PC Network
Security, Simplified
|
Network security home users have
unknowingly become computer geeks.
Not too long ago using the terms
'router'
or 'wireless' signaled the presence of the enthusiast No longer. Now, routers, hubs, switches, Ethernet cards, firewalls and a bewildering array of other network related buzzwords have entered the home
|
| By making the
installation of these devices easy and inexpensive, vendors opened new
sources of revenue for themselves and offered a significant value to
home users.
Now multiple home computers could share resources without 'sneaker net' - physically transporting files or moving printer connections. |
You don't leave your doors unlocked when you leave home, so make it difficult for the neighbors and the hackers trying to get into your network
Now the whole family could use a single network connection to the Internet, and often without having to string wires all over the house. What users didn't get is what every networking and computer professional has early on - training in how to secure that gear from hackers.
But, don't panic. The settings from the vendor are often quite good. Now, for some guidance...
RFM is a common acronym known to computer professionals. For the sake of propriety I'll ignore the middle letter, but the first and last stand for Read the Manual. It'll give you common useful settings and configuration information. Now read it again.
Network Security Router Ports
 First, change the
password on the router rename the administrator account.
The person who bought the same model
you did has that information, and he may not be as trustworthy as you. |
Port 80 is the standard for HTTP, needed for any
web browsing. 'Ports' are network numbers used by software to distinguish
traffic. Open that, but only for specific IP addresses or ranges going
out. That way, only known computers can generate
traffic out of your home
network.
Network security is imperfect if you acquire an IP address automatically. I.e. use DHCP, as most do.
Why do you care about traffic going out? Because you can infect others. Practice safe networking. Don't spread viruses.
And that's ALL... usually.
Manual or desktop FTP clients, which you should avoid because of their weak security, will need another, and specialized programs will require a few others. In most cases you'll find their numbers easily discoverable. Keep them to the bare minimum. The rule of thumb with network security is: everything closed by default, allow only those truly needed and only to those who need it.
By the way, if these sound a lot like firewall settings it's because routers and firewalls have some overlapping functionality. Routers route traffic, firewalls prevent or allow it.
Wireless Network Security
| If you have wireless
gear, you have more to do. Some, by default, allow anyone nearby to
use them to access that network and hence the Internet.
That means not only the teenager in the upstairs bedroom, but the neighbor next door and the hacker parked at the curb can access resources inside your home. Yes, that does happen. |
|
| Lock down your wireless gear by, you guessed it,
reading the manual to learn how to configure passwords and implement any
other security features available. It isn't necessary to dedicate your life to becoming a network security expert in order to safeguard your resources. |
But having a home network connected to the
Internet via a home router, puts
you at extra risk compared to dial-up or
single-connection users.
If you don't spend a modest amount of time on
network security today,
someday you may spend much more after you've been
hacked. Your
network security depends on it.
|
Never forget your PassWords Again, Never!
Tips on Computer Clutter
Wireless frequently asked questions
Home security systems wireless
Arranging wireless computers
Jim Novak |