Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : Wi-Fi Security : Conclusion: Limiting Your Vulnerabilities

Conclusion: Limiting Your Vulnerabilities

Jun 18,2010 by admin

small font medium font large font
image

Conclusion: Limiting Your
Vulnerabilities

Remember that no matter what device is connected to your network,
right out of the box there are few or no security features enabled by
default. This is a fact for just about everything on your network. The
goal of this chapter has been to point out some of the major possibilities
that would cause problems for your wired network from hackers unauthorized to use the wireless network.

First, make sure you understand all the security settings available in
any network device in your network. Note that items such as file servers
or network printers are attached to your LAN and can be very easily
accessed or abused by someone on your WLAN. Understand how to protect
these settings; restrict access to those who are directly responsible
for the administration of these devices. It is important to note that items
on your network that don’t seem obvious targets for hackers are vulnerable
and can easily facilitate a simple security breach you would not
normally have considered.

Two methods of visualization are important when trying to consider
how security plays an effective role within your wireless network: internal
device security and external network security.
Internal device security is applicable to NAS boxes and networked
printers. Make certain to set the LAN segment these devices can function
on and restrict access with a login and password for each resource. Do not
allow functionality to be accessible by “any user,” which is the common
default on almost every network printer. Note that hackers can deplete
your paper and ink and reduce the overall life of these devices by misusing
them at all hours of the day and night. Hackers can cause extreme
network congestion by sending large graphic files over your network to
wait in endless queues to be printed by almost any network printer.
NAS boxes represent easy file access across your network. These common
devices are hooked up to your wired LAN, but are extremely easy to
access as a public file resource for any wireless user. That means any
file, program, or other document on these file servers can be destroyed,
corrupted, or stolen by anyone. Note that a wireless user has all the
same access rights as a standard internal LAN user. This means your
intranet is unsafe and unprotected!

Finally, consider all the external types of access breaches that a misconfigured access point can represent. If you don’t plug holes that allow
a hacker to use a promiscuous wireless NIC card to attack and breach your systems from the parking lot of your corporate facilities, then you
are leaving yourself wide open to attack.
Try to think from the hacker’s perspective:

 What types of resources are available to just “anyone” who is a wireless
user in your network?

 How wide and far reaching is your wireless network?

 How many different users exist on your network?

 Have you registered every wireless NIC card so that you don’t allow
just “anyone” to access it?

If you consider these questions and more, you can more easily determine
how to defend your entire network from a wireless security breach.
Once you eliminate as much vulnerability as you can, then you have a
far greater level of protection that enables you to survive a hacker
attack than someone who didn’t read this book and may be unprepared!

125 times read

Related news
» Defending Against Attacks
by admin posted on Jun 18,2010
» Handheld Devices
by alperen posted on May 12,2010
» Defining the Bullet Points in a Security Policy
by alperen posted on Apr 22,2010
» Hacking the Network Printer
by alperen posted on Jun 17,2010
» Conclusion: Keeping Your WLAN Secure
by alperen posted on Mar 30,2010
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

admin

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.