Wireless for law office

My nephew wants to set up a wireless network for his law office.
Here's the situation. He wants the the lowest cost (or within reason)
to hook 4 people up to a DSL line. His law office is in an old house.
2 Computers on floor 1 and 2 computers on floor 2. They won't be
sharing any files. One computer is a laptop and is in the same room as
the router will be in.

The guy at Best Buy said the WRT54G had better range then the B model
(its $30 more). Is this true? It would be worth a few extra $$ here
and there if it ensures no dropped line. I also figured the laptop
could probably do with one of those short USB plug ins since its in
the same room as the router. I may also go with the regular USB plug
ins for the desktops for ease of installation (if its just as good
range wise as the PCI card). Can someone suggest some Linksys
equipment for me. I'm familiar with Linksys and like to stay with it.

I thought I'd change the password and lan name and add encryption for
security. Hope that's enough. TIA Richie

I can't make any Linksys recommendations, but I suggest you think seriously
about the security aspect of this. I'm sure a bunch of lawyers will have no
trouble understanding the implications of broadcasting client data into the
parking lot.

If I were you, I would make one PC a VPN access server and wire it to the
router. If you choose not to use VPN, WEP will not be good enough, not by a
long shot. You need WPA, preferably with authentication and TKIP, to prevent
serious attempts to hack into the system. That would still require using one
of the PCs (or adding another) to act as an authentication server. You
should run wireless firewalls on all clients, keep antivirus patterns up to
date, and make sure the router has a WAN firewall enabled and configured.

If you go for WPA, I recommend spending the extra $30 for 802.11g. Not
because it's faster, or has better range, but because implementation of WPA
is lagging on 802.11b, and future 802.11i encryption enhancements (like AES)
will probably not be readily available on 802.11b.

"Bilbo_Baggins" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) om...
> My nephew wants to set up a wireless network for his law office.
> Here's the situation. He wants the the lowest cost (or within reason)
> to hook 4 people up to a DSL line. His law office is in an old house.
> 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> sharing any files. One computer is a laptop and is in the same room as
> the router will be in.
>
> The guy at Best Buy said the WRT54G had better range then the B model
> (its $30 more). Is this true? It would be worth a few extra $$ here
> and there if it ensures no dropped line. I also figured the laptop
> could probably do with one of those short USB plug ins since its in
> the same room as the router. I may also go with the regular USB plug
> ins for the desktops for ease of installation (if its just as good
> range wise as the PCI card). Can someone suggest some Linksys
> equipment for me. I'm familiar with Linksys and like to stay with it.
>
> I thought I'd change the password and lan name and add encryption for
> security. Hope that's enough. TIA Richie

Bilbo_Baggins <(E-Mail Removed)> wrote:
> The guy at Best Buy said the WRT54G had better range then the B model
> (its $30 more). Is this true? It would be worth a few extra $$ here
> and there if it ensures no dropped line. I also figured the laptop
> could probably do with one of those short USB plug ins since its in
> the same room as the router.

Why not use a PCMCIA card device? Less hassles than USB.

> I thought I'd change the password and lan name and add encryption for
> security. Hope that's enough.

I don't think it's enough at all. There are probably serious liability
issues to think about in the event of disclosure of confidential
information. I don't think it's a great idea for a law firm to use wireless
unless they have some hardcore VPN software on all the clients and no
traffic is allowed to travel any other way.

miguel
--
Hundreds of travel photos from around the world: http://travel.u.nu/

Equipment with the "G" standard normally has better range, but extending
your range to the building or car-park over the road may not be a benefit!
Later ("G") equipment normally comes with WPA security, which is considered
stronger than WEP, although I've been convinced (excellent book:
www.duntemann.com/wifi) that WEP is enough to keep out all but the most
dedicated and patient hacker. In a legal practice however, it's conceivable
that you might attract such attention. Unless you really know what you're
doing, it's best to get someone in, I'd have thought.

--
######################
## PH, London ##
######################


Bilbo_Baggins wrote:
> My nephew wants to set up a wireless network for his law office.
> Here's the situation. He wants the the lowest cost (or within reason)
> to hook 4 people up to a DSL line. His law office is in an old house.
> 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> sharing any files. One computer is a laptop and is in the same room as
> the router will be in.
>
> The guy at Best Buy said the WRT54G had better range then the B model
> (its $30 more). Is this true? It would be worth a few extra $$ here
> and there if it ensures no dropped line. I also figured the laptop
> could probably do with one of those short USB plug ins since its in
> the same room as the router. I may also go with the regular USB plug
> ins for the desktops for ease of installation (if its just as good
> range wise as the PCI card). Can someone suggest some Linksys
> equipment for me. I'm familiar with Linksys and like to stay with it.
>
> I thought I'd change the password and lan name and add encryption for
> security. Hope that's enough. TIA Richie

Bilbo,

You might seriously rethink your project. In an old house, CAT5 wire
can be ran to all the rooms by a good alarm technician in about 4
hours. Your router can be adapted to have a separate wireless signal
for roving laptops without any contact with your wired network.

In my opinion, as suggested by others, any legal activity is too
vulnerable to even hint that clients are being discussed over a
wireless network.

--Ray

(E-Mail Removed) (Bilbo_Baggins) wrote in message news:<(E-Mail Removed). com>...
> My nephew wants to set up a wireless network for his law office.
> Here's the situation. He wants the the lowest cost (or within reason)
> to hook 4 people up to a DSL line. His law office is in an old house.
> 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> sharing any files. One computer is a laptop and is in the same room as
> the router will be in.
>
> The guy at Best Buy said the WRT54G had better range then the B model
> (its $30 more). Is this true? It would be worth a few extra $$ here
> and there if it ensures no dropped line. I also figured the laptop
> could probably do with one of those short USB plug ins since its in
> the same room as the router. I may also go with the regular USB plug
> ins for the desktops for ease of installation (if its just as good
> range wise as the PCI card). Can someone suggest some Linksys
> equipment for me. I'm familiar with Linksys and like to stay with it.
>
> I thought I'd change the password and lan name and add encryption for
> security. Hope that's enough. TIA Richie

I wouldn't listen to all of the concerns about security. Yes, if someone
was really focused on hacking into the network, and had the right equipment
and a lot of knowledge, wireless is vulnerable. How likely is that?

The key is to make sure that you set up all of the security settings on the
equipment, and don't just run it straight out of the box. In particular,
you need to enable encription. I would also limit the computers that can
connect to the network my listing the allowed MAC addresses.

Good luck,
Mike Schumann

"Bilbo_Baggins" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) om...
> My nephew wants to set up a wireless network for his law office.
> Here's the situation. He wants the the lowest cost (or within reason)
> to hook 4 people up to a DSL line. His law office is in an old house.
> 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> sharing any files. One computer is a laptop and is in the same room as
> the router will be in.
>
> The guy at Best Buy said the WRT54G had better range then the B model
> (its $30 more). Is this true? It would be worth a few extra $$ here
> and there if it ensures no dropped line. I also figured the laptop
> could probably do with one of those short USB plug ins since its in
> the same room as the router. I may also go with the regular USB plug
> ins for the desktops for ease of installation (if its just as good
> range wise as the PCI card). Can someone suggest some Linksys
> equipment for me. I'm familiar with Linksys and like to stay with it.
>
> I thought I'd change the password and lan name and add encryption for
> security. Hope that's enough. TIA Richie

Well I discussed it with them and they will accept the risks. I
personally don't see why hacking a law office is a high target ....
like a business with credit cards. Anyway how about choice of
routers. I was thinking of the D-Link DI-624 for $120 its got WPA,
MAC address filtering, broadcast can be turned off, and I hear its got
good range. It has a favorable opinion reviews on cnet 88% good 12%
bad. They have 24 hour support. What do you think?

I agree that wifi security concerns can be overstated. But regardless of
how you assess the actual risk, there is a serious liability issue. I
encourage your nephew to think carefully about it. It's one thing to take a
calculated risk with your own home network. It is another thing entirely to
take less than the strongest possible security measures with other people's
private information.

It's at least plausible that files might be specifically targeted by someone
willing to pay a PI whatever it takes. Even if you reject this scenario,
what effect would it have on business if an unsatisfied client or rival firm
simply spread a rumor that information at your place of business is not well
protected? You can dismiss a rumor as hype, but it won't make it go away -
especially if it appears to be supported by articles about how easily wifi
security can be cracked.

"Mike Schumann" <mike-(E-Mail Removed)> wrote in message
news:3fdfc60d$0$1095$(E-Mail Removed).. .
> I wouldn't listen to all of the concerns about security. Yes, if someone
> was really focused on hacking into the network, and had the right
equipment
> and a lot of knowledge, wireless is vulnerable. How likely is that?
>
> The key is to make sure that you set up all of the security settings on
the
> equipment, and don't just run it straight out of the box. In particular,
> you need to enable encription. I would also limit the computers that can
> connect to the network my listing the allowed MAC addresses.
>
> Good luck,
> Mike Schumann
>
> "Bilbo_Baggins" <(E-Mail Removed)> wrote in message
> news:(E-Mail Removed) om...
> > My nephew wants to set up a wireless network for his law office.
> > Here's the situation. He wants the the lowest cost (or within reason)
> > to hook 4 people up to a DSL line. His law office is in an old house.
> > 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> > sharing any files. One computer is a laptop and is in the same room as
> > the router will be in.
> >
> > The guy at Best Buy said the WRT54G had better range then the B model
> > (its $30 more). Is this true? It would be worth a few extra $$ here
> > and there if it ensures no dropped line. I also figured the laptop
> > could probably do with one of those short USB plug ins since its in
> > the same room as the router. I may also go with the regular USB plug
> > ins for the desktops for ease of installation (if its just as good
> > range wise as the PCI card). Can someone suggest some Linksys
> > equipment for me. I'm familiar with Linksys and like to stay with it.
> >
> > I thought I'd change the password and lan name and add encryption for
> > security. Hope that's enough. TIA Richie
>
>

---> My reply to what gary wrote 12/16/2003 10:56:10 PM

The security of a system needs to be based on the risk assessment of that
system. While at home I have taken precautions including careful placement of
my wireless equipment to minimise the footprint, as many security settings
that my system would allow and changed everything from the default settings.

When you look at the risk, first living way off the main path, in a country
setting with visibility of the only access it limits anyone getting close
enough to even find the signal.

I keep nothing of critical nature on my home computers and physically shut the
system down when not being used.

To me the risk assessment says standard wireless equipment makes sense.

Now in the office? No, I added a few extra LAN drops to make it more assessable
and keep it all wired. Typical precautions and monitoring are incorporated.

The bottom line is where there is critical information, a issue of liability
or the potential of damaging (from a business stand point) information access
then very serious thought needs to go into a system, strong safeguards and
informed decisions really need to be implemented.

----------------------- Original Message ------------------------------


I agree that wifi security concerns can be overstated. But regardless of
how you assess the actual risk, there is a serious liability issue. I
encourage your nephew to think carefully about it. It's one thing to take a
calculated risk with your own home network. It is another thing entirely to
take less than the strongest possible security measures with other people's
private information.

It's at least plausible that files might be specifically targeted by someone
willing to pay a PI whatever it takes. Even if you reject this scenario,
what effect would it have on business if an unsatisfied client or rival firm
simply spread a rumor that information at your place of business is not well
protected? You can dismiss a rumor as hype, but it won't make it go away -
especially if it appears to be supported by articles about how easily wifi
security can be cracked.

"Mike Schumann" <mike-(E-Mail Removed)> wrote in message
news:3fdfc60d$0$1095$(E-Mail Removed).. .
> I wouldn't listen to all of the concerns about security. Yes, if someone
> was really focused on hacking into the network, and had the right
equipment
> and a lot of knowledge, wireless is vulnerable. How likely is that?
>
> The key is to make sure that you set up all of the security settings on
the
> equipment, and don't just run it straight out of the box. In particular,
> you need to enable encription. I would also limit the computers that can
> connect to the network my listing the allowed MAC addresses.
>
> Good luck,
> Mike Schumann
>
> "Bilbo_Baggins" <(E-Mail Removed)> wrote in message
> news:(E-Mail Removed) om...
> > My nephew wants to set up a wireless network for his law office.
> > Here's the situation. He wants the the lowest cost (or within reason)
> > to hook 4 people up to a DSL line. His law office is in an old house.
> > 2 Computers on floor 1 and 2 computers on floor 2. They won't be
> > sharing any files. One computer is a laptop and is in the same room as
> > the router will be in.
> >
> > The guy at Best Buy said the WRT54G had better range then the B model
> > (its $30 more). Is this true? It would be worth a few extra $$ here
> > and there if it ensures no dropped line. I also figured the laptop
> > could probably do with one of those short USB plug ins since its in
> > the same room as the router. I may also go with the regular USB plug
> > ins for the desktops for ease of installation (if its just as good
> > range wise as the PCI card). Can someone suggest some Linksys
> > equipment for me. I'm familiar with Linksys and like to stay with it.
> >
> > I thought I'd change the password and lan name and add encryption for
> > security. Hope that's enough. TIA Richie
>
>



[Some portions of this message may have been removed]

--------------------- Original Message Ends ------------------------

Bilbo_Baggins <(E-Mail Removed)> wrote:
> Well I discussed it with them and they will accept the risks. I
> personally don't see why hacking a law office is a high target ....
> like a business with credit cards.

The higher the stakes, and the less scrupulous the people on the other side
of the table (or courtroom), the more of a target it is.

If they do small-time criminal defense, it probably doesn't matter. Anything
civil, it sure does.

I sure as heck wouldn't use a law firm that was running wifi.

miguel
--
Hundreds of travel photos from around the world: http://travel.u.nu/