Top 15 Business Wi-Fi Tips
1. Change the SSID
This one might not sound like a big deal, but it can make it a lot harder for a would-be attacker to gain access to your network. The default SSID that comes with your router gives away what type of router you’re using. A hacker can use that information to try specific exploits that target your router.
Change the name of your network to something that doesn’t specifically identify your business or your router.
2. Change the Admin Username and Password
Again, you need to distance yourself from the defaults. They make it too easy for an attacker to know what they’re working with and carry out an attack. Change both the admin username and the admin password.
“Admin” is probably one of the most common usernames that hackers test passwords against because too many people don’t change defaults. As always, be sure to use a secure passphrase when you do make the change.
3. Use WPA2 Enterprise With AES
WPA2 Enterprise provides the best possible Wi-Fi security, and AES is the strongest Wi-Fi encryption standard. They’re both available on most routers. WPA2 Enterprise makes use of a RADIUS server for authentication. The RADIUS server stores user credentials, allowing each user has their own login and making it more difficult for the network to be compromised. Enterprise uses unique keys as well that can be revoked at any time.
If you think it’s not worth setting up an enterprise configuration, WPA2 Personal can work too. In any case, you need to be using WPA2 with AES encryption. Do not use TKIP or a mix of TKIP with AES.
4. Secure Your Clients
If you opted for WPA2 Enterprise, you can go a step further in securing your network. “Evil twin” attacks (Read more...)
*** This is a Security Bloggers Network syndicated blog from InfoSec Resources authored by Nick Congleton. Read the original post at: http://feedproxy.google.com/~r/infosecResources/~3/CtItsCzdOHU/