Wireless Security at Home
This checklist is intended to address some configuration issues for improving the default security of your wireless connection on a home router.

Change the default SSID
Access points come with a default shared key called an SSID (Server Set ID) that is shared among all users of that access point. It is broadcast to everyone within range of the access point. Make sure that you change this SSID from the default setting, so that unauthorized users have less information about your equipment and setup. Do NOT allow connections using a blank SSID or an SSID set to ANY or any.

Turn off SSID broadcasting

Set your home AP to "closed network". This turns off the SSID broadcasting feature on your AP, and not broadcasting your SSID will make it harder for the world at large to detect your wireless network.

Use WPA2
WPA is a security protocol for 802.11 wireless networks. It supports both authentication and encryption and improves upon previous versions of wireless security (for example,WEP). The latest version of WPA is version 2 (also known as WPA2) and includes support for AES encryption. If you use one machine both at home and at work, you may need to turn WPA2 on for your home network and turn it off when on the Duke network.

Set the encryption level to the most recent secure type that is available on your wireless hardware: The most secure protocol is WPA2 (Wi-Fi Protected Access with Advanced Encryption Standard AES), which you might see listed as WPA-PSK (pre-shared key). When you set up the WPA2 key, it will need a pass phrase. The pass phrase is the weakest point in this setup: to increase security, your pass phrase should have at least 21 characters (non-dictionary word). WPA is a security protocol for 802.11 wireless networks. It supports both authentication and encryption and improves upon previous versions of wireless security (for example,WEP). The latest version of WPA is version 2 (also known as WPA2) and includes support for AES encryption.

Change the default configuration password

All wireless devices come with a default password to access the configuration program. Identity thieves can easily go online and get the default passwords for most brands of wireless equipment. If you use a default password, someone could easily change the configuration and even deny you access to your own network! Change the default password and use a strong password.

Check your wireless router's vendor website for configuration instructions for your model.