South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
Steps that I’ve taken is the following:
- Changed the routers’ admin account name and created a complex password.
- Disabled remote login to the router.
- Use WPA/WPA2 encryption set a strong password for Wi-Fi access.
- Disabled broadcasting of the SSID.
- I keep my anti-virus program up to date and do regular scans.
- I do not open questionable or unknown emails.
- I do not visit websites that are risky.
Two important things you are missing.
Regularly run malware removal applications like Malware-bytes. Keep all your applications and operating systems up to date. Especially browser, Java and anything from Adobe. Your network is still not secure, but it will be more secure than most.
There are so many reports of security breaches and hacking that it made me wonder how secure my home network is.
Steps that I’ve taken is the following:
- Changed the routers’ admin account name and created a complex password.
- Disabled remote login to the router.
- Use WPA/WPA2 encryption set a strong password for Wi-Fi access.
- Disabled broadcasting of the SSID.
- I keep my anti-virus program up to date and do regular scans.
- I do not open questionable or unknown emails.
- I do not visit websites that are risky.
Is there anything else I should do to make it more secure?
Recommendations will be most welcome, thank you.
Ps. I’m using a TP-Link WD8970 Modem Router.
Thank you all for your assistance.
From what you are saying is that my network does not fall within a high risk area. Going overboard with additional hardware wouldn’t make much of a difference in my environment.
I also don’t want to make my internet so restrictive that it is near impossible to do anything with it.
Your advice was to keep my programs up to date, do regular virus and malware scans, stay away from dodgy sites and software and I should be fine.
Biggest killer is the lowest common dominator and using the same passwords everywhere.
What you've done so far is good. Put a pfsense firewall between your router & lan. Run linux on your computers.
There's a very fine line between security and usability.
Too secure and you might as well disconnect and pull out the pen and paper.
Last thing I would ever want is a Block All allow some level of security at home and need to open ports and **** every time I try to do something.
My data isn't that special that anyone cares about it anyway.
Put on reasonable efforts like WPA2 strong password and changing the router username and password and I feel your job is done.
If you really want to get crazy put an Astaro UTM home edition behind your WAN. But even as a professional using these devices I don't bother.