How to Disable WPS in Order to Protect Your Network

WPS leaves your Wi-Fi vulnerable to hacking

If you changed the default administrator password on your router, your home network's weakest part is a feature called WPS, and it's a feature available in many routers. WPS stands for Wi-Fi Protected Setup, and it was introduced to make it easier to connect new devices to a network such as a Sky TV box or game console.

How to Disable WPS in Order to Protect Your Network
Host Sorter / Unsplash

How Does WPS Work?

The idea behind WPS is that when a button on the router and a button on the device are pressed, both items pair automatically. This way, you don't have to do any technical configuration.

If a device doesn't have a WPS button, the router can be set up with a PIN. The PIN is entered in the setup screen for the device to create a connection instead of the long 16-character WPA password often provided by routers.

The PIN is an eight-digit number and is easily hacked. For a human, hacking an eight-digit number takes some time. However, the process of hacking the WPS PIN of a router is as simple as installing a piece of software that does the hard work. There aren't any difficult command-line options to enter.

Does It Matter If Somebody Uses Your Wi-Fi Connection? 

With the right software, unauthorized users on your Wi-Fi connection can:

  • View all traffic sent to and from a computer over HTTP.
  • Download illegal content using a network. 
  • Attempt to hack a computer.
  • Attempt to access network shared hard drives on a home network.
  • If the default username and password are set on the router, they can access the router settings and make changes.
  • Perform a man in the middle attack by altering data sent from and to a computer.

How to Disable WPS

The procedure to disable WPS differs by the router manufacturer.

Apple Airport

WPS is not available for Apple Airport devices, so you should be protected.

ASUS

  1. Open a web browser, then type 192.168.1.1 in the address bar.

  2. Enter the administrator username and password (the default username is admin, and the default password is admin).

  3. Select Advanced Settings > Wireless.

  4. Choose WPS from the tab.

  5. Move the Enable WPS toggle switch to the off position.

Belkin

  1. Open a web browser, then type 192.168.2.1 (or http://router) in the address bar.

  2. Select Login in the upper-right corner.

  3. Enter the router password (the default is to leave this field blank), then click Submit.

  4. Select Wi-Fi Protected Setup under the Wireless menu on the left side of the screen.

  5. Change the Wi-Fi Protected Setup drop-down list option to Disabled.

  6. Select Apply Changes.

Buffalo

Buffalo routers are not affected by the WPS problem.

Cisco Systems

  1. Open a browser and enter the IP address for your router. Cisco devices feature different options that allow you to get both the IP address and default usernames and passwords for your specific hardware.

  2. Select Wireless > Wi-Fi Protected Setup from the menu.

  3. Select Off to disable WPS.

  4. Select Save to apply your settings.

D-Link

  1. Open a browser and type 192.168.1.1 into the address bar.

  2. Log in to the setup (the default username is admin, leave the password empty).

  3. Select the Setup tab.

  4. Clear the Enable in Wi-Fi Protected Setup check box.

  5. Select Save settings.

Linksys

In theory, Linksys routers are no longer affected by this problem. You cannot turn off WPS, but Linksys routers prevent brute-force attacks on the PIN, so these routers resist the sort of attempts made by common hacking tools.

Netgear

  1. Open a browser and type www.routerlogin.net into the address bar.

  2. Enter the username and password (the default username is admin, and the default password is password).

  3. Select Advanced Setup, then choose Wireless Settings.

  4. Under WPS Settings, select the Disable Router's Pin check box.

  5. Select Apply.

Trendnet

  1. Open a browser and type 192.168.10.1 into the address bar.

  2. Log in to the router settings page (the default username is admin, and the default password is admin).

  3. Select WPS under the Wireless menu.

  4. Change the WPS drop-down list option to Disable.

  5. Select Apply.

ZyXEL

  1. Open a browser and type 192.168.0.1 into the address bar.

  2. Log in to the router settings (the default username is admin, and the default password is 1234).

  3. Select Wireless Setup.

  4. Select WPS.

  5. Select the blue button to disable WPS.