Tag Archives: wifi

Security

The Cardinal Sin of Wireless Networking

As someone who travels frequently, I often find myself logging onto wireless networks provided by cafes, pubs and hotels.  It never ceases to amaze me the high number of unsecured networks I encounter.

In many small businesses the owner or manager will have a small office & internet connection from where they run the administration side of the business.  Often as a courtesy, the WiFi password for the internet connection is shared publicly so that patrons can browse the internet whilst enjoying the services of the business.

What the owner may not realise is that they now may be sharing all of their private data on their PC, across the wireless network.  What does this mean?  In simple terms – one can easily grab a copy of your private data, be it your latest set of financial accounts, supplier/client contact details or family photos –  a scary thought!

wifisecure

In some cases,  business owners commit what we call “The Cardinal Sin of Wireless Networking” –  This is the removing of all password security from the wireless connection so that public users no longer have to enter a password to connect to the wireless connection.  In this instance, the net effect is much more than just an easier log-on experience for the end user.  What results is un-encrypted WiFi communication between all wireless users on the network.

Now this is where things really get hairy!  As a user of this un-encrypted wireless network, your data is now easy picking.  All information entered on the wireless network can be picked up by would-be digital eavesdroppers – One could easily view your internet activity, obtain your website & email passwords, credit card numbers and online banking login codes.

So, how should a business offer guest WiFi services?

  1. Ensure guest internet traffic is separated from normal network traffic (usually via VLAN). This ensures that guests do not have access to your network resources and files.
  2. Ensure that guest internet services runs website content filtering so that illegal or in-appropriate websites are blocked. In most cases, your Internet Service Provider & law enforcement will hold you, the business owner, responsible for what happens on your network
  3. Place a complex security password on guest connections – preferably WPA2-PSK
  4. Restrict the guest network connection speeds to a speed that offers reasonable access without affecting the network performance available to your employees

If you require assistance in securing your WiFi connections – feel free to contact us.