quote:
Originally posted by matty
- Do not broadcast your SSID
- Accept only 802.11 G connections
- Use WPA2 (AES+TKIP)
- Setup MAC address filtering on the wireless so that only trusted MAC addresses can connect
Of all those WPA2 WPA2 (AES+TKIP) is the only one really adding security. Others don't add much security for the reasons you already pointed out, although they don't hurt if you want to put up with the hassle. What matters most is your passkey. WPA2 can still be bruteforced, same rules apply as with a password:
- Non-dictionary
- Length
- Mixing types of characters