<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div><br></div><div><br>On Mar 22, 2013, at 16:45, Tim Randles <<a href="mailto:tim.randles@gmail.com">tim.randles@gmail.com</a>> wrote:<br><br></div><blockquote type="cite"><div><div dir="ltr"><div style="">Locked wifi considered harmful</div><div style=""><br></div><a href="https://www.eff.org/deeplinks/2011/04/open-wireless-movement">https://www.eff.org/deeplinks/2011/04/open-wireless-movement</a><br>
<div class="gmail_extra"><br></div></div></div></blockquote><div><br></div><div>I remember reading that and considering it. My argument is simple: as has been discussed here previously, timewarner's service sucks. Typically, I can hardly stream a 2 minute YouTube video in 5 minutes and l'm the only one on the network. I don't need anyone else on it too.</div><div><br></div><div>I'm also pretty sure that while you might be protected from criminal ramifications of someone using your connection, the telco may still hold you responsible for any AUP violations. They may decide that you're in breach one of two ways - either for the activity itself, or for re-selling your residential connection (for free, but by letting others use it they could make the argument.)</div><div><br></div><div>That being said, I'm probably going to end up with FTTH in the next few months. I'm planning to have a rate-limited open wifi available. If you're lost in a neighborhood 10 minutes north of the Kansas Speedway, you can use my connection to find your way.</div><br><blockquote type="cite"><div><div dir="ltr"><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Mar 22, 2013 at 3:41 PM, Vince Herried <span dir="ltr"><<a href="mailto:vherried@gmail.com" target="_blank">vherried@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">A European friend sent me a link to this document.<br>The introduction reads:<br><br><br><blockquote style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex" class="gmail_quote">
Two years ago while spending some time with the Nmap Scripting Engine
(NSE) someone mentioned that we should try the classic telnet login
root:root on random IP addresses. This was meant as a joke, but was
given a try. We started scanning and quickly realized that there should
be several thousand unprotected devices on the Internet. <br>
<br>
After completing the scan of roughly one hundred thousand IP
addresses, we realized the number of insecure devices must be at least
one hundred thousand. Starting with one device and assuming a scan speed
of ten IP addresses per second, it should find the next open device
within one hour. The scan rate would be doubled if we deployed a scanner
to the newly found device. After doubling the scan rate in this way
about 16.5 times, all unprotected devices would be found; this would
take only 16.5 hours. Additionally, with one hundred thousand devices
scanning at ten probes per second we would have a distributed port
scanner to port scan the entire IPv4 Internet within one hour.</blockquote><br><br>Here is a link the the paper.<br><a href="http://internetcensus2012.bitbucket.org/paper.html" target="_blank">http://internetcensus2012.bitbucket.org/paper.html</a><br>
<br>Do we believe it or not?<br>If this is true is there any wonder that we have so many news accounts of some sophisticated hacker<br>getting into secure accounts.<br><br>My own personal observation showed that huge numbers of WIFI sites are still open.<br>
When I walk my neighborhood and see names like belkin54g, dlink, linksys, NETGEAR. I know I'm only a few steps <br>away from another WIFI hot spot. There is some hope, it appears that most newer WIFI routers that folks get from their ISP are password protected by default but all those old machines are still working just fine. The ones the home owner buys from Micro Center appear to be open. <br>
<br>Has any one bought a WIFI router and found them to be password enabled by default. A password based on<br>the serial number of the device maybe so one can't enter an account name and password directly from the owners manual.<br>
<br>If you want to gain access to for instance a linksys router, search the web for the account id and password.<span class="HOEnZb"><font color="#888888"><br><br><br><br>-- <br>Vince's outgoing mail address
</font></span><br>_______________________________________________<br>
colug-432 mailing list<br>
<a href="mailto:colug-432@colug.net">colug-432@colug.net</a><br>
<a href="http://lists.colug.net/mailman/listinfo/colug-432" target="_blank">http://lists.colug.net/mailman/listinfo/colug-432</a><br>
<br></blockquote></div><br></div></div>
</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>colug-432 mailing list</span><br><span><a href="mailto:colug-432@colug.net">colug-432@colug.net</a></span><br><span><a href="http://lists.colug.net/mailman/listinfo/colug-432">http://lists.colug.net/mailman/listinfo/colug-432</a></span><br></div></blockquote></body></html>