Wireless Security

[Ghost]

I'm having a hard time visualizing this. I have a home computer connected to a Zyxel wireless router. Normally the wireless part is turned off.

I understand that the NAT that's built into the router provides a hardwall firewall for my computer and I have some measure of security for that.

This is the part I'm having difficulty with. Let's say I turn on the wireless, so I can update an XBox360 and don't want to hassle with encryption. If I forget to turn off the wireless, how would someone obtain access to my system?

For example, a neighbor sees my unsecured wireless, and browses to my access point. What can he do from there besides surf the Internet on my bandwidth? I don't have any files or folders or drives shared, so he couldn't browse folders, right? Would he be able to see my computer at all? Or would the NAT still keep him out?

 

[jlazzaro]

Originally posted by: Ghost
This is the part I'm having difficulty with. Let's say I turn on the wireless, so I can update an XBox360 and don't want to hassle with encryption.

where's the hassle? you check a box and create a key...done.

Originally posted by: Ghost
What can he do from there besides surf the Internet on my bandwidth? I don't have any files or folders or drives shared, so he couldn't browse folders, right? Would he be able to see my computer at all? Or would the NAT still keep him out?

with enough knowledge, anything he wanted. just because sharing is disabled doesnt mean your information is secure. he could exploit any number of vulnerabilities and gain root access to your system. of course, we arent talking about your average user here...

since both of you are behind the router, NAT wouldnt even enter the equation.

 

[JackMDS]

Yeah Good idea to let pedophiles, pr0n lovers, and who knows what, use your connection.

The police would be at their door, but at yours.

 

[Ghost]

Originally posted by: JackMDS
Yeah Good idea to let pedophiles, pr0n lovers, and who knows what, use your connection.

The police would be at their door, but at yours.

Little harsh, no?

I'm trying to understand what they would get access to, and how. I'm trying to understand the risk, I know I need to protect, I'm trying to understand the WHY.

OK, they've hit a wireless router that has no wireless clients using it. So they can't sniff or see data that's not going through the air.

Can they then sniff my wired connection data? Can they gain access to my computer even if I don't have file sharing on?

 

[dfnkt]

If someone gets into your network, anything is fair game, including accessing the admin shares. This means the person would have access to your entire harddrive, if though you are not 'sharing' it.

http://en.wikipedia.org/wiki/Administrative_share

 

[picoHat]

If someone joined your unsecured wireless network, he/she able to access your default admin share (computers on wired or wireless network), also can scan your network by using some scanning tools that so easy to get from Internet to look for security holes, then use some exploits that downloaded from Internet to hack your computers. If the hacker is good enough, he/she can compromise your entire network and create a zombie network to launch DoS attack on other networks or continue to hack other networks...

 

[JackMDS]

Ghost, it is Not an issue of all or none.

It is an issue of probability.

By Not having sharing On, and some other setting that you describe you reduce a little the probability of outside invasion but you do not reasonably eliminate the Risk.

In addition, you should know that even if you do not have Wireless, using the Router's NAT Firewall without additional protection is risky too ( http://www.ezlan.net/firewall.html ).

You can do what ever you like to do it is your life and you have to make your own decision people here just trying to provide info.