How can I prevent people from hacking my wifi?

[Tedbundy]

I just changed my router password and looked at connected devices and theres still one other device that I didn't give the new password to. So I know that someone has to be hacking into it with some kind of tool. I live in a apartment where it could be anyone. please help

[jagabo]

Use a longer password with mixed case, numbers, and other characters.

[redwudz]

You can also easily add MAC address filtering in your router so only your computers can access your router. But I would still agree to a more complex password.

I will also assume you are using a newer form of encryption for your WIFI. WEP is fairly easy to compromise. I use WPA-2 Personal AES. It is very secure.

One other thing you can add is to turn off your SSID announcing transmission. That way your router won't show up when someone does a scan. Also, very basic, don't use your personal name for your router ID. Or the name or model of your router. The default router passwords and logins are easy to obtain with that info. That just makes it easier for hackers.

All of these options will help. You should be able to find more info about most of them in your router documentation.

[usually_quiet]

While you are at it change your network's name to something longer with mixed case numbers an other characters. ...and hopefully are using WPA2 encryption.

[enim]

i am at 26 pint of beer.
when i was a kid i taught to keep door locked while using washroom, but you know even pet - trusted - dogs......, and i was scremming and crying all the times. Now onwards after i grown up,I keep door unlocked and people run away bleeding and screaming.
one more beer please!

[Nelson37]

Check the MAC address of your router itself against the "suspect" device.

[themaster1]

first thing first change the pass of your router because you can change your wpa2 super mega long all you want, i can still enter your router and change it and authorize any computer.
Which bring us to thenext logicial step: disable remote access options of your router (no-ip etc..)

[handyguy]

See which of your neighbors are home when it happens.

[p_l]

Check the MAC address of your router itself against the "suspect" device.

Yes, try this first. I remember getting all suspiscious for about fifteen seconds before the lightbulb went on above my head.

Also double-check your wireless printers/scanners, iPod/Pads, extenders/repeaters. All of those also show up under their own MAC addresses.

[Tedbundy]

Thanks guys. I checked all the Macs except for the wd live tv box. not really sure where that one is. and how do I shut off the broadcast so noone sees it when they scan

[Cornucopia]

Mac address is usually listed on the side/bottom/back of the device. You must login to access the web-based control panel (this usually requires direct, wired connection to the lan side of the box - info on how to do this is almost ALWAYS given in your MANUAL).

Scott

[p_l]

If you're using the Netgear Genie in addition to the webpage controls, once you've identified your connected devices by their MAC addresses, you can rename them to something that identifies them more easily for you and also select what type of device each is, which gives it a distinctive icon.

[redwudz]

WD Live MAC address should be on the info label, probably on the side. With PCs, check your LAN settings and the MAC address should be on the status/details page for your LAN adapter.

SSID broadcast settings are in the WiFi section of the router settings.

Be aware that some of your devices may have a hard time finding your router with the SSID broadcast turned off, so do that last. I usually set up my LAN with fixed addresses and I don't let the router create them through DHCP. That way they don't change if the PC loses contact with the router.

I probably didn't mention it before, but a handy freeware program that shows the WiFi routers around you should give you some idea of what's out there. http://www.metageek.net/products/inssider/

And also, if you don't have a decent firewall program, you might try the freeware Comodo program. It's a PITA to set up (Mostly when adding new devices/programs to your system), but it will warn you or block outgoing packets that you don't want to be outgoing. (As in Malware 'phoning home' or hackers.) Windows firewall is all but useless, IMO. http://personalfirewall.comodo.com/

[enim]

Yesterday I was much drunk than today. While returning back home from pub, I was dazed by an idea to get
instantly rich without any effort. Finally broke into a rich mension easy coz main door was unlocked.
Passing through dark living room I sneaked into bed-room with a dim light, I saw Money Vault and an old man in a balcony on a chair.
I got closer to Money Vault, tried all possible combinations, but didn't work.
I just steered the handle and alas, it was unlocked, when I opened it I found...


An old man looked at me and told I was expecting you, I was watching you from the balcony.
There is nothing you can steal, and you can not carry the vault by your self.
Come over here and join me for a beer!



In fact, I had a one beer more and good time.

[Cornucopia]

I remember when I had my first beer!

I guess we are all waiting now for the OP's reply so this can get back on topic, eh?

Scott

[jollyjohn]

ASCII characters and longer password.

[Cauptain]

Some things to make secure wifi:

- SSID not show.
- DHCP disable. (make fixed IP to devices)
- Disable WPS button
- WPA2 password maximum lenght.
- MAC adress access only restrict.
- LAN, other then 192.168.xxx.xxx/10.x.x.x
- Maximum devices connected exactly you have in house.





Claudio

[TimA-C]

Just be aware that it's really easy to spoof MAC addresses. Stronger password and WPA/WPA2 encryption should be all you need to do.

Edit: and change the default password to get into the router, otherwise it's pretty easy to log into your router with just your I.P. Address and see what your new wireless encryption key is.

[Tedbundy]

Thanks everyone. I just wanted to post back and let you guys know that I have not forgot about your suggestions. I've had a extremely busy week with work and haven't had much time to try anything lately.

I will try some of the above methods and see. so far when I've been home I've only seen the right amount of devices on my network.

I am able to change settings in my router through wireless on my laptop just a FYI.

What would disabling WPS do? I'm going to try and find that now

[Clockwork]

Strong password (random alpha-numeric...throw in a character or two...) and no physical access...

...that's all you need. Done.

[nic2k4]

WPS is a service meant to allow even the most novice user to securely connect a device to his wireless network with just the push of a button. Unfortunately, the protocol is easy to hack and allows anyone to compromise a network, even if it's protected with WPA2-AES.

BTW, nowaday with cracking software that use the GPU, strong passwords don't survive brute force attacks. Some video cards have more than 1500 cores, double that with SLI and a password that would take an X86 CPU hundreds of days to carck, now falls within a few hours. Your best bet is an alphanumeric passphrase with characters, time to learn L33T speak.

Maybe a foreign language would provide extra security; V0ulez-vous COuch3r 4vec moi c3 s01r? Anything to increase the time to crack and prevent the use of dictionnaries.

[jagabo]

I am able to change settings in my router through wireless on my laptop just a FYI.

That's the first thing you should disable. Required a wired connection to change settings. That way only somebody in your house has access.

BTW, nowaday with cracking software that use the GPU, strong passwords don't survive brute force attacks.

That's not true. Good 12+ character passwords still require inordinate amounts of time to crack via brute force. Don't use any on this list: http://www.isdpodcast.com/resources/62k-common-passwords/

[Clockwork]

Maybe a foreign language would provide extra security; V0ulez-vous COuch3r 4vec moi c3 s01r?

That's a good password, but not for the reason you think.

...dictionnaries.

priceless