Boss wants WPA key removed from client access


Recommended Posts

most hotels other here use btfon/openzone meaning people have user accounts

O yes, the type in your email to be able to use our service...

hi@bye.com

test@tester.com

go@blow.com

frequent ones that you may see. [sarcasm] very secure and not open at all [/sarcasm].

Last time I was at a hotel, I remember something about a key, but there is also that page....the key was easily retrieved at the front desk, some even have it right at the front desk..

Link to comment
Share on other sites

thanks for all the advice. I've got some good alternatives for her now. I wish my router had the guest access capability - that sounds like just what we'd need.

DD-WRT (if your router supports it) would add this functionality.

Link to comment
Share on other sites

O yes, the type in your email to be able to use our service...

hi@bye.com

test@tester.com

go@blow.com

frequent ones that you may see. [sarcasm] very secure and not open at all [/sarcasm].

Last time I was at a hotel, I remember something about a key, but there is also that page....the key was easily retrieved at the front desk, some even have it right at the front desk..

no this is different you have to be verified with credit cards (which are stored with the ISP not the hotel) ect yes you could pull a idientiy theft, but its a bit more secure or atleast you can narrow down who accessed what rather then the hotel being done for something dodgy

Link to comment
Share on other sites

I went thru this same thing at a clinic. While these maybe pets there probably is some kind of privacy act thing going on. Personally I would get it in writting from a lawyer before I do any of that unsecured stuff period. What I ended up doing is explaining to the doctors was this, if you leave the network open the organizations IS department will turn off ports. No connectivity means you cant schedule or bill patients, no patients = no $$$. Once I said that they happily complied with all my demands. Just turn it into a money thing.

Link to comment
Share on other sites

they are doctors they have just as much right to be called doctors as human doctors... in fact vets know more about biology then most human doctors ....

I don't think he was trying to say that the Vets are no doctors, but rather the clinic is for Veterinary Practice not a Doctor's Surgery, where Client privacy requirements don't apply to the same extent (just keeping the personal information of the client secure, same as any other business)

Link to comment
Share on other sites

Kill the key, turn on wireless isolation, you're done. That removes the possibility of any wireless device talking to another wireless or wired device isolating it from your interior network. It's not that hard, and it will open it right up for the pedophile living next door to use your wireless to surf porn whenever they feel like.

"if you leave the network open the organizations IS department will turn off ports"

huh??? Hopefully they fired you shortly after.

Link to comment
Share on other sites

"turn on wireless isolation, you're done."

Sorry but NO -- normally AP or Client isolation prevent wireless to wireless -- but does not stop wireless to wired.. Which is actually the problem.

Link to comment
Share on other sites

"turn on wireless isolation, you're done."

Sorry but NO -- normally AP or Client isolation prevent wireless to wireless -- but does not stop wireless to wired.. Which is actually the problem.

Good god, I hate it when the blind try to step in front of me. I wish they'd finally learn they're just going to get smacked back into their rightful place.

http://documentation...reless.4.3.html

Wireless Isolation:

This feature is disabled by default. If it is enabled, wireless stations

cannot communicate with each other or with stations on the wired network.

And if you want to disagree with the routers manufacturer, I think you'll need to take it up with them.

Link to comment
Share on other sites

The blind -- dude really :rolleyes:

Sorry but that is that ONE ROUTER!!! NOT ALL of them!! Like I stated NORMALLY that does not block wired access..

example

http://support.dlink.com/emulators/dir655/133NA/Advanced.html#Advanced_Wireless WLAN Partition Enabling WLAN Partition prevents associated wireless clients from communicating with each other.

Link to comment
Share on other sites

By ISO specification client isolation is SUPPOSED to remove 100% of the routing table except from the client to the gateway and vice versa. It works on 100% of the netgear and D-Link routers I've worked with, and 100% of the cisco routers. The only ones that I've seen it not work on, are the **** poor new "Linksys / Cisco low end" routers that are garbage, or crap brand routers that don't know what they're doing anyways..

There's the WIKI if that makes you feel better >>> http://wireless.wikia.com/wiki/Wi-Fi

  • If you want to open up wireless to outsiders (even just a neighbor), look for a wirelesss router with anisolation feature that blocks wireless-to-wired networking, most often found in "hotspot" routers.
  • If you also have wireless devices, then look for a wireless router or access point with a wireless isolationfeature that blocks peer-to-peer wireless networking (e.g., NETGEAR WG302).

Or from a quick (but dirty) google search, Beer man, meet software man .. >> http://www.softwareman.org/web-development-stuff/what-is-wireless-isolation-on-wifis/

Link to comment
Share on other sites

So you quoted a wiki -- that yeah states LOOK for one that blocks wireless-wired. Where did I say that none of them do it?

Great lets remove the routing table -- sorry but there is no ROUTE between devices on the same segment.. Which normally especially in the soho wireless and wired are on the same network.

Your other link!!

Wireless isolation was commonly used for securing guest networks from accessing one?s internal network/client/servers from a SINGLE shared router? but different manufacturer will implement it slightly different from one another.

Link to comment
Share on other sites

  • 2 weeks later...
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.