WiFi Security Checklist

 

You may not need to (or be able to) tick off all the numbers on this Wi-Fi Security Checklist. That’s okay. Just doing as much as you can will increase your Wi-Fi security profile.

1. Change the default URL, username and administrator password.

2. Change the network security settings to WPA2, or WPA-Enterprise if you are a large organization.

3. Change the default SSID, but not to something which advertises who you are.

4. Turn off Wi-Fi Protected Setup (WPS), but if you must use it, use it with caution. “PIN” codes have a finite number of combinations. They can be easily guessed using a hacking program; thus allowing unauthorized access.

5. Keep track of your equipment. Maintain an up-to-date list of everything you expect to see on the network, even if you do not use MAC filtering (see below).

6. Scan the network for “UFO” MAC and IP addresses regularly. (Unidentified Fi’ing Objects)

7. Make sure the Wi-FI hardware firmware is up-to-date, and is kept up-to-date.

8. Disable remote login to the Appearance Points (APs).

9. Disable wireless administration of the router.

10. Turn off Guest networking. If you need to offer Guest access, keep it separate from your network. Have a Terms of Use, password access, log-in page.

11. Turn on the firewall if your device offers one.

12. Use anti-virus and anti-spyware software on the devices which access your wireless network.

13. Check for Wi-Fi capability when adding new equipment to your network. Printers are notorious for having Wi-Fi capability active, by default, without any security measures activated.

14. Once you’ve set up your router or AP, log out as administrator.

Useful Wi-Fi Security Tips (Note: They may not stop a determined hacker.)

15. Disable broadcasting of the SSID.

16. Reduce the range of the wireless signal to only what is needed.

17. Filter MAC addresses to comb out unauthorized users from connecting. Tip: On larger Wi-Fi networks, adding a MAC profile matcher will make this a much more effective security measure.

Additional General Usage Tips:

18. Turn off the wireless router when you are not using it.

19. Never assume public wireless networks are secure. Use a VPN connection.

20. Turn off the automatic Wi-Fi connection search feature on all your devices. Keep their search lists clear of old connection SSIDs for an extra measure of security.