I've been stumbling onto blogs that provide "tips" for installing a WiFi network. Unfortunately several of these sites suggest disabling SSID broadcast, enabling MAC address filtering and other terrible suggestions as security tips. This is utter nonsense so I'm going to show you why NOT doing this is a better decision.

Take this analogy. Everyone knows banks have cash. If I take down the "Bank" sign in front of the bank it doesn't make the bank any more secure because bank robbers still know it's a bank. Removing the sign only makes it harder for customers to find. This is analogous to hiding your SSID. It decreases usability for legit users but has no impact on bad guys.

Lets use the bank again but this time the bank has a guard who will only allow entry to people wearing a simple sticker with a valid account number. A robber could watch any customer enter, copy their account number and walk right in. On the other hand, if you forgot your account number you'd have to refer to your statements to look it up. This guard is about as ineffective as MAC address filtering.