Originally posted by: tallman45
He should be very concerned by the hacker in the parking lot who may 'acquire" say a customer database or access into some other secured site. Remember that it will be the hotels IP address that will be identified.
Some sort of account logging will likely be necessary so that you will be able to track back the events of a particular user. Just out of curiosity, what hardware/software,etc was proposed by the vendor who offered to do this for $10k.
Exactly. Just because your uncle doesn't find intruders dangerous does not mean he will not have to deal with the liability of his connection. Just because he is in charge does not immediately make him an expert on what he thinks he "needs." He wants "internet acess," but whomever is responsible for the work should install, and charge for applicable security equipment/software.
Do NOT be "leary" of WEP(WPA is too new so support is lacking from I have seen..don't trust me on that)
Encrytion ensures your customers that they can use your connection with turst. I would not want 10 angry customers banging at my door because some parking lot theif just cleaned out their bank accounts after sniffing their packets.
1. Do NOT use wireless overall. The more inofrmation you give us, the more we fear for the customers safety.
2. I would recommed have a sort of "hotspot" perhaps in a courtyard or something, but configured AS RESTRICTIVELY AS ALL HELL. We are talking letting in port 80 ONLY and Massive and detailed logging too.
3. Use WIRED to the rooms. It's cheaper and easier to manage securely.
4. Use bandwidth limiting. Once again, this is so they can surf or do work online...not download @ 150KB/s
I'm sorry for being an annoying bastard, but you must understand that the overzealousness of intallers has left many networks very vulernable. I am pestering you i nthe hopes that you not follow that path.
Do it well, or don't do it at all
Wired to rooms...wireless in a courtyard :beer: