You are currently browsing the RDPTECHS Blog weblog archives for the day 20. May 2008.
- Learn (21)
- Tips and Tricks (11)
- Troubleshooting (7)
- Website (1)
- 7. June 2008: How to Build a Computer #5
- 7. June 2008: How to Build a Computer #4
- 7. June 2008: How to Build a Computer #3
- 7. June 2008: How to Build a Computer #2
- 7. June 2008: How to Build a Computer
- 7. June 2008: Tips for Setting up a Home Wireless Network
- 7. June 2008: Tips for Setting up a Home Wireless Network
- 7. June 2008: Pictures From Phone to Computer
- 7. June 2008: Avoid Win XP Re-activation
- 7. June 2008: Password Protect Folders in XP
Archive for 20. May 2008
Part 2 Setup and Security
20. May 2008 by admin.
| By Jason Kohrs - 28.MAR.05 |
| The first installment in this two-part series of Tech Tips provided an introduction to the basic capabilities and hardware involved in wireless networking. In the final installment of this two-part series, we will look at some of the basic setup and security considerations that should be addressed. The physical installation of a wireless network may be easier than a wired network, but the more difficult part is setting up the software and security to make sure everything stays up and running without incident.
Although this Tech Tip is by no means an exhaustive resource on configuring a wireless network, it will provide information and pointers that can be applied to most typical installations. Many of these tips are general enough that they may provide some good advice for those utilizing wired networks as well. For the sake of this article, we will assume that the hardware has been successfully installed physically, and that the user is now prepared to set up and secure the system through software. Wireless devices, especially routers / access points, generally include a web-based configuration utility that allows the user to customize the hardware to meet their needs. The hardware will most likely work with minimal configuration, but to make it work so that the integrity of the network is protected may take a few more steps. In addition to the configuration interface provided with the wireless networking hardware, Microsoft has integrated a “Wireless Network Setup Wizard” with the release of Windows XP Service Pack 2 that will lead a user of any expertise through the installation of their network. In addition, the “Microsoft Broadband Network Utility” will help them monitor and maintain the network just as easily once it is set up. |
 |
Change Default Password |
 Routers, whether wired or wireless, require a password for configuring the various settings, and all of them ship with extremely simple default passwords. The first step taken in setting up the router should be to change the default password to something more difficult to guess. Longer passwords that use a combination of letters and numbers are preferable as they make hacking attempts that much more difficult. |
Change Router IP Address |
| Most routers ship with a default IP (Internet Protocol) address, something like 192.168.1.1, which is utilized by the user for accessing the configuration utility interface, as well as by the network itself for negotiating the LAN and WAN connections. The configuration utility of most routers will include a page that will allow for the default IP address to be manually changed by the user. Although changing the default IP address doesn’t provide a great amount of security since it can easily be discovered anyway, it may deter intrusion by local users that may be casually scanning the network. |
Configure Router or Access Point Use |
| In the first part of this series of Tech Tips, I mentioned that almost all routers intended for home use can also double as wireless access points, and this is generally accomplished by clicking a check box within the control panel software. If a wireless router is being added to a network with an existing router and broadband connection, the new device needs to be set to access point mode. Otherwise, there could be a conflict as the network may not know where to expect the internet connection, since it will now have two routers that both want to serve as the gateway. If the wireless router is replacing an existing router, or is the only one on the network, this should not be an issue as these devices generally ship configured to operate as a router by default. |
Broadcasting the SSID |
| The SSID, or Service Set Identifier, is basically the name assigned to a particular wireless network. The user can choose just about any name they want, as long as it is less than 32 characters long, and they just need to be sure that all computers on the network are configured to use the same name. Two steps related to the SSID can be taken to help improve the security of the network:
|
DHCP Server |
| The DHCP (Dynamic Host Configuration Protocol) Server is a feature of most routers that makes adding new computers extremely simple. Whenever a new computer connects to the network, the router will assign an IP address to it, instead of the user having to assign an IP address to each manually while sitting at that particular computer. This makes configuring a network very easy, but it also leaves the network vulnerable, as any new computer detected will be welcomed to the neighborhood and assigned an IP address automatically. Two different approaches can be taken to improve security, as related to the DHCP server:
One method, and the best as far as security is concerned, is to disable the DHCP server. This will require that all computers that are authorized to connect to the network be configured manually, but it will prevent unauthorized computers from obtaining an IP address. The second method, which doesn’t provide bulletproof security, is better than doing nothing. In general, a DHCP server can support up to 250 computers, and by default leaves a range of addresses readily available for that many to connect. If disabling the DHCP server doesn’t seem convenient for a user, they can limit the DHCP server to only provide as many IP addresses as they know they need. If you know there will never be more than five computers connected, limit the range of available IP addresses to a total of five within the configuration utility. |
Different Levels of Encryption |
| All wireless components support some sort of encryption, which simply scrambles the information being sent across the network so that it can not easily be read by anyone else connected to the network. There are different types and levels of encryption, and a brief overview is provided for them below:
WEP, or Wireless Equivalency Protocol, was the first format of encryption available on wireless networks. WEP allows the network administrator to assign an encryption string to be shared by all computers authorized to access the wireless network. The encryption through WEP is either 64bit, 128bit, or 256bit, where the higher number represents greater encryption, and the strings can be generated by the administrator as a series of letters and numbers. WPA, or “Wi-Fi Protected Access,” is an improvement over WEP that starts off with a similar master encryption string and then mathematically derives encryption keys to keep the security dynamic. WPA continually changes the encryption keys used for each packet of data, and due to the extra processing required to support this protocol the overall throughput of the connection may suffer slightly. Despite the potential for decreased speed, WPA is considered to be far more robust than WEP, and should be implemented where possible. In some instances, WEP encryption has actually been defeated, making WPA all that more appealing. Although most components support both of these encryption formats, and users can select the type they wish to use from within the control software, not all do. All devices on the network must be set to operate at the same level of encryption, which may mean that some devices will force others to be less secure than they are capable of. For example, a wireless network setup around this router could support either WEP or WPA encryption. When two computers are added to this network using one of these network adaptors in one case, and one of these network adaptors in the other case, things change. Note that the second adaptor does not support WPA; therefore the whole network must now be configured to use WEP to accommodate it. |
Router Position |
 As discussed in the first part of this Tech Tip, wireless devices can have a range of up to a few hundred feet in free space. When installed inside a home, this range may decrease greatly due to walls, floors and other obstructions, but the signal may still be strong enough to carry beyond the confines of the dwelling. A simple step that may help reduce the strength and reach of the network signal outside the house is to position the router / access point as close to the center of the house as possible. The potential for someone to detect the network from outside the home when positioned like this is now much less than if the router was placed near a window, for example. |
First, change the default SSID to a unique name that includes a combination of letters and numbers that doesn’t reveal anything personal about you or your network. Second, disable the broadcast of the SSID once all of your computers are successfully connected, even if your router / access point recommends broadcasting it. I have used a few wireless routers, and all of them have a check box in the control panel for enabling/disabling the broadcast of the SSID, and they have all recommended leaving broadcasting enabled. Broadcasting the SSID allows new computers to easily find your network, and then all they have to do is access it given the proper credentials. Broadcasting your SSID puts it out there for anyone within range to see, and it just allows would-be hackers to get one step closer to compromising your security. In a home environment, there are probably few computers that need to access the network, and if more are ever added, you can temporarily enable the broadcast to get them set up.Posted in Learn | No Comments »
Wireless Networking Part 1 Capabilities and Hardware
20. May 2008 by admin.
| By Jason Kohrs -17.MAR.05 |
These days it isn’t uncommon for a home to have multiple personal computers, and as such, it just makes sense for them to be able to share files, as well as to share one Internet connection. Wired networking is an option, but it is one that may require the installation and management of a great deal of wiring in order to get even a modestly sized home set up. With wireless networking equipment becoming extremely affordable and easy to install, it may be worth considering by those looking to build a home network, as well as by those looking to expand on an existing wired network. The first installment in this two-part series of Tech Tips will provide an introduction to the basic capabilities and hardware involved in wireless networking. Once that foundation has been established, we’ll take a look at a few setup and security related considerations that should be addressed once the physical installation is complete. |
Capabilities |
The basic standard that covers wireless networking is the Institute for Electrical and Electronics Engineers’ (IEEE) 802.11, which is close kin to the wired Ethernet standard, 802.3. Many people will recognize 802.11 more readily when accompanied by one of three suffixes (a, b, or g), used to specify the exact protocol of wireless networking. The 802.11a protocol first hit the scene in 2001, and despite a small surge in recent popularity, it is definitely the least common of the three at this time. The signals are transmitted on a 5 GHz radio frequency, while “b” and “g” travel on 2.4 GHz. The higher frequency means that the signal can travel less distance in free space and has a harder time penetrating walls, thus making the practical application of an 802.11a network a bit limited. The maximum transfer rate, however, is roughly 54 Mbps, so it makes up for its limited range with respectable speed.
As mentioned, 802.11b and 802.11g networks operate on a 2.4 GHz radio band, which gives a much greater range as compared to 802.11a. One downside to being on the 2.4 GHz band is that many devices share it, and interference is bound to be an issue. Cordless phones and Bluetooth devices are two of many items that operate at this frequency. The range of these two protocols is about 300 feet in free air, and the difference between the two comes down to speed. 802.11b came first, released back in 1999, and offers speeds up to 11 Mbps. 802.11g first appeared in 2002 and it is a backwards compatible improvement over 802.11b and offers speeds up to 54 Mbps.
Considering your typical broadband Internet connection is going to offer data transfer rates of 10 Mbps or less, it can be seen that even 802.11b would be more than adequate if you just want to surf the web. Sharing files on your LAN (Local Area Network) is where the faster protocols will really make a difference, and comparing the prices of 802.11b and 802.11g components may show that there is little to no difference in selecting a “g” capable device over a comparable “b” capable device. |
Hardware |
Access Point – Wireless Access Point (WAP) is the central device that manages the transmission of wireless signals on a network. A base access point may be capable of handling up to 10 connections, and more robust APs may be able to manage up to 255 connections simultaneously. The D-Link DWL-1000AP+ is an example of a wireless access point capable of 802.11b transmissions. Router – In somewhat technical terms, a router is a network device that forwards data packets. It is generally the connection between at least two networks, such as two LANs, or a LAN and ISP’s (Internet Service Provider’s) network. For our purposes, and for the sake of simplicity, a wireless router is basically an access point with the added feature of having a port for sharing a broadband Internet connection. The D-Link AirPlus G is an 802.11g capable router that provides access for numerous wireless connections and four hard-wired connections to one WAN (Wide Area Network Internet) connection. A typical router for home use will generally cost less than an access point, and via settings within the firmware, can be used as just an access point anyway. Wired or wireless, all the computers using the router can share files over the network, as well as sharing a broadband internet connection. Communication between wireless computers (or a wireless computer and a wired computer) will max out at 54 Mbps, while communication between wired computers will take full advantage of the 100 Mbps provided via the 802.3 protocol.
Network Adaptor – A network adaptor is required for every computer that you would like to be connected to the wireless network. Many laptops, such as this Sony Centrino 1.5 GHz now include a wireless adaptor built in, so no extra hardware is needed. For those with systems that don’t have wireless capabilities built in, adding them is fairly simple, and can be done using a variety of connections. Desktop computers can go wireless by adding a PCI slot network adaptor such as the 802.11g capable D-Link DWL-G510. Notebook users can easily add wireless connectivity by using a PCMCIA adaptor, such as this 802.11g capable device. And for truly convenient plug-n-play connectivity to wireless networks, USB adaptors such as this 802.11g capable dongle are available. |
On top of these protocols, some manufacturers have improved upon the 802.11g standard and can provide speeds of up to 108 Mbps. This doesn’t involve a separate protocol, but just a bit of tweaking in areas like better data compression, more efficient data packet bursting, and by using two radio channels simultaneously. Typically, stock 802.11g equipment is not capable of these speeds, and those interested need to shop for matched components that specify 108 Mbps support. I say “matched components” as this is not a standard protocol and the various manufacturers may take different approaches to achieving these speeds. In order to ensure the best results when trying to achieve these elevated speeds, components from the same manufacturer should be used together. For instance, only Netgear brand network adaptors rated for 108 Mbps data transfer should be used with something like the 
Posted in Learn | No Comments »
Add a name to the Blocked Senders List
20. May 2008 by admin.
Add a name to the Blocked Senders List
Applies to: Microsoft Office Outlook 2003
- On the Tools menu, click Options.
- On the Preferences tab, under E-mail, click Junk E-mail.
- Click the Blocked Senders tab.
- Click Add.
- In the Enter an e-mail address or Internet domain name to be added to the list box, enter the name or address you want added, and then click OK.
- Repeat steps 4 and 5 for each name or address that you want to add.
Notes
- You can quickly add a name to the Blocked Senders List by right-clicking the junk e-mail message, and then, on the shortcut menu, pointing to Junk E-mail and clicking Add Sender to Blocked Senders List on the shortcut menu.
- If you have existing lists of names and addresses that you want to block, you can import the information into Microsoft Office Outlook 2003 by saving the list as a text (.txt) file with one entry per line, and then importing the list.
- If you are using a Microsoft Exchange Server e-mail account and working online, you must be using Microsoft Exchange Server 2003 or later. If you do not know what version of Exchange server your e-mail account is using, contact your Exchange administrator.
- To remove a name from the Blocked Senders List, in the Blocked Senders tab, click the name you want to remove from the list, and then click Remove.
Posted in Learn | No Comments »