
	Home > Ask the Mobile Computing Experts > Mobile Security with Michael Gregg Questions & Answers > WLAN security issues

Ask The Mobile Computing Expert: Questions & Answers

EMAIL THIS

WLAN security issues

EXPERT RESPONSE FROM: Retired Expert - Kevin _Beaver

		Pose a Question

		Other Mobile Computing Categories

		Meet all Mobile Computing Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 29 March 2004
What are the main open security issues with WLANs?

The main issue is that, by default, WLAN traffic goes across the air in clear text and is easily accessible. Even when WEP encryption is enabled, a determined hacker will likely be able to break in. Other commonly overlooked security issues are broadcasting SSIDs, not changing default configurations such as SSIDs and passwords, and not patching the firmware on APs or client OS software on the WLAN clients. Don't think that not broadcasting SSIDs or using MAC address-based access controls will completely secure the WLAN. There are ways around both approaches: 1) searching for management packets using a WLAN analyzer and 2) spoofing MAC addresses. Another common problem is rogue ad hoc or P2P WLANs that do not use APs at all. Users can set up their WLAN cards and communicate directly with each other opening up the network to security issues. WLAN clients running without personal firewall software is a no-no and putting an AP behind a firewall is bad for business too. Also, don't ever administer an AP or bridge without first enabling WEP via the console port. This is a great way for the bad guys to collect critical passwords and more.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Mobile Security with Michael Gregg
	Can text messages and e-mail sent from a cell phone be intercepted by someone else?
	How can I protect my Pocket PC from attackers in hot spots?
	Implementing a hardware routing solution with an open MAC filter
	How safe is SMS?
	Protecting sensitive data from neighboring WLANs on the same channel
	Wireless security training
	Security risks at Starbucks
	Forcing updates on wireless devices
	Encrypting files on Pocket PC
	Benefits to upgrading to 802.11i

Mobile Policies and Procedures

Securing corporate data on your laptops

Podcast: FAQs on mobile policies

Developing and instituting corporate mobile device policies

Mobile security: Asserting control over mobile devices

Mobile security culture starts at the top

Detecting rogue mobile devices on your network

Mobile security policies

Defining your mobile security policy

Government regulations and mobile security policies

Mobile security policies: Why a policy is important

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Mobile Device Management and Synchronization

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy