changes, I don’t need to check it.
I’ll use Hamachi with Remote Desktop if I’m at a Wi-Fi hotspot. If I’m at home, I just use Remote Desktop to connect directly to my main PC without going through Hamachi.

Goodbye, old wireless router

In Hardware, WiFi on 17 July 2006 with no comments

I bought some new speakers to replace the speakers that died on me the other day. Fortunately, I had the patience to just drive a bit farther to Mwave to get my new speakers at a lower cost.

When I went to plug in the cord to the power strip, I knocked the power adapter to my D-Link DI-614+ wireless router out of its socket. After replugging the router back in, I looked at it only to find that none of the lights on the router were lit.

No way.

I unplugged it again, let it sit a few minutes, then replugged it back in. Nothing.

*silence*

In a matter of three days, I had lost my speakers and my wireless router. You know, if I’m going to lose things, I’d wish the loss would be spread out over a period of time. Good grief…grief indeed.

*sobs*

Free WiFi at Arcadia Public Library

In Asides, WiFi on 21 November 2005 with no comments

Whoa, I just found out that the Arcadia Public Library has free WiFi. I don’t know how long they’ve had it there, but it doesn’t matter – that’s awesome! (see the “What’s New at the Library” section)

← Before

← Back to Home