How risky is connecting to a hidden wireless network?

The risk here is in believing that a "hidden SSID" changes anything to the security. A non-hidden SSID means that the router will shout at regular intervals "hello everybody, I am Joe the Router, you may talk to me !". A hidden SSID means that the client machine (not the attacker's machine) will shout at regular intervals "Hey, Joe, where are you ? Please respond !". Either way, assuming that the SSID (here, "Joe") is not known to any attacker would be overly naive.

A point that could be made is that when the SSID is hidden, then an attacker may assume that the SSID is valuable in some way; so, when your PC connects, your PC shows that it knows the valuable SSID, and thus is also a valuable target in some sense. Not that it would change much things in practice: attackers will attack everything in range anyway, as a matter of principle.


Non-broadcast wireless networks aren't inherently less secure, but they're not more secure either. Hiding your wireless network (not broadcasting its SSID) doesn't make your network actually hidden as there are many tools that can help you find "hidden" networks, such as Kismet and inSSIDer.

If configured to do so, Windows Vista and Windows 7 will have to "ping" in the air to find the hidden network. Because of that, when you're not connected to the network, you'll be advertising that you're trying to connect to network X. If someone is listening to these signals, they can easily find out that you have a network called X to which your computer is attempting to connect.

As for the legal issue, I've actually heard that in some jurisdiction it's illegal to leave your network open, but I have never really heard that you have to hide it.


There is no extra risk associated with connecting to a hidden network over a non-hidden one. What matters is who else is connected to that network, and what their intentions are.

When you connect to any network, you are giving all other users of that network access to a very large surface area in terms of your machine's security.

See this answer for more information on what risks are involved in this.

But to reiterate the answer to your overall question; no, whether the network is hidden or not is not really relevant. All you should care about is who else is connected.

Tags:

Wifi

Obscurity