Router Passwords encryption

Discussion in 'Computers' started by ShiftZZ, Apr 5, 2011.

  1. ShiftZZ

    ShiftZZ Funster Life Member

    Joined:
    Feb 19, 2008
    Messages:
    19,821
    Likes Received:
    35,897
    Location:
    Leicestershire
    I am about to reset my router...

    whci one of the following is the best settings?

    WEP - Wired Equivalent Privacy, use WEP 64- or 128-bit data encryption
    WPA-PSK [TKIP] - Wi-Fi Protected Access with Pre-Shared Key, use WPA-PSK standard encryption with TKIP encryption type
    WPA2-PSK [AES] - Wi-Fi Protected Access version 2 with Pre-Shared Key, use WPA2-PSK standard encryption with the AES encryption type
    WPA-PSK [TKIP] + WPA2-PSK [AES] - Allow clients using either WPA-PSK [TKIP] or WPA2-PSK [AES]


    Or should I just go for WEP?
     
  2. pablomc

    pablomc Funster Life Member

    Joined:
    Apr 20, 2010
    Messages:
    860
    Likes Received:
    235
    Location:
    Co. Durham
    I am no expert and this is info I have picked up over the years.

    It depends on the devices you are connecting and whether they support WPA2-PSK. If they do that's what I would use as it offers the higher protection. If they don't then use WPA-PSK [TKIP] + WPA2-PSK [AES] to cover both. Personally I would avoid WEP unless you are prepared to change it on a very regular basis as it is easily cracked.

    I would also set up an access list for devices that use your wi-fi connection, as an extra bit of security.
     
  3. callumwa

    callumwa Read Only Funster

    Joined:
    Jan 16, 2011
    Messages:
    4,113
    Likes Received:
    4,517
    Location:
    Tyne & Wear, sometimes..
    I think WPA2-PSK is the best, (but i'm also no expert).

    Then it depends if all your devices, some older ones may not be compatible with so you need need to use the older (less secure?) protocol...
     
  4. JeanLuc

    JeanLuc Funster

    Joined:
    Nov 17, 2008
    Messages:
    2,783
    Likes Received:
    1,859
    Location:
    Warwickshire
    I use WPA2-PSK. It is a more recent version of WPA and offers improved security. The fourth option in your list is a composite of both earlier and recent forms of WPA so that users of older systems can still access the router. Provided all your devices can use WPA2, go for that - your third option. Don't use WEP, it's old and can be cracked more easily.

    Philip
     
  5. GJH

    GJH Funster Life Member

    Joined:
    Aug 20, 2007
    Messages:
    27,260
    Likes Received:
    34,528
    Location:
    Acklam, Teesside, originally Glossop
    I agree with Philip - he beat me to it.
     
  6. 400ixl

    400ixl Read Only Funster

    Joined:
    Sep 14, 2008
    Messages:
    381
    Likes Received:
    8
    Location:
    Norfolk
    In order of which you should go for:

    1. WPA2-PSK [AES]
    2. WPA-PSK [TKIP] + WPA2-PSK [AES]
    3. WPA-PSK [TKIP]

    And if you absolutely have to (but can be hacked remotely in under 2 minutes)
    WEP

    MAC filtering (Access List) is not worth bothering with as MAC addresses can be spoofed very easily. Only bother if you are forced to use WEP.
     
  7. Douglas

    Douglas Read Only Funster

    Joined:
    Aug 22, 2008
    Messages:
    2,837
    Likes Received:
    401
    Location:
    South Wales,
    As I understand it WEP is now superseded by WPA. WEP is an unencrypted password in which only part of the password is used with each packet transmitted. Given time if you have a simple data reading program you can watch the data slide up the screen and collect all of the password from the data.

    Doug...
     
  8. G4GMO

    G4GMO Read Only Funster

    Joined:
    Sep 6, 2007
    Messages:
    447
    Likes Received:
    15
    Location:
    Herefordshire
    Agree wpa2 and if your router has it wireless access list, this limits access to permitted mac addresses. Although someone could clone a mac address it still adds another level of security.

    You can also hide your ssid but i had troubles with that so I pretend it's hidden but i'm not about to explain how on a forum for obvious reasons.
     
  9. wivvy's dad

    wivvy's dad Read Only Funster

    Joined:
    Jun 22, 2010
    Messages:
    3,218
    Likes Received:
    1,807
    Location:
    48.066895,12.862673
    Thanks guys - this nudged me into checking my setup - WPA2

    :thumb:
     
  10. G4GMO

    G4GMO Read Only Funster

    Joined:
    Sep 6, 2007
    Messages:
    447
    Likes Received:
    15
    Location:
    Herefordshire
    If you're really paranoid, get the router to log everything and send an email if something suspicious occurs. I'm paranoid. :Blush:
     
  11. 400ixl

    400ixl Read Only Funster

    Joined:
    Sep 14, 2008
    Messages:
    381
    Likes Received:
    8
    Location:
    Norfolk
    And if you want a password as strong as they can get then look here.

    https://www.grc.com/passwords.htm

    Just don't try to remember it. Keep it somewhere safe like in an encrypted file on a USB key so that you can cut and paste it into any client PC's.
     
  12. pappajohn

    pappajohn Funster Life Member

    Joined:
    Aug 26, 2007
    Messages:
    29,478
    Likes Received:
    16,966
    Location:
    YO11 2BD
    WPA2-PSK

    some older wifi cards dont support this encryption though.

    very secure method as the encryption code changes as data is sent and received.
     
Loading...

Share This Page