Archive for routers

So, You Got A New Wireless Router For Christmas? Here’s Some Tips That Can Help You..

Posted in Tips with tags on December 30, 2014 by itnerd

So, Santa delivered a brand new wireless router to you. That’s great and congratulations. The question is, how do you set it up to get the best performance out of it along with making it secure? Here’s a few tips that you might find useful. Note that these tips can be applied to any brand of router:

  1. Change the router name: The SSID or the name of the wireless router should be changed. Why? If you leave it to the default name, you give those who want to break into your wireless router and steal Internet access a head start to hacking you by tipping off what brand of router it is. It doesn’t matter what you name it, just pick a name that is unique. By the way, don’t bother hiding the SSID. I’ve proven to numerous people over the years that hiding it really doesn’t make it any more secure as I can find it easily using any number of tools to do so.
  2. Use WPA2 for wireless security: Another thing you need to do is to enable wireless security so that it keeps your wireless network secure. There’s two standards. WEP which is incredibly insecure, and WPA2 which is far more secure. Never use the former as any 12 year old could hack into your network if you do. And please pick a complex password that has upper and lower case letters as well as special characters and numbers (example don’t use “password” but use “P@$$w0rd” instead as the latter is more secure).
  3. Change the admin password: If you leave the default admin password in place, then anyone if they try hard enough can log into your wireless router and do anything from lock you out of it to change settings so that they can use it for their own less than noble purposes. This is another place where you’d want to pick a complex password.
  4. Disable or secure remote router access: For most users, there is no need to be able to access and configure the router from outside your network. Thus it would very wise to disable the ability to be able to log into and configure the router from outside your network. Now for yours truly who travels frequently and sometimes gets panic calls from my significant other asking me to “fix the Internet”, it can be handy to have this ability. But I enable all sorts of security such as complex password, plus I enable encryption so that it lessens the chance that someone could cause havoc.
  5. Enable simultaneous 2.4 Ghz and 5 Ghz support and make sure that the right devices use the right bands: Most if not all routers made in the last year or so support simultaneous 2.4 Ghz and 5 Ghz transmission on separate networks. You should not only enable this if it isn’t already enabled, but you should also make sure that the devices that only support 802.11 b/g only use the 2.4 Ghz band and devices that support 802.11 a/n/ac only use the 5 Ghz band. Plus you should set the 2.4 Ghz band to only connect to 802.11 b/g and the 5 Ghz band to connect only to 802.11 a/n/ac devices. The reason is that by doing so, you ensure that the slower devices don’t slow down the faster ones since they are completely seperated.
  6. Update the router’s firmware: When you take the router out of the box, the firmware on it will likely be out of date. By updating the firmware, you get performance tweaks and security enhancements which makes it very much worth it to spend the 10 minutes or less to update the firmware.
  7. Download and Save the configuration of the router: Now that you have everything set up perfectly, you should leverage a feature that most users know exists in most if not all routers which is the ability to download the configuration and save it on your computer or a thumb drive. The reason why you’d want to do this is that if you ever have to reset the router back to factory defaults (a common troubleshooting step) or you need to replace a defective one with working one of the same brand and model, you can quickly get up and running again by uploading this file to the router and let the router configure itself in seconds.

Do you have any tips or tricks that would help an owner of a new router? Please post a comment and share your thoughts.

Leave a comment »

New Threat Targets Routers And Dumb People

Posted in Security, Tips with tags , on March 24, 2009 by itnerd

A new bit of nasty code called “psyb0t” is making the rounds today. It’s a piece of marware that is backed up by a rather large botnet that is designed to attack Linux-embedded routers. Here’s the kicker, it then tries to take over routers that the default user name and password has not yet been changed, or was changed to something too simple.

In other words, it targets users who are too dumb to have a reasonably secure password on their router.

I’ve reported on an explot like this previously, and the advice that I had then still applies now. So if you haven’t already changed the password on your router (or hopped through a few extra hoops if you’ve got WiFi), now would be a good time to do that.

Otherwise, you’ll join the ranks of dumb people.

1 Comment »

Your Router May Not Be Safe From Hackers

Posted in Security, Tips with tags , on April 8, 2008 by itnerd

If you’ve got a router on your home computer network made by D-Link or Linksys among others, then you need to read this story where researcher Dan Kaminsky (who will give the details of his hack tomorrow at the RSA Conference) has discovered a way to take over a router using a specially crafted web page. Here’s how PC World describes the hack:

“The victim would visit a malicious Web page that would use JavaScript code to trick the browser into making changes on the Web-based router configuration page. The JavaScript could tell the router to let the bad guys remotely administer the device, or it could force the router to download new firmware, again putting the router under the hacker’s control.”

This hack relies on the fact that the administrative passwords are rarely changed on most consumer routers by the people who own them, or are easily guessed. So the best way to protect yourself from this type of hack is to do two things:

  1. Disable remote administration: This feature allows you to remotely administer the router from OUTSIDE your network. That’s a major security risk. Most routers have this feature turned off by default and you should ensure it stays that way.
  2. Change the administrative password of the router when you install it: I can’t stress this enough. You wouldn’t leave your front door open on your home. Why do the same with your router? Pick a password that is not easily guessed or has special characters in it (for example, you could pick the word “password” but type “pa$$word” instead). While you’re at it, you should do the same thing for any wireless access you may have so that you stop the bad guys from using your Internet connection behind your back.

If you’re not sure how to do either of those items, consult your manual or check the support section of the company who makes your router. They often have “how to” guides that can be of assistance.

Leave a comment »