Is my home network secure?

Yes it is safe, my router can even see what device is attached to the network, and if I dont recognise it, I ban it.


PS: Even Lara's current setup is way too overkill.
 
Steps that I’ve taken is the following:
  • Changed the routers’ admin account name and created a complex password.
  • Disabled remote login to the router.
  • Use WPA/WPA2 encryption set a strong password for Wi-Fi access.
  • Disabled broadcasting of the SSID.
  • I keep my anti-virus program up to date and do regular scans.
  • I do not open questionable or unknown emails.
  • I do not visit websites that are risky.

Download the free version of Malwarebytes Anti-Malware and you are fine. I run it once a week (manually).

If you were closer to the boarding schools then you could do more but they are too far from you as it is.
 
Two important things you are missing.

Regularly run malware removal applications like Malware-bytes. Keep all your applications and operating systems up to date. Especially browser, Java and anything from Adobe. Your network is still not secure, but it will be more secure than most.

This!
I've even seen companies (smaller ones tho) telling me they are "secured", yet they neglected to have any malware protection whatsoever!
 
// makes notes

// prepares the infiltrator

There are so many reports of security breaches and hacking that it made me wonder how secure my home network is.

Steps that I’ve taken is the following:
  • Changed the routers’ admin account name and created a complex password.
  • Disabled remote login to the router.
  • Use WPA/WPA2 encryption set a strong password for Wi-Fi access.
  • Disabled broadcasting of the SSID.
  • I keep my anti-virus program up to date and do regular scans.
  • I do not open questionable or unknown emails.
  • I do not visit websites that are risky.

Is there anything else I should do to make it more secure?
Recommendations will be most welcome, thank you.

Ps. I’m using a TP-Link WD8970 Modem Router.
 
Thank you all for your assistance.

From what you are saying is that my network does not fall within a high risk area. Going overboard with additional hardware wouldn’t make much of a difference in my environment.
I also don’t want to make my internet so restrictive that it is near impossible to do anything with it.

Your advice was to keep my programs up to date, do regular virus and malware scans, stay away from dodgy sites and software and I should be fine.

The reality is if a person really wants to get in and has the necessary skill, they will regardless of what you do about it in a home environment.

Fortunately almost nobody lives next to a CIA super hacker and even if you did they probably wouldn't really care about your data all that much.

Rather focus on general personal security like 2-stage authentication and unique strong passwords.

Biggest killer is the lowest common dominator and using the same passwords everywhere.
 
What you've done so far is good. Put a pfsense firewall between your router & lan. Run linux on your computers.
 
Oh no, I was raised on Windows.
I know absolutely nothing about Linux.

/Microsoft will be so proud. ;)
 
What you've done so far is good. Put a pfsense firewall between your router & lan. Run linux on your computers.

All overkill and all just going to make your life difficult and make very little difference to someone who really wants to get in.

You aren't an enterprise, don't operate like oke.
 
Just a note.

All new devices support WPA2, so unless you are running very old equipment switch WPA off completely. WPA2 only.
 
My wireless security are set to use WPA2-PSK and AES encryption.
 
What you guys think of Keepass? I use it to generate and store all my passwords...
 
What a cool program, it showed me that my passwords are not as strong as I thought.
 
Ponder also recommended Linux, but I know absolutely nothing about it. It is not an option for me.
 
There's a very fine line between security and usability.

Too secure and you might as well disconnect and pull out the pen and paper.

Last thing I would ever want is a Block All allow some level of security at home and need to open ports and **** every time I try to do something.

My data isn't that special that anyone cares about it anyway.

Put on reasonable efforts like WPA2 strong password and changing the router username and password and I feel your job is done.

If you really want to get crazy put an Astaro UTM home edition behind your WAN. But even as a professional using these devices I don't bother.

^this :/
 
Top
Sign up to the MyBroadband newsletter
X