jonnyb
join:2008-03-15
Haverhill, NH | reply to jonnyb
Lets worry about the real crime
and stop worrying about the theft of some wireless internet when that could be prevented by some simple precautions, and to put someone in jail for it is an absolutely ridiculous waste of tax dollars. |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
| said by jonnyb  :and stop worrying about the theft of some wireless internet when that could be prevented by some simple precautions ... I wonder how prevalent open wifi is in residential areas anymore. When I moved to a new apartment in July of 2003, I was able to bum wifi from someone in the complex until I got my own Comcast hookup.
However, I noticed that as time went on (and 2 residences later), I could see more wireless access points, but they were secured by one mechanism or another. Maybe more people are getting with the program?
--
This isn't fair! I was only supposed to hate just ONE presidential candidate! |
|
TScheisskopf
World News Trust
join:2005-02-13
Belvidere, NJ
 ·Sprint Broadband D..
| Nah. I rode the bus home from a Dr's appt. the other day. I had my laptop with me and I was running Stumbler. The shear number of unsecured access points, as well as access points crying out for hackage, because they were using WEP, was staggering. This was in one of the more rural areas of NJ as well, or at least "exurban".
I cannot imagine what a target-rich environment it must be in more populated areas.
The clincher was some of this ride was through an Embarq-serviced area and a number of folks were using the Embarq-provided 2Wire wireless/modem. I am very familiar with that one. WPA/PSK is in there and easy to use. Still, WEP is all you see, except in a miniscule amount of cases.
Like many other security issues, it is down to human laziness and willful ignorance. The lawyer across the street has a wireless in his office. Wide open and transmitting SSID. Gawd knows I have told him I would come over and tighten his wireless up for him. Nope. Not interested. A law office. With confidential records akimbo. Sheesh. |
|
TK Junk Mail
Go ahead, make my day
Premium
join:2002-03-03
Margate City, NJ
clubs:
 ·Comcast
| reply to jonnyb
said by jonnyb :and stop worrying about the theft of some wireless internet when that could be prevented by some simple precautions, and to put someone in jail for it is an absolutely ridiculous waste of tax dollars. In this case, jail is a waste of time and money. But there should be a large fine and confiscation of the offenders computer equipment as well.
--
My BLOG .. .. Internet News .. .. My Web Page |
|
b10010011
Whats a Posting tag?
join:2004-09-07
Bellingham, WA
·Comcast Formerly ..
edit:
March 21st, @10:21AM
| reply to TScheisskopf
said by TScheisskopf :The clincher was some of this ride was through an Embarq-serviced area and a number of folks were using the Embarq-provided 2Wire wireless/modem. I am very familiar with that one. WPA/PSK is in there and easy to use. Still, WEP is all you see, except in a miniscule amount of cases. In defense of these users I have to say at least they are using something, not just being an open access point.
I have a few devices in my house that only have 128 bit WEP as their highest security level, my PDA and my kid's Nintendo DS and an old laptop with an Orinoco gold card.
So what would you suggest, WEP, open, or no internet access for these devices? |
|
TScheisskopf
World News Trust
join:2005-02-13
Belvidere, NJ | WEP, of course. Know that any kid with 5-15 minutes and an easily-obtainable, brute force WEP cracking tool could get into that access point.
You buys yer' ticket and you takes yer' chances. |
|
TK Junk Mail
Go ahead, make my day
Premium
join:2002-03-03
Margate City, NJ
clubs:
·Comcast
| reply to pnh102
said by pnh102 :I wonder how prevalent open wifi is in residential areas anymore. When I moved to a new apartment in July of 2003, I was able to bum wifi from someone in the complex until I got my own Comcast hookup. However, I noticed that as time went on (and 2 residences later), I could see more wireless access points, but they were secured by one mechanism or another. Maybe more people are getting with the program? In my area, a quick survey shows that about 50% of the AP's in the neighborhood are still open with no security at all. Most with no change in the SSID from the factory default. It would help if ALL brands of wireless APs for sale made it impossible to work unless security was 1st turned on. Maybe then security would be used.
--
My BLOG .. .. Internet News .. .. My Web Page |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
| reply to TScheisskopf
said by TScheisskopf :I had my laptop with me and I was running Stumbler. The shear number of unsecured access points, as well as access points crying out for hackage, because they were using WEP, was staggering. Well even if one is using WEP, it would still require a certain amount of effort (albeit trivial) to break into the network. I don't think that this is very popular among the "non-geek" set who would just be looking for a "quick score" for free Internet access.
As for seeing unsecure APs, did you try to associate with them? I've seen numerous seemingly unsecure APs but either I cannot associate with them (probably due to MAC address filtering), or I get directed to some sort of captive portal.
--
This isn't fair! I was only supposed to hate just ONE presidential candidate! |
|
hescominsoon
join:2003-02-18
Brunswick, MD
·Comcast
 ·Verizon Online DSL
| reply to TScheisskopf
said by TScheisskopf :WEP, of course. Know that any kid with 5-15 minutes and an easily-obtainable, brute force WEP cracking tool could get into that access point. You buys yer' ticket and you takes yer' chances. actually wep is now defeatable with a 1ghz cpu in under one miinute. |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
| reply to TK Junk Mail
said by TK Junk Mail :It would help if ALL brands of wireless APs for sale made it impossible to work unless security was 1st turned on. Maybe then security would be used. No. All that would do is reduce overall sales of wireless access points for the brands that attempted that.
--
This isn't fair! I was only supposed to hate just ONE presidential candidate! |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
| reply to b10010011
said by b10010011 :I have a few devices in my house that only have 128 bit WEP as their highest security level, my PDA and my kid's Nintendo DS and an old laptop with an Orinoco gold card. So what would you suggest, WEP, open, or no internet access for these devices? I have a similar problem with some of my handheld devices. In my cases, I just used an access point that had MAC address filtering. I configured it to allow access only to devices whose MAC addresses I specify. It is a moderately effective, device-agnostic way of providing security.
I understand though that if someone really wanted to, they could use a tool like Kismet to sniff out the MAC address of any device communicating to my AP, clone it, and break into my network, but I still think the percentage of these individuals versus the number of people looking for a "quick score" is small enough for me to not worry about it.
--
This isn't fair! I was only supposed to hate just ONE presidential candidate! |
|
TScheisskopf
World News Trust
join:2005-02-13
Belvidere, NJ | reply to pnh102
No, I did not try to hook up with them. Two reasons: establishing a connection from a moving bus is not exactly optimal, and for the second reason, homey don't play that.
Some people might. I don't. It's just a personal thing. YMMV. |
|
TScheisskopf
World News Trust
join:2005-02-13
Belvidere, NJ
·Sprint Broadband D..
| reply to hescominsoon
Perhaps so, but I assure you that the vast amount of these wireless access points have been in use since dirt was in beta testing and are sitting there under 9 inches of dust bunnies, ignored and forgotten.
My experience is that they are brough home, hooked up, run, they work and that's that. Many, if not most of their users have no idea on how to get into the admin screens and never crack the users manual. As regards any knowledge of best security practices, they have none and don't want any. Can. Not. Be. Arsed. |
|
patcat88
join:2002-04-05
Jamaica, NY | reply to TScheisskopf
In Stumbler ALL WPA connections are marked as WEP. Stumbler is too old to know what WPA is. |
|
b10010011
Whats a Posting tag?
join:2004-09-07
Bellingham, WA
·Comcast Formerly ..
| reply to pnh102
said by pnh102 :I just used an access point that had MAC address filtering. I configured it to allow access only to devices whose MAC addresses I specify. It is a moderately effective, device-agnostic way of providing security. I understand though that if someone really wanted to, they could use a tool like Kismet to sniff out the MAC address of any device communicating to my AP, clone it, and break into my network, but I still think the percentage of these individuals versus the number of people looking for a "quick score" is small enough for me to not worry about it. Exactly what I do, and how I feel about it. |
|
pnh102
Reptiles Are Cuddly And Pretty
Premium
join:2002-05-02
Mount Airy, MD
| reply to TScheisskopf
said by TScheisskopf :Two reasons: establishing a connection from a moving bus is not exactly optimal ... Hmmm... well, riding a bus, for certain people in Baltimore, can be hazardous to your health.
--
This isn't fair! I was only supposed to hate just ONE presidential candidate! |
|
TScheisskopf
World News Trust
join:2005-02-13
Belvidere, NJ | Trust me, bubba: This ain't Balto. The fact is if watching paint dry and the grass grow was an Olympic sport, this area would be like Kenya is for runners. |
|
