Advertisement
I'm the kind of person who likes the idea of the free internet-where internet access is equally accessible and available for people who want it, so I'm really warm to the idea of wardriving. I've been doing it for a while, but I'm actually just now setting up my own wireless network-I'd been up to this point too busy using other people's open networks. :)
Anyways, does anyone have ideas on how to set up an open network that still maintains some level of security for the computers inside it or for the network as a whole? Is this even possible or just a pipe dream?
Anyways, does anyone have ideas on how to set up an open network that still maintains some level of security for the computers inside it or for the network as a whole? Is this even possible or just a pipe dream?
posted by:
|
Maryland
|
Advertisement
Advertisement
-
Re: open-armed network but still secure?
Mon, February 2, 2004 - 12:01 PMIts possible depending on the equipment you are going to use.
-
Re: open-armed network but still secure?
Mon, February 2, 2004 - 12:26 PMIt is theoretically possible but in practice may be not so easy.
You will need to separate the public users and your private network (including the wireless hosts) into different IP networks. The private network needs good security (AES encryption and 802.1x authentication). To be safe you will need to add a rule to your firewall to disallow access from the public network to your private one. The tricky part is finding an AP that allows a configuration for that mixed security mode.
Have you thought about what your liability would be if someone uses your link to upload a virus to the Internet, send spam or attack other sites?
-
-
Re: open-armed network but still secure?
Tue, February 3, 2004 - 7:05 AMactually, quite often-aside from the technical issues, that remains one of the greatest stopgaps in the idea.
The trouble is that when you're using someone else's public wireless network without their knowledge or if they simply don't know enough to secure their network, the legal case can be relatively easily made in favor of the owner of the network who themselves could be percieved as a victim: that they didn't know, didn't understand, couldn't have known, no laws state they have to be aware, etc-however if someone has the established technical knowhow to set up a public wireless network with the specific INTENT of sharing that connectivity with all who pass through, then there are serious legal issues.
For example, a possible solution would be to do as you say, but on the public end shut down port access and shape traffic so users could only-let's say-webbrowse. But then it wouldn't be so open-armed would it?
I'm not saying I'm going to do it at all, just discussing the possibilities. :) -
-
Re: open-armed network but still secure?
Sun, May 30, 2004 - 6:22 AM
Yea lots, if you make a (short) wish list i can point you in the right direction.
Personally I prefer to use some throttling on my open access LANs, so one user can not swamp the feed.
FreeBSD on a soekris board may be a cheap solution
-
-
-
Re: open-armed network but still secure?
Wed, February 4, 2004 - 12:24 AMa firewall
