Broadcasting SSID or not?????

Hi everyone,

I have D-Link DI-624+ wireless router which my flatmate connects to using a
D-Link DWL-650+ PCMCIA card. I gather that the general advice is to set the
router NOT broadcast the SSID, however if I do switch off the SSID broadcast
then, my flatmate cannot get an internet connection.

I'm not too worried about security, as I am using MAC address filtering amd
256bit WEP, however I am interested to hear if anyone else has experienced
similarly, and how, if at all, you solved the problem.

Using firmware 1.18 for the router, and driver version 3.07 for the 650+.

TIA

Piers James <nospan-(E-Mail Removed)-nospam> wrote:
> Hi everyone,
>
> I have D-Link DI-624+ wireless router which my flatmate connects to using a
> D-Link DWL-650+ PCMCIA card. I gather that the general advice is to set the
> router NOT broadcast the SSID, however if I do switch off the SSID broadcast
> then, my flatmate cannot get an internet connection.
>
> I'm not too worried about security, as I am using MAC address filtering amd
> 256bit WEP, however I am interested to hear if anyone else has experienced
> similarly, and how, if at all, you solved the problem.
>

256bit WEP?
I'm not aware of 256 bit WEP.

Anyway, SSID broadcast turning off is pointless if you've got WEP enabled.
Anyone with enough clue to crack WEP will not be deterred by
lack of SSID.

Ian Stirling <(E-Mail Removed)> wrote in
news:esBlc.37208$(E-Mail Removed):

> Piers James <nospan-(E-Mail Removed)-nospam> wrote:

>> ... the general
>> advice is to set the router NOT broadcast the SSID, however if I
>> do switch off the SSID broadcast then, my flatmate cannot get an
>> internet connection.

>> ... I am using MAC address
>> filtering amd 256bit WEP, however I am interested to hear if

>
> 256bit WEP?
> I'm not aware of 256 bit WEP.
>
> Anyway, SSID broadcast turning off is pointless if you've got WEP

1. With WEP + MAC Access Control you're probably secure enough

2. Not many manufactuers (D-Link is one) implement 256-bit WEP, so this
gives a further level of security since it will require someone with
specifically compatible kit

3. Disabling SSID broadcast is bogus security. However, with the kit
you have it should be pretty easy to connect to a 'cloaked' network.

Using the D-Link AirPlus utility which came with the DWL-650+, set up a
Profile (find it on the Site Survey screen) which explicitly specifies
the SSID to connect to. In the 'Available Networks' section you should
see the router's network identified (the BSSID) by the router's MAC
address. You should now be able to connect to it...

Hope this helps

--

Richard Perkin
To email me, change the AT in the address below
richard.perkinATmyrealbox.com

It's is not, it isn't ain't, and it's it's, not its, if you mean it
is. If you don't, it's its. Then too, it's hers. It isn't her's.
It isn't our's either. It's ours, and likewise yours and theirs.
-- Oxford University Press, Edpress News

Richard Perkin <(E-Mail Removed)> wrote:
> Ian Stirling <(E-Mail Removed)> wrote in
> news:esBlc.37208$(E-Mail Removed):
>
>> Piers James <nospan-(E-Mail Removed)-nospam> wrote:
>
>>> ... the general
>>> advice is to set the router NOT broadcast the SSID, however if I
>>> do switch off the SSID broadcast then, my flatmate cannot get an
>>> internet connection.
>
>>> ... I am using MAC address
>>> filtering amd 256bit WEP, however I am interested to hear if
>
>>
>> 256bit WEP?
>> I'm not aware of 256 bit WEP.
>>
>> Anyway, SSID broadcast turning off is pointless if you've got WEP
>
> 1. With WEP + MAC Access Control you're probably secure enough

Both is probably pointless.
MAC can be forged much easier than WEP can be cracked.

"Ian Stirling" <(E-Mail Removed)> wrote in message
news:8ZBlc.39417$Y%(E-Mail Removed)...
> Richard Perkin <(E-Mail Removed)> wrote:
> > Ian Stirling <(E-Mail Removed)> wrote in
> > news:esBlc.37208$(E-Mail Removed):
> >
> >> Piers James <nospan-(E-Mail Removed)-nospam> wrote:
> >
> >>> ... the general
> >>> advice is to set the router NOT broadcast the SSID, however if I
> >>> do switch off the SSID broadcast then, my flatmate cannot get an
> >>> internet connection.
> >
> >>> ... I am using MAC address
> >>> filtering amd 256bit WEP, however I am interested to hear if
> >
> >>
> >> 256bit WEP?
> >> I'm not aware of 256 bit WEP.
> >>
> >> Anyway, SSID broadcast turning off is pointless if you've got WEP
> >
> > 1. With WEP + MAC Access Control you're probably secure enough
>
> Both is probably pointless.
> MAC can be forged much easier than WEP can be cracked.

But how does the forger know which MAC addresses are enabled on the router?
(I use MAC control too)

Cheers

Nick

Nick Shaw <ng_at_@nickshaw_dot_.org> wrote:
>
> "Ian Stirling" <(E-Mail Removed)> wrote in message
> news:8ZBlc.39417$Y%(E-Mail Removed)...
>> Richard Perkin <(E-Mail Removed)> wrote:
>> > Ian Stirling <(E-Mail Removed)> wrote in
>> > news:esBlc.37208$(E-Mail Removed):
>> >
>> >> Piers James <nospan-(E-Mail Removed)-nospam> wrote:
>> >
>> >>> ... the general
>> >>> advice is to set the router NOT broadcast the SSID, however if I
>> >>> do switch off the SSID broadcast then, my flatmate cannot get an
>> >>> internet connection.
>> >
>> >>> ... I am using MAC address
>> >>> filtering amd 256bit WEP, however I am interested to hear if
>> >
>> >>
>> >> 256bit WEP?
>> >> I'm not aware of 256 bit WEP.
>> >>
>> >> Anyway, SSID broadcast turning off is pointless if you've got WEP
>> >
>> > 1. With WEP + MAC Access Control you're probably secure enough
>>
>> Both is probably pointless.
>> MAC can be forged much easier than WEP can be cracked.
>
> But how does the forger know which MAC addresses are enabled on the router?
> (I use MAC control too)

By looking at the MAC header that's transmitted at the front of every
packet, and waiting until you turn off your PC.

On Tue, 4 May 2004 08:25:40 +0100 and in article <HxHlc.37225
$(E-Mail Removed)>, Nick Shaw said...
: "Ian Stirling" <(E-Mail Removed)> wrote in message
: news:8ZBlc.39417$Y%(E-Mail Removed)...
: > Richard Perkin <(E-Mail Removed)> wrote:
: > > Ian Stirling <(E-Mail Removed)> wrote in
: > > news:esBlc.37208$(E-Mail Removed):
: > >
: > >> Piers James <nospan-(E-Mail Removed)-nospam> wrote:
: > >
: > >>> ... the general
: > >>> advice is to set the router NOT broadcast the SSID, however if I
: > >>> do switch off the SSID broadcast then, my flatmate cannot get an
: > >>> internet connection.
: > >
: > >>> ... I am using MAC address
: > >>> filtering amd 256bit WEP, however I am interested to hear if
: > >
: > >>
: > >> 256bit WEP?
: > >> I'm not aware of 256 bit WEP.
: > >>
: > >> Anyway, SSID broadcast turning off is pointless if you've got WEP
: > >
: > > 1. With WEP + MAC Access Control you're probably secure enough
: >
: > Both is probably pointless.
: > MAC can be forged much easier than WEP can be cracked.
:
: But how does the forger know which MAC addresses are enabled on the router?
: (I use MAC control too)

Dude, sniffing MAC address is very very very easy. As far as I can see,
WPA is the only auth worth having when securing a wi-fi lan. WEP slown
down your network and really isn;'t that secure. Plus mac address
control is piss easy to beat.
--
chris

Thanks all for your contributions. It seems as though the SSID broadcast is
not that important then.

I would actually like to switch to WPA, since the 1.18 firmware update for
the router introduced WPA, however D-Link have yet to release anything for
the 650+, so that it can use WPA!!!

Oh and for whoever mentioned it the 256bit WEP is built in to the D-Link
software for its various devices.


"Piers James" <nospan-(E-Mail Removed)-nospam> wrote in message
newsHAlc.4252$U7.1765@newsfe1-win...
> Hi everyone,
>
> I have D-Link DI-624+ wireless router which my flatmate connects to using
a
> D-Link DWL-650+ PCMCIA card. I gather that the general advice is to set
the
> router NOT broadcast the SSID, however if I do switch off the SSID
broadcast
> then, my flatmate cannot get an internet connection.
>
> I'm not too worried about security, as I am using MAC address filtering
amd
> 256bit WEP, however I am interested to hear if anyone else has experienced
> similarly, and how, if at all, you solved the problem.
>
> Using firmware 1.18 for the router, and driver version 3.07 for the 650+.
>
> TIA
>
>
>

"Piers James" <nospan-(E-Mail Removed)-nospam> wrote in message
news:glQlc.100$3K6.19@newsfe1-win...
> Thanks all for your contributions. It seems as though the SSID broadcast
is
> not that important then.
>
> I would actually like to switch to WPA, since the 1.18 firmware update for
> the router introduced WPA, however D-Link have yet to release anything for
> the 650+, so that it can use WPA!!!

What OS are you using ?

WPA support is supported by Windows XP (though you may need to visit Windows
Update), so equipment manufacturers won't release a seperate update for
that..

If using Windows 2000 have a look at
http://www.wirelesssecuritycorp.com/...PAAssistant.do

Regards
Sunil

"Piers James" <nospan-(E-Mail Removed)-nospam> wrote in
news:glQlc.100$3K6.19@newsfe1-win:

> Thanks all for your contributions. It seems as though the SSID
> broadcast is not that important then.

The key point is that wireless networks are inherently insecure. It is
good that you have protected yours using WEP + MAC Access Control.

As others have pointed out, this does not guarantee a secure network.
What it does mean is that casual access is not easy.

Your neighbour - the most likely person to access your network by
'accident' - is probably unlikely to have the knowledge or software
products to crack your network. Those who do have the skills are likely
to go for unsecured networks, of which there are many. A home network
is a fairly boring target when there are much more interesting things
to look out for...

Run a copy of Network Stumbler on your laptop (yes, it does work with a
DWL-650+ under WinXP) and have a walk around your garden and down the
road. It could be an eye opener....

> I would actually like to switch to WPA, since the 1.18 firmware
> update for the router introduced WPA, however D-Link have yet to
> release anything for the 650+, so that it can use WPA!!!

No, but WinXP SP1 does. Have a look at:
<http://www.dslreports.com/forum/remark,9577031~mode=flat>.
If you want to use WPA, disable the D-Link AirPlus Utility and use
Wireless Zero Configuration. Do surf the net and read up on limitations
with WPA-PSK though...

Hope this helps



--

Richard Perkin
To email me, change the AT in the address below
richard.perkinATmyrealbox.com

It's is not, it isn't ain't, and it's it's, not its, if you mean it
is. If you don't, it's its. Then too, it's hers. It isn't her's.
It isn't our's either. It's ours, and likewise yours and theirs.
-- Oxford University Press, Edpress News