Skip Navigation
   
0
ANU Home | Helpdesk | Staff | Students | Library | OH&S | UniSafe
The Australian National University
Information Services@ANU
Division of Information
About DOI
InfoArticles
Quick Help
Filter: None
Services
Computing@ANU
Connecting
Email
Enterprise Systems
E-Publishing
Information Projects
Research Support
Security & Policies
Teaching
Telephones
Training & Support
Printer Friendly Version

Information Services@ANU > Connecting > Wireless > Security Recommendations

Security Recommendations

The ANU Wireless Access network is designed to balance the need for security with the ease of connection.

It is important to understand that the wireless segments of the network are completely open. Any clear text data that passes across the wireless part of the network is at risk of being viewed by someone snooping the network. When using the wireless network, you need to be aware of the risks and how best to protect yourself.

The secure use of the wireless network is practical with the careful use of applications.

  • Wireless Log-in
    • The ANU Wireless authentication process is protected using an encrypted HTTPS connection.
  • Web Browsing
    • Normal web traffic (HTTP) traverses the network in the clear. This includes any information submitted in forms.
    • Secure web servers (HTTPS) provide an encrypted session to protect passwords and content.
    • Some web services that require you to log in provide an encrypted session while you authenticate, then revert to an unencrypted session for the content. Some web-mail services such as Hotmail and Yahoo work this way, so it is important to be aware that email content that you view using this method is at risk of being viewed.
  • Email Clients
    • IMAP and POP email clients must be configured to use a secure (SSL) connection to your mail server.
    • This protects your username and password as well as the contents of your incoming email by performing all transactions using and encrypted session.
    • The ANU mail servers support SSL encryption for outgoing (SMTP) email. It is recommended that you configure your email client to use this mode.
  • Terminal sessions
    • A Secure Shell (SSH) client must be used to access terminal services. SSH sets up an encrypted session so that usernames, passwords, and keystrokes are protected.

Snooping on a wireless network is not something that is done by accident, however with the correct equipment and tools readily available on the Internet, it is relatively easy to view the contents of wireless traffic. Note that wired walk-up ports are not subject to snooping as the traffic passes entirely across a switched network.

We strongly recommend that you install some form of personal firewall (eg ZoneAlarm), and up to date anti-virus software (eg Sophos).

ANU staff with access to Virtual Private Network (VPN) services are able to connect to VPN servers via the wireless network.
Please direct all enquiries to: Ask ANU
Page authorised by: Director, Corporate Information Services
The Australian National University — CRICOS Provider Number 00120C