[ILUG] Ripwave, Wireless router and security?

[John Gay]

On Monday 12 September 2005 09:28, ilug-request at linux.ie wrote:
> > Well, I've got a Ripwave modem for internet access until Irish
> > Broadband can
> > setup my 2M link, which is then plugged into a U.S.Robotics Wireless
> > router
> > which is then networked to my Linux box, my Daughters old WindowsXP
> > box and
> > providing a wireless link for her new laptop.
>
> Your duaghter gets a new laptop, and you're getting a shiny dual
> Opteron, and from Peats at that? Lottery, dead relative, or new job (in
> declining order of lucrativity :-)  )
>
Sold a house and took the money (-;

> > My question is, how worried should I be about security?
>
> Somewhat.
>
Thought so.

> > The Ripwave offers nothing concerning password setup
>
> The Ripwave as such is not a problem.
>
Good. I guess that goes for the 2M connection in the future?

> > and I haven't dug too deeply into U.S.R. docs about this.
>
> This is where you need to do some configuration.
>
> > On the WindowsXP box I've run Ad-Aware and clamAV
>
> Always a good idea on Windows.
>
> > Norton AV software since it ran out, but I haven't run anything yet on
> > the
> > laptop.
>
> If it's also running XP, also install Ad Aware, and maybe SpyBot Search
> and Destroy, and some anti virus - ClamAV or AVG Free.
>
Will, when I can get permission to install (-;

> > I am thinking at the very least I should setup some kind of password
> > for the
> > wireless router to keep the casual user from strolling near the house
> > and
> > surfing on my broadband
>
> Enable WEP or preferably WPA on the router. Be aware that WEP is now
> completely insecure against the determined attacker, but it still
> provides protection against casual attackers. You could also restrict
> access to your router by MAC address. Again, not going to stop the
> determined attacker, but it does provide yet another layer of
> protection against casual attackers.
>
So, I've enabled WPA with a passphrase. I imagine I'll have to set-up the 
laptop with the same settings?

> > and possibly peeking inside our PC's when they're on.
>
> Do you run anything on your PCs which lets people "peek inside" them?
>
Yes, I've installed small webcams in them to keep an eye out for gremlins (-;

No, I just don't like the idea of people poking around in our hard drives.

> > But what about attacks from the Internet side from IB?
>
> Unless you have set up some kind of port forwarding on the U.S.R.
> router your internal systems should be safe from internet attack, as
> they are not reachable from the world. Mind you, it has not been
> unknown for such little router devices to have e.g. configuration
> interfaces visible to the world via some oddball port. Googling for
> your particular device would be a good idea.
>
Nice to know. So mainly I need to watchout for nasties attached to E-Mails and 
other downloads then.

> > My previous setup used a Smoothwall box for Internet access which
> > provided my
> > peace of mind. Now I'm not so sure?
>
> Well, you're now using the U.S.R. box in place of the smoothwall box.
> Same principles apply. I'm sure you could also use the Smoothwall box
> with the Ripwave device, and use the U.S.R. router only to do the
> wireless part, if you're more comfortable with the Smoothwall box.
>
Just wasn't too sure about the security of these boxes. At Least with 
Smoothwall, I knew that they were linux boxes configured to keep people out. 
Hardwares not a transparent and I've never fully trusted black-box security.


Thanks for the peace of mind. Now my system is a little more secure.

Cheers,

	John Gay