Using MAC address filtering for security

My step dad has been using MAC address filtering instead of the standard WEP or WPA security systems. It seems to work, in that when my MAC address isn't on the 'allow' list I can't get into the network.

Could anyone give me some feedback on how good this actually is as a security system?

 

Savvy Wi-Fi hackers can circumvent this by "cloning" your MAC address i.e. get their computer to pretend it has your MAC address, but this isn't the simplest thing to do and vs. the standard nextdoor neighbour trying to steal your internet it should prove quite effective.

 

To be honest, Someone can get past MAC filtering in less than 30 mins.

So in short, no, Mac filtering alone isn't good enough.

 

it's one layer that you can employ.

the analogy would be multiple doorlocks. you can have the lock in your doorknob, then a deadbolt, then one of the chain things, then a stop going into the floor, ad infinitum.

having only mac filtering is like locking one of many doorlocks. if you're comfortable with that level of security, then you're ok. if you feel like you need more security, you need to "lock" more "locks"; i.e., enable other layers of security

 

The great news is that everything can be hacked, eventually. Nothing is ever

secure. If the "lock" is theoretically secure, all one does is SE. You can get

someone to give up the secrets of the "lock" with a little work.

The way it should be! Hackers make the world go 'round.

Maybe we need to stop relying on computers so much (won't happen).

The best security?

Have nothing in the need of securing ;-)

 

anyways, to really answer the OP's question, it just all depends on how comfortable you are. Yes, MAC addresses CAN be cloned, but it takes time and effort that the casusal wifi stealers are not willing to take the time and rather go on to your neighbor. filtering is just one of many security features you can do. I personally use both WPA2 AND MAC filtering because it makes me feel MORE comfortable, but thats just my preference. For general purposes, having one type of security measure is ok for the average person. If you do have a lot of confidential data on your laptop with little or no backup, more security features is recommended.

 

post edited

 

WEP and MAC filtering are easy to crack.. I watched my friend crack into a router that was MAC address filtered only in about a minute... WEP can be cracked in the same amount of time... WPA is the least secure I would go, with WPA2 being the best...

 

post edited

 

dear nerd alerts,

if your post has been edited, it's because you posted steps on how to get around security.

please refrain from doing so in the future

thanks,

the management

 

Who cares if he can clone a MAC address? MAC filtering only leaves all traffic completely unencrypted, so anything he sends or receives over the Internet (bank statements anyone?) is completely in the clear. He NEEDS to use WEP or WPA, or just not do anything sensitive at all on the wireless.

 

If it's that simple, it's not really security now, is it? It's like yelling at someone who tells you to "Go walk on the grass!" when the sign says not to.

 

Yeah, it's so easy to do. Basically, anybody who has some understanding of linux can do it. If not, there are tons of videos showing how to on the internet. For me, I've only cracked my roommate's wep key. I just wanted to try out the software and he let me do so. If I can do it, anybody could.

Please don't remove this...

(Also, I know this is off topic, but if the admins remove what we say, it says that the bad security is good security. And everybody knows that we here at nbr want to help out our fellow friends. That is why I said WPA or WPA2 with a randomly generated passphrase is the only good security out there.)

 

I always change my WEP key, Right before I make any type of purchase online and erase all trace right after. I Change my WEP Very often, being that I live in a apt building and almost all my neighbors within reach have wireless too.

I would use Multiple WPA keys, but my smartphone has wifi too but is only WEP capable not WPA. Otherwise I would use WPA.


I also change my channel often. Has nothing to do with security, but helps sometimes when my wifi acts slow.

 

Except WEP can be cracked in minutes, no matter what your key is. It's something to do with the way the key itself is transmitted from the computer logging in and the router.