how-to block ads
|
Share Topic
 |
 |
|
|
 plencnerbPremium
join:2000-09-25
Elgin, IL
kudos:2 | Re: Of course it isn't. I agree with you there.
This is how I wish it would work in these cases.
However the process gets started, your IP comes up as having done something wrong. This of course is your public IP, and by working with the ISP's, they figure out who had that IP at the time. You get the standard warning (either letter or e-mail) with your public IP, and the date/time of the incident.
You as the "owner" of the WiFi device, go into your logs, and pull up all the info on who was connected to the WiFi device (or, your network as a whole) at the time. Then, doing research on every system, you verify what action was taking place at the time of the event, to see if the activity matches.
Since most routers (both Wired and Wireless) log the MAC address of each system, you can then go through all the ones that were connected. Once you have verified that the system in question was not one you own, you now have the MAC address of the device that connected at the time of the alleged violation.
From there I would think you would be able to do some kind of search on the MAC, to try to figure out who the real "thief" is, and then track that person (or people) down.
Is that a lot of work? Of course it is. Does it make a lot of assumptions that every router / WiFi device has the logs enabled at the proper level to display the information needed? Yes it does. Could this cost a lot of money in research? You bet.
My point is this: If you take the time, effort, and the money to do your job right, then there is no issues with having open WiFi's, as you would be able to find out exactly who did whatever it was they were not suppose to do on that connection.
--Brian
--
============================
--Brian Plencner
E-Mail: CoasterBrian72Cancer@gmail.com
Note: Kill Cancer to Reply via e-mail | |
|  | | Re: Of course it isn't. The only issue with that is most routers only log the last couple hundred entries. By the time the police actually get enough info to come knock on your door it's probably going to be at least a week after the event. So even if you are tech savvy enough to even know what a MAC address is (probably 99% of people don't) you would also need to be running a syslog server to actually hold all of your old information. I would wager that not even 1/4 of the people that post here could actually produce logs from 2 weeks ago. | |
| | Reviews:
 ·Charter
| Re: Of course it isn't. I know I cannot. My router only logs as much as its internal memory can hold, and then deletes the oldest. By the time I get the infringement notice(which takes about 2 weeks to get to you), those logs are gone forever. If I have an extremely busy network day, my logs hold less than 24 hours worth of info, and really, I think they hold about 24 hours worth at most anyways. | |
|
Reviews:
 ·AT&T U-Verse
| said by plencnerb:Since most routers (both Wired and Wireless) log the MAC address of each system, you can then go through all the ones that were connected. Most only log the MACs of active devices.
said by plencnerb:From there I would think you would be able to do some kind of search on the MAC, to try to figure out who the real "thief" is, and then track that person (or people) down. You cannot find out who has a certain MAC. Especially when spoofing a MAC is trivial and someone with "proper intentions" may spoof it to something else each time... Yes, I can make my MAC appear as 00:00:00:00:00:01... | |
| axus
join:2001-06-18
Washington, DC | The burden is on me to prove my innocence? | |
| |  XiodenPremium
join:2008-06-10
Monticello, NY
kudos:1 | Re: Of course it isn't. said by axus:The burden is on me to prove my innocence?
In the wonderful US of A that is generally the case, yes. | |
|
| | said by plencnerb:You as the "owner" of the WiFi device, go into your logs, and pull up all the info on who was connected to the WiFi device (or, your network as a whole) at the time. Then, doing research on every system, you verify what action was taking place at the time of the event, to see if the activity matches.
Epic fail.
There's no law which:
a) prohibits you from doing a factory reset on your router any time you (or Starbucks) wants to.
b) there is no law which requires you (or Starbucks) to keep a log of all MAC address which have connected to your router.
c) there is no law against you changing the MAC address of your device at any time of your choosing. | |
|
| |
|
