What are your favorite tools for dealing with security when it comes to wireless networks and why?
Well up to now there have not been too many options. At home I turn everything on that I have. I run WEP and I also use MAC Address filtering. It wouldn't keep out a determined attacker but I think it keeps out the neighbors. At some point I'll upgrade my home stuff to IEEE802.11g and finding cards with WPA will be a priority.
The simplest solution for business use is to keep the access points on separate wiring and run the connection through a firewall to a VPN server. It's a pain. You can see why people are itching to get the new full grade security solution so that they can safely put the access point where wiring already exists.
Despite the insecurities of 802.11, the number of wireless networks is growing rapidly. What should be done in order to raise awareness of wireless security problems?
There are really two classes of problem here. The first is in corporations where the IT staff is fully aware of security risks and take careful protection measures but employees drive a dump truck through the protections by installing an unauthorized wireless LAN. This can be a particular problem in companies that have lots of small branches and offices. All it takes is a proactive manager to go and buy an access point at the local computer store and connect it where his PC used to plug in and you have a breach. Furthermore it's one that is almost impossible for the IT department to detect. The solution here is education by the corporation - education not just rules. People tend to ignore rules because they think the IT departments are "control freaks". But if they understand the dangers they will cooperate.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.