Slashdot Mirror

← Back to Stories (view on slashdot.org)

Toronto, The Naked City

Posted by michael on from the so-many-networks-so-little-time dept.

PunWork writes "In an effort to promote wireless network security, Toronto consulting firm IpEverywhere (pun intended) has published a map of downtown Toronto, showing the location of both encrypted and unencrypted ('naked') wireless networks. Is this going to help spread awareness, or is this just going to encourage people to abuse the (apparently) ignorant? The Toronto Star has a story about the map and the consulting firm here."

211 comments

  1. Easy to build such a map in Toronto by Anonymous Coward · · Score: 0

    Just climb on top of the CN tower with your scanning gear.

    1. Re:Easy to build such a map in Toronto by Jetson · · Score: 2

      That would tell you there are lots of nodes, but not where they are located at street level. Your "map" would show hundreds of nodes *AT* the CN Tower since that's where you were standing when you connected to them.

  2. eh? by digitalsushi · · Score: 1
    Toronto consulting firm IpEverywhere (pun intended)


    I dun get it.

    --
    slashdot: where everyone yells sarcastic metaphors to themselves to understand the issue
    1. Re:eh? by Anonymous Coward · · Score: 0

      Well, it could be IP as in the protocol, or IP as in "I. P. Freeley". Does that clear it up for you?

    2. Re:eh? by Jonny+Ringo · · Score: 2

      Well the submitter name is "PunWork". So maybe he just constantly tries to find puns that work. I'll I have to say is don't quit your day job PunWork, whatever that is!

    3. Re:eh? by EvilAlien · · Score: 0, Offtopic

      That is his day job, hence 'PunWork'. Maybe he should quit his day job afterall.

      --
      perl -e 'print $i=pack(c5, (41*2), sqrt(7056), (unpack(c,H)-2), oct(115), 10)'
    4. Re:eh? by HP+LoveJet · · Score: 0, Offtopic

      I'm going to call my consulting company "Hey Everybody I'm A Stupid Moron With An Ugly Face And A Big Butt And My Butt Smells And I Like To Kiss My Own Butt."

      --
      spawn_of_yog_sothoth
    5. Re:eh? by Anonymous Coward · · Score: 0

      The pun I see in IpEverywhere is the good ol' elementary school prank...

      Say the letters "I" "P" and then say "Everywhere" ...get it?

      More commonly little kids will taunt another kid to say I P Freely, but I forgot how they get them to say it... heh, sorry, even I am old when I think about how long ago kids used it...

    6. Re:eh? by Anonymous Coward · · Score: 0

      IPAnywhere

      "I pee anywhere"

      "I urinate in any location" ... christ... do puns have to be spelled out for slashdot readers these days or what?

    7. Re:eh? by Anonymous Coward · · Score: 0

      Hey, Flaaaaaaaaaaaaanders...

    8. Re:eh? by Anonymous Coward · · Score: 0

      OK wise guy, explain IBM then.

    9. Re:eh? by ActiveSX · · Score: 1

      Really? I Pee Everywhere? Naked Wireless? Get it? *Nudge* *Nudge*

  3. fp by mclaren_1010 · · Score: 0

    fp

  4. Get real.. by unicron · · Score: 2

    Like Toronto's local wardrivers don't have maps that blow that one out of the water.

    --
    Finally, math books without any of that base 6 crap in them.
    1. Re:Get real.. by unicron · · Score: 3, Informative

      Follow up: Wardrive map of the North Pole:

      http://www.securitytribe.com/

      Navigate it to the wardriving section.

      Santa seems pretty lax on security, you'll notice.

      --
      Finally, math books without any of that base 6 crap in them.
    2. Re:Get real.. by BitchAss · · Score: 1

      who has sites? I've got this one

      --
      Like sex? Read and write about it! Indecent Blogging
  5. Flash? by Anonymous Coward · · Score: 0

    Bah!

  6. its not an "or" situation by deft · · Score: 4, Insightful

    both will happen.

    1. the idiots will try and hack and abuse.
    2. the companies will slowly gain awareness, try to figure out how to secure themsleves, secure funding, initiate sucurity protocols, fix holes, etc.

    gee, i wonder who will get going first. the company or the idiots.

    --

    There's nothing Intelligent about Intelligent Design.
    1. Re:its not an "or" situation by rkwright · · Score: 4, Insightful

      I agree. If you take a look at other areas in computer security (for example, Windows 2000 servers and insecure IIS setups), the actual breakins/worms/etc. have (albeit slowly) caused more admins to lock down their Win2K servers. It has also caused a change for the better with the vendor (Microsoft) in that the next version of their server software (.Net Server 2003) will initially be relatively locked down, and the admin who is configuring the server will have to specifically turn services on. Thus, abusers and intruders have a necessary place by providing the motivation for improving security.

      However, with so many consumer-based 802.11 access points out there, I doubt that Joe Homeoffice will even realize how to lock down their networks. In this case, the vendors should start by having as much default security as possible, as well as some helpful reading in the instruction manuals for how to secure your wireless setup.

    2. Re:its not an "or" situation by Jucius+Maximus · · Score: 2
      "However, with so many consumer-based 802.11 access points out there, I doubt that Joe Homeoffice will even realize how to lock down their networks. In this case, the vendors should start by having as much default security as possible, as well as some helpful reading in the instruction manuals for how to secure your wireless setup."

      I agree. There is a similar lack of security on ResNets by clueless students. Basically at the start of each semester, some of by buddies scan the resnets for insecure machines and print out some security documentation on the printer of the insecure person or deposit a helpful security document on the person's Windows desktop. (I don't actually do this because I don't live in university residence.)

      If people did that on wardrives, you might call it 'drive-by security consulting' .

    3. Re:its not an "or" situation by earlytime · · Score: 3, Interesting
      here's what will happen:
      the hackers will get the maps and start mucking with wireless nets in toronto. As the owners of the wireless nets notice that they're being abused, they'll call security firms hoping they will fix the problems.
      Companies with weak security don't usually know they have weak security, and they don't read up on security news, so they won't know that ipeverywhere has "assisted" hackers in finding their insecure wireless network. But if they do find out, then they'll realize that the security firms and the hackers are working hand-in-hand to get $$$ from the companies. They may not be complicit, but they are symbiotic. This is just another case along the lines of what gweeds was talking about at HK2K
      , but you knew that already..... right?

      --

    4. Re:its not an "or" situation by Dread_ed · · Score: 1

      1. the idiots will try and hack and abuse.
      2. the companies will slowly gain awareness, try to figure out how to secure themsleves, secure funding, initiate sucurity protocols, fix holes, etc.

      WOOOOHOOOO!!!!!

      The sooner that this happens the better.

      Now all my laid off IT buddies can get back to work securing the wireless networks for all the companies that fired them last year. Course, maybe some of them could pose as "the idiots," (see above) thereby hastening and ensuring their return to gainful employment!

      Maybe then they'll lay off buggin' me for the $20 I borrowed in highschool that I never paid back.

      "Sophocles...Euripides...Meet my cousin---Testacles."

      --
      When the only tool you have is a claw hammer every problem starts to look like the back of someone's skull.
    5. Re:its not an "or" situation by Phroggy · · Score: 2

      Joe Homeoffice certainly doesn't know how to lock down his Web server.

      adsl-68-20-215-135.dsl.chcgil.ameritech .net - - [10/Sep/2002:12:47:47 -0700] "GET /scripts/..%255c%255c../winnt/system32/cmd.exe?/c+ dir" 404 83

      dsc01.hoi-tx-6.rasserver.net - - [10/Sep/2002:13:19:58 -0700] "GET /default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
      NNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN%u9090%u685 8%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858% ucbd3%u7801%u9090%u9090%u8190%u00c3%u
      0003%u8b00% u531b%u53ff%u0078%u0000%u00=a HTTP/1.0" 400 328

      207.248.53.14 - - [10/Sep/2002:18:38:14 -0700] "GET /default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
      NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN%u9090%u685 8%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858% ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u5 31
      b%u53ff%u0078%u0000%u00=a HTTP/1.0" 400 328

      --
      $x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
      $x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
  7. Ironically... by Anonymous Coward · · Score: 3, Funny

    The map on the site doesn't cover Toronto's nude beach at Hanlan's point.

    1. Re:Ironically... by Anonymous Coward · · Score: 0

      Hmm... You must be one of those idiot that bring skiing equipment here to Toronto in the middle of July.

      The weather today in Toronto is 34 celcius, that's 90F plus.

    2. Re:Ironically... by Anonymous Coward · · Score: 0

      i work tech support for a company in waterloo . And deal mainly with americans..

      If i only had a tape recorder for half of the telephone calls.

      I truly think most americans beleive there is no other country than the US of A..

      sad....

    3. Re:Ironically... by Anonymous Coward · · Score: 0

      Dude, that is a gay nude beach. Consider this a warning.

    4. Re:Ironically... by ergo98 · · Score: 1

      Mind you we Canadians have bought into the Northern perception as well. A recent National Post article was hyperbolizing about rising water levels, and how Toronto would soon be "Venice North". Imagine their suprize when an alert reader notified them that Toronto is actually further South than Venice. Indeed, Toronto is further South than the significant majority of Europe, etc.

    5. Re:Ironically... by Anonymous Coward · · Score: 0

      It is *NOT* a gay nude beach. It is a nude beach which happens to be commonly frequented by gays - but certainly not exclusively gays. There are plenty of straight nudists on Hanlan's.

    6. Re:Ironically... by Anonymous Coward · · Score: 0

      Never lie on your stomach on that beach! I found out the hard way.

  8. That's lame by Jonny+Ringo · · Score: 2, Insightful

    Unencrypted networks are now referred as "naked" networks? They just called it that to get more people to read it.

    Maybe someone should make a new insecure Linux distro called "Naked Linux". It will be great for the desktop to compete with Windows whom has always been naked. (Maybe that's Red Hats secret Plan). In the mean time Windows is trying to get dressed. Stupid 2 legged pants!

    1. Re:That's lame by Soko · · Score: 2

      It will be great for the desktop to compete with Windows whom has always been naked. (Maybe that's Red Hats secret Plan).

      Well, the latest RedHat beta is now called "null", so you never know...

      Soko

      --
      "Depression is merely anger without enthusiasm." - Anonymous
    2. Re:That's lame by (trb001) · · Score: 1, Offtopic

      Oh, would that distro come pre-installed with this?

      --trb

    3. Re:That's lame by icejai · · Score: 1

      Actually, there's an online news broadcast site thenakednews.com based in Toronto where the anchors slowly take all their clothes off while they report news.

  9. Its obvious! by FortKnox · · Score: 2

    Is this going to help spread awareness, or is this just going to encourage people to abuse the (apparently) ignorant?

    I'd put my life savings on the aduse of the ignorant.

    Lets see, annually, people get viruses from opening attachments in their emails. How many people, do you think, get re-infected because of ignorance?

    How many people go to windowsupdate.microsoft.com for security patches?

    Yeah, most IT people know what they are doing, and don't do anything foolish with their security, but you know that a lot of average users are learning to setup networks, and setting up a wireless network isn't exactly rocket science.

    I anticipate a lot of abuse in the city of Toronto...

    --
    Good quote, too many chars. Seriously, the slashdot 120 char limit sucks!
    1. Re:Its obvious! by Anonymous Coward · · Score: 4, Insightful

      Yeah, most IT people know what they are doing, and don't do anything foolish with their security, but you know that a lot of average users are learning to setup networks, and setting up a wireless network isn't exactly rocket science.
      HAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHA!

      oh man that is really funny!

      Most IT people dont know squat. and very very few of them know much about, let alone even understand security.

      If your statement were true then corperate break ins and virus's would be a much smaller problem.. 99% of all virus attacks I get are from INSIDE corperate coming from the T1 ties to the NOC not from any of my users or the internet gateway I have. Whenever there's a discussion about Virus scanners and basic virii security.. over 1/2 the IT professionals on the conference call have no idea how to ensure that all the machines are up to date or protect their networks.

      Also, I have had to resort to firewalling the corperate side to protect my network... Yes, the TRUSTED corperate network T1 tie is firewalled by me to keep out attackers and virii.

      I am one of about 700 IT professionals in my corperation... and I have to spend valuable time securing my network from the bungling boobs that this company hired.

    2. Re:Its obvious! by quantaman · · Score: 2

      Hmmm... Lets see 11:21 by my time, I think that would make it 1:21 in Toronto? Yep, I think your company does need to get rid of some of those bungling boobs they have working on their network ;)

      --
      I stole this Sig
  10. map here by Anonymous Coward · · Score: 1, Informative

    http://www.nakedwireless.ca/winudcol.htm

  11. Spammers by The+Turd+Report · · Score: 5, Insightful

    I wonder how long it will take spammers to clue in on this? It is a wonderful deal for spammers; as they are untraceable via this method. There are steps that people running these networks could do to prevent spammers, but still allow legit users. But, you all know how well some admins look after security...

    --
    Michael Loves Me!
    1. Re:Spammers by kavau · · Score: 1

      Drive-by spamming.

      Ugh...

    2. Re:Spammers by EvilAlien · · Score: 1

      They spammers are already all over this like a fat kid on a smartie. Check out my comment below for URLs n stuff.

      --
      perl -e 'print $i=pack(c5, (41*2), sqrt(7056), (unpack(c,H)-2), oct(115), 10)'
    3. Re:Spammers by Jucius+Maximus · · Score: 1
      "I wonder how long it will take spammers to clue in on this? It is a wonderful deal for spammers; as they are untraceable via this method. There are steps that people running these networks could do to prevent spammers, but still allow legit users. But, you all know how well some admins look after security..."

      Damn, stop giving them ideas!

    4. Re:Spammers by jeffy124 · · Score: 1, Informative

      hmmm. I only tried submitting an article dealing with that topic last week

      --
      The One Rule Of Chess You'll Ever Need: Don't play someone who carries a kit in their bookbag.
    5. Re:Spammers by The+Turd+Report · · Score: 1

      I reposted my ideas on securing WLANs agains spammers in to this article.

      --
      Michael Loves Me!
  12. ... obligitory simpsons reference by edrugtrader · · Score: 1, Offtopic

    i don't quite understand this... lets do an interview with the author.

    Mr. Freely? come on guys, I.P. Freely!?

    --
    MARIJUANA, SHROOMS, X: ONLINE?! - E
    1. Re:... obligitory simpsons reference by Anonymous Coward · · Score: 0

      Why is this modded offtopic? I find it both amusing and relevant!

  13. Computer viruses go airborne by jhines0042 · · Score: 4, Interesting

    People get viruses delivered the their computers via email, the net, etc...

    What is to stop viruses now becoming "airborne" and people who use an open wireless network unwittingly picking them up or (knowingly or unknowingly) transmitting them into open wireless networks?

    Surely most people who wardrive would be smart enough to avoid them through various means... but most people who use computers are fairly clueless about security and virus protection.

    Any known cases of wifi virus infection?

    --
    42 - So long and thanks for all the fish.
    1. Re:Computer viruses go airborne by Cecil · · Score: 2

      For a virus to be able to infect your system simply by sending a network packet to your machine, that requires that someone first finds a remote root vulnerability within the network stack of your operating system.

      IIRC, This has happened, and may happen again, but it's REALLY REALLY UNTHINKABLY RARE. Most network stacks have been rock solid for 30 or 40 years.

      So yes, it's a nice, scary theory. But I wouldn't bet on it happening any time soon.

      --
      Random and weird software I've written.
    2. Re:Computer viruses go airborne by Anonymous Coward · · Score: 0

      This is bad. If aliens are running a SETI project, they might get infected. We wouldn't want to start an interstellar war that soon, now do we?

    3. Re:Computer viruses go airborne by jhines0042 · · Score: 2

      Nice scary theory, but...

      Lets say I have a computer that is infected with a virus. This virus (say Klez) looks for network shared drives to copy itself to.

      I also have a 802.11b network.

      Someone has a laptop with a shared network drive with, for some reason (ignorance), full permissions turned on.

      Said person logs into my network because they are nearby and their network card finds the network (windows XP does this nicely) and then Klez, running on my machine, finds your network drive and copies itself there as "readme.txt.exe" or something else like that.

      Could be more likely than you might want to think. Only involves two stupid people in proximity who have technology they don't understand to have it happen. I can't even swing a dead keyboard* and not hit two idiots with Technology around here.

      (*swinging dead cats is just too hard)

      --
      42 - So long and thanks for all the fish.
    4. Re:Computer viruses go airborne by Anonymous Coward · · Score: 0

      That's not how you'd do it...

      The idea is that normally a virus' only entry point into a 'safe' coprorate network is via some sort of service (such as email, or web).

      Imagine you have access to a company's LAN, and because of poor security, you are able to access files of a computer over NetBIOS. All you need then is to replace some file on a computer and you have implanted a virus via airwaves.

      It's actually more of a Trojan at that point, but still...

      It's not so far fetched.

    5. Re:Computer viruses go airborne by BitchAss · · Score: 1

      There is a virus like the one you mention. I had an incident with the FunLove virus last year. Good fun.

      --
      Like sex? Read and write about it! Indecent Blogging
    6. Re:Computer viruses go airborne by Kallahar · · Score: 2

      Do you have ANY idea how viruses actually spread? the medium is irrelevant.

      Travis

  14. Yuck! by Anonymous Coward · · Score: 0

    When I read that headline, my first though went out to several Toronto women I know... Naked... Ick! May God (or whatever deity you believe in) have mercy on our souls if that were to happen.

  15. Maps by NetJunkie · · Score: 2

    Which other sites show maps of APs? I'd like to see if my neighbor's is on there. Wide open...default password on the router...

    I thought I remember seeing a site once where you could just enter a zip code to get an idea.

  16. Toronto, the most secure city? by dattaway · · Score: 2

    It might be that all these points are simply honeypots.

    Did they make tcp connections to find out?

  17. Wireless nodes.. by ldopa1 · · Score: 4, Funny

    Cool, now when I go to Toronto, I have a map of all of the Starbucks downtown...

    --
    The Dopester
    "Yes, I'm a Karma Whore, but I'm doing it to pay my way through school."
    1. Re:Wireless nodes.. by Jucius+Maximus · · Score: 2
      "Cool, now when I go to Toronto, I have a map of all of the Starbucks downtown..."

      You don't need a map. If you're in the core, all you have to do is turn yourself around 360 degrees and you will most likely see a coffe shop, probably a Starbucks or Timothy's (not to be confused with Tim Horton's.)

    2. Re:Wireless nodes.. by Capt.+DrunkenBum · · Score: 1

      I got that beat.. On Robson St. in Vancouver, there is a corner with 3 coffee shops, and 2 of them are Starbucks.

      --

      Not everyone deserves a 320i

    3. Re:Wireless nodes.. by Jucius+Maximus · · Score: 2
      "I got that beat.. On Robson St. in Vancouver, there is a corner with 3 coffee shops, and 2 of them are Starbucks."

      I can one-up you on that ... in the office tower where I used to work in Toronto, there were 3 coffee shops in the building and two of them were on the same floor.

    4. Re:Wireless nodes.. by rtaylor · · Score: 2

      Ok.. I did a 360 at York / Adelaide and saw both a StarBucks, Timothy's, and if you look hard you can see a Tim Hortons.

      --
      Rod Taylor
    5. Re:Wireless nodes.. by rtaylor · · Score: 2

      Lol.. I just realized there is another Starbucks and Tim Hortons underground, one story below street level.

      So that makes 5 shops within about 150 paces.

      --
      Rod Taylor
    6. Re:Wireless nodes.. by Craig+Davison · · Score: 1

      At 5th Avenue Place (formerly Esso Plaza) in Calgary, there's two Second Cups. One's on the ground floor and the other on the second, and you can see both if you stand in a certain spot on the ground floor.

      --
      Hands in my pocket
    7. Re:Wireless nodes.. by ergo98 · · Score: 1

      There's a Second Cup just a bit West of there on Adelaide, and if you go East there's a Tim Hortons and some no name coffee shop on the North Side across from First Canadian, and two Timothy's (one in down at the PATH level, and one on the 1st floor) in First Canadian. I usually partake of Timothy's in First Canadian, though my real favourite is definitely Second Cup.

    8. Re:Wireless nodes.. by SatoriGFX · · Score: 1

      Starbucks? Yuck. The only thing they know how to do is over-roast their beans. All of their coffee tastes almost the same (just stronger or weaker but you can't taste the subtleties because they are simply roasted too much). Timothy's is the best of the coffee chains (I buy their beans too sometimes - pretty good, tops of the coffee chains again). At Timothy's there is a distinct and noticable differences in taste and strength of their many blends. I know. I have tried them ALL (yes, I am definitely a coffee freak). If you want to buy really good beans in Toronto try "The Coffee Tree" on Bloor. They roast all of their beans on site (and will even do a custom roast for you at no extra charge). They aren't cheap though. SatoriGFX.

      --
      https://www.accountkiller.com/removal-requested
  18. IpEverywhere by bond485 · · Score: 0, Offtopic

    Um, I wish I had thought of that. Damn. Gotta go mark my territory now..

    1. Re:IpEverywhere by Anonymous Coward · · Score: 0

      Prior Art citation:
      I have two white T-shirts given out by Cisco at an IETF meeting (and other events) in 1999 which says "IP Everywhere" on the back under a graphic of Calvin of "Calvin & Hobbes" p-ing. On the front, it shows the Cisco logo and "Cisco 12000 Series Gigabit Switch Router".

    2. Re:IpEverywhere by BakaMark · · Score: 1

      At my previous work, they had a project to roll out TCP/IP to replace an entire SNA network (consisting of over 1500 locations, within one country). The Project was originally called "IP Everywhere", but the Management changed the name of the project to something else when they found out that the techs had nicknamed the project "Yellow Puddle".

  19. Let's hear it for the government! by Phil+the+Canuck · · Score: 1
    I can only assume that those red pins in and around Queen's Park are part of some government "Broadband for the Masses" program. Surely the government would never be lax on security.

    For those who don't know, Queen's Park is the seat of the Ontario government.

    1. Re:Let's hear it for the government! by beaverfever · · Score: 1

      Although Queen's Park has a few pins stuck in it, the rows of red to the left of it are all University of Toronto - Engineering school is on College Ave. just west of Queen's Park if memory erves me correctly... Lots of red down there... hehe, Let's hear it for the engineers!

      --
      RTFM; please, I beg you.
  20. link to the map (for lazy people like myself) by mcguyver · · Score: 0, Redundant

    http://www.nakedwireless.ca/winudcol.htm

  21. Yay, more drive-by spam. by EvilAlien · · Score: 4, Interesting
    All we need is more drive-by spam.

    Thats right, the scum of the network are taking advantage of open wireless networks, whether they are chalked or grabbed off online maps such as net stumbler dot com. The rise of drive-by hacking is a natural by-product of the wardriving/chalking community, and it would be naive to considering this a surprising development. Highjacking an open wireless network is only the smart thing to do for hackers whether they are after data or just a spamming platform.

    This puts the pressure on network administrators to secure their wireless networks. It is far easier to drive by a NAP and jack in, and the proliferation of wireless networks could obsolete physical intrusion techniques such as connecting a Dreamcast or iPAQ to an internal network. Tools for wardriving are readily available, such as THC-warDrive. A lazy or incompetant network administrator makes it easy for a kid with the parents car, a pringles can, and a laptop.

    --
    perl -e 'print $i=pack(c5, (41*2), sqrt(7056), (unpack(c,H)-2), oct(115), 10)'
    1. Re:Yay, more drive-by spam. by Dread_ed · · Score: 1

      Could you imagine...you and your wardriving buddies are out, ya know, wardriving...

      You notice Fred, your closest bud and hackmeister supreme, is actin' a little weird and won't let you see his laptop screen. So you, being the larger of the two pasties and, as a result of the steriods in a clandestinely doped meal replacement bar you had that morning, pry it out of his hands...Only to find a STREAM of outgoing "Enlarge you penis NOW by working from home!" emails! ACK!!! Fred's a SPAMMER!!!

      What would you DO?!?!?

      "Sophocles...Euripides...Meet my cousin---Testacles."

      --
      When the only tool you have is a claw hammer every problem starts to look like the back of someone's skull.
    2. Re:Yay, more drive-by spam. by ntk · · Score: 2

      Actually, the scum of the network aren't taking advantage of wireless networks. There are, as we speak, no reports of drive-by spamming in the wild. The article you reference claims to have such evidence, but it was a ZDNet journalist distorting what he heard from an expert. I know, I asked the expert.

      I'm not saying drive-by spamming is not a theoretical possibility; I'd argue that there are a number of reasons why you won't see it in widespread use. Firstly, it's no harder to create a throwaway AOL account and spam from there. Secondly, one of the reasons why spamming is so prevalent is because it's entirely anonymous: sitting in front of someone's house hoping they don't spot you streaming through their network simply isn't. A lot of people really hate spammers; it's easy for spammers to laugh at their hatred from their own homes. It's a lot harder when they're sitting in a car, hoping you're not going to leap out with a baseball bat and explain a few things to them.

      I understand your concerns about this hypothetical behaviour. But as someone who runs an open network, regularly uses other's open networks, and realises that security is more than just throwing up some foo around the LAN perimeter and hoping no-one gets through, I think it's a distraction from the real problems we have now.

  22. *Yawn* by PureFiction · · Score: 2

    This is news? People have been
    scanning wireless
    networks
    for a long time now...

  23. Accuracy of map? by beaverfever · · Score: 1
    How accurate could/should a map like this be? Last time I was in Toronto the NW corner of Jarvis/Dundas (right side, middle of map) was a parking lot, but there are a few red flags there... does that make sense? Admittedly, the parking lot could have been built upon in the past few months, but I doubt it. Or someone could be running a network from their van. Or I just don't know enough about this sort of thing.

    Jez curious is all...

    --
    RTFM; please, I beg you.
    1. Re:Accuracy of map? by beaverfever · · Score: 1

      Okay, maybe those pins are on the SW corner of Jarvis and Dundas, but that is a discount store selling cheap plastic crap or something like that... doesn't make sense. Still curious.

      --
      RTFM; please, I beg you.
    2. Re:Accuracy of map? by MagicFab · · Score: 1

      Red flags indicate signal detection, not signal origin...

      --
      Notepad specialist & FAT administrator, group training available
    3. Re:Accuracy of map? by beaverfever · · Score: 1

      ohhh, right... why didn't I think of that? I'll be going back to sleep now. Thanks :)

      --
      RTFM; please, I beg you.
    4. Re:Accuracy of map? by great_flaming_foo · · Score: 1

      If I remember my netstumbler 101 class correctly the pins are where they were when they spoted the network. So the AP is most likely in a near by building but they spoted it while sitting in the parking lot. The company I work for does wireless and I have seen netstubler logs that spoted our AP like twenty miles from its accutal location.

    5. Re:Accuracy of map? by Anonymous Coward · · Score: 0

      It's part of Lastman's new social platform, "802.11 For Scumbags and Crackheads."

    6. Re:Accuracy of map? by Anonymous Coward · · Score: 0

      Hey, moron.

      At the corner of Jarvis and Dundas, you have following buildings in the IMMEDIATE vicinity:

      1. Sears Canada Corporate HQ (gee, sounds like a potential candidate);

      2. A shiny new Comfort Inn Suites Hotel;

      3. The Grand Hotel (some tall, swanky place);

      4. A whole slew of Ryerson Polytechnic University buildings;

      5. The Merchandise Building (fancy lofts now, big tall windows, lots of $$$ tenants)

      There's also an apartment building on the SW corner.

      The parking lot you so mention is a very small part of that intersection...

      Of course... maybe it's the Ho-Lee-Chow (chinese food chain) at the corner...

      Maybe they should change the sign in the window from:

      NO MSG

      to

      NO WAP

      nyuk nyuk nyuk

  24. You missed the other Naked Reference... by RobinH · · Score: 2

    Direct from Toronto: Naked News!!!

    --
    "I have never let my schooling interfere with my education." - Mark Twain
  25. A quote by JazerWonkie · · Score: 1

    A quote taken from a CEO in fits of rage when he finds out that his company is on that list:

    Fire the Net Admin, and call our lawers were going to see IpEverywhere in Court

  26. Bang the Marketing Drum by DaytonCIM · · Score: 1

    This sounds like a consulting firm drumming up business for themselves. Kind of like the telemarketers that call everyday offering to sell us toner at a reduced rate.

    1. Re:Bang the Marketing Drum by DaytonCIM · · Score: 1

      Yes, it would make sense if they were selling Fax toner. They're not. They're selling printer toner.

      Out

  27. Life Savings.... by InOverMyFeet · · Score: 0
    I'll see your $12.67 and raise you another $5.

    ...couldn't resist:)

    --

    -- Probability does not dismiss possibility --

  28. the map fails.... by Lumpy · · Score: 2

    What about properly secured public/community wireless portals that use nocatnet for user authentication? they dont use WEP as it's useless for this kind of community access point. while nocatauth does quite well at making open portals available for members.

    --
    Do not look at laser with remaining good eye.
  29. An old story gets worse by phorm · · Score: 1

    In the old days... when somebody had an easily accessed jack to their phone system into which you could plug a phone (or modem, although laptops weren't as popular) and make long distance calls

    Today, when people have a wireless "jack" to which large masses of people can plug in and make use of their connection/network/internet.

    Seems to me that as technology progresses so do the ways to abuse it, and the stupid ways in which people leave themselves open to abuse...
    General Public Ignorance keeps me employed - phorm

  30. Re:Ha ha canucks are so retarded by SkankhodBeeblebrox · · Score: 0

    Not to fall for the troll, but I assume he realizes the US share a fairly substantial border with Canada, and as such, share a fairly substantial amount of weather with Canada :P

  31. Unsecured networks at US Consulate? by td · · Score: 2

    There's a pair red pins (unsecured WAPs) on the west side of University Avenue between Dundas and Queen, right about where the US Consulate is.

    --
    -Tom Duff
    1. Re:Unsecured networks at US Consulate? by Anonymous Coward · · Score: 0

      Which is also close to the staple/business depot that sells laptops and wireless routers

    2. Re:Unsecured networks at US Consulate? by Anonymous Coward · · Score: 0

      And let's not forget the Canada Life tower...

  32. United States Consulate - honeypot? by Malc · · Score: 2, Informative

    It looks like two of the pins are almost in the right spot for the US Consulate (although it might be the next building up the road). Honeypot or clueless government officials?

    1. Re:United States Consulate - honeypot? by Ctrl-Z · · Score: 2


      Yeah, and there are several in the Eaton Centre...maybe at Compucentre?

      --
      www.timcoleman.com is a total waste of your time. Never go there.
    2. Re:United States Consulate - honeypot? by ergo98 · · Score: 1

      It could be in the office towers above the Eaton's Center. Alternately one of the retailers could be using wireless between cash registers and their hub (remember that Home Depot, I believe, was doing that for a while).

      I'm actually surprized by how few there are on there: I would have expected First Canadian Place (Bay and Adelaide), and Scotiabank's tower across the street, to be circled by them, but instead there's nary a hint of wireless around them.

  33. No map there either by Anonymous Coward · · Score: 0

    I still get a puzzle piece prompting me to download a closed source plugin to see the map. Anyone running an insecure box care to take a screenshot and link to it?

    1. Re:No map there either by Anonymous Coward · · Score: 0

      Shut your pie-hole, you pompous prick.

  34. Unencrypted != unsecured by Leto2 · · Score: 5, Insightful
    People, unencrypted by WEP doesn't mean unsecured. We all know 802.11 WEP has its shortcomings, so more and more administrators are relying on different techniques to secure their wireless LAN, IPsec and VPN to name a few.

    And after you've secured your network on a higher level than OSI 1, you can be less paranoid about WEP. So much less, that some claim that DISabling WEP is not a bad thing at all. Think about it, you already have encryption taken care of, so why not make your network more stable, robust and fast by disabling WEP?

    Those 'wardriving' pictures should make a distinction between "secured with WEP", "no WEP, but I cannot use the network because of IPsec/VPN/whatever" and "no WEP, and I can surf freely through it".

    -Leto2

    --
    <grub> Reading /. at -1 is like driving through Cracktown in a convertible that is stuck in 1st
    1. Re:Unencrypted != unsecured by MagicFab · · Score: 2, Insightful

      At the very least, change the legend so it reads:
      WEP Enabled (Worse, false sense of security) instead of:
      WEP Enabled (Good)

      --
      Notepad specialist & FAT administrator, group training available
    2. Re:Unencrypted != unsecured by Anonymous Coward · · Score: 0

      I make your network more fast! You hire! Stupid American not know how to encrypt network...

    3. Re:Unencrypted != unsecured by caluml · · Score: 1

      I tried to set up a wireless lan that only saw the public interface of a VPN box, and it worked fine.
      Then we had the need to hook iPaqs up to it, and it all fell down.
      Sure there are VPN clients for iPaqs (Movian), but have you ever tried running 3DES on one? It does it, but the bandwidth drops right down to about 200-300kb/s.
      Ho hum, back to WEP.

      Mind you, our wireless network isn't used much at all, and so I doubt anyone could have collected enough interesting packets, even if they had been running AirSnort from the word go.
      My advice? Run Airsnort, and each time it breaks your key, change the key, and let people know.

      --
      Get your own free personal location tracker
  35. the image.... by _ph1ux_ · · Score: 2, Offtopic

    ...in my head was of naked warwalkers. but, isnt it cold in toronto? just think of the shrinkage.

    1. Re:the image.... by Anonymous Coward · · Score: 0

      I wish...the temperature in Toronto at the moment is 34C (for those of you who are SI-challenged, that's 93F).

    2. Re:the image.... by Ctrl-Z · · Score: 2


      According to weather.com, the current temperature in Toronto is 84F, or about 29C. I don't think that's cold enough for significant shrinkage.

      --
      www.timcoleman.com is a total waste of your time. Never go there.
    3. Re:the image.... by machine+of+god · · Score: 1
      Yeah, on the guys, but think of the girls!

      (Sorry girls) Are there even any girls who read this site? More importantly, will they marry me?

  36. Re:Ha ha canucks are so retarded by Anonymous Coward · · Score: 0

    Isn't something like 17 US States wholly or partially further north than Windsor, Ontario? A mere 4 hours drive SW of Toronto. Right now I'd be happy to see some snow as I'm sick of this heat, humidity and smog.

  37. Re:Terror Alert and The Posse Comitatus Act of 187 by perfessor+multigeek · · Score: 0, Offtopic

    You know, it's a real shame that you posted this here because I've actually found this post quite useful. Right info, very wrong place. Trust me, as both a manager, and a long time political activist, the tone and time do count. Otherwise you just become yet another strident Operation Rescue-type wacko discrediting the very concern that you sought to promulgate,
    Too bad you didn't have the self control to find a better discussion. Couldn't you at least have posted this as part of a YRO discussion?
    Sadly agreeing with the general judgement of TROLL!!,
    Rustin

    --
    Data is the lever, rigor the fulcrum, brains the force that drives it all.
  38. You don't need a map by wytcld · · Score: 3, Funny

    As the map shows, about anywhere you go in Toronto, there's open access. Since there is no crime in Canada, this is not a problem, it's a feature.

    --
    "with their freedom lost all virtue lose" - Milton
  39. Uh-oh. by Soko · · Score: 2

    Queens Park (look on north portion of the map) is the seat of the Ontario Provincial Legislature, not an open, green space. This means that there are (or were) 2 open, non WEP (like that mattered) access points within the government offices. I really, really hope these are isolated from the internal network via firewalls - I don't want all of the info that the Ontario Government has on it's citizens (like me and my family) being broadcast for anyone to see/save/use.

    Soko

    --
    "Depression is merely anger without enthusiasm." - Anonymous
    1. Re:Uh-oh. by p3d0 · · Score: 2

      Actually, it's both. There is a small (5-minute-walk diameter) park north of the government buildings. Of the Queen's Park oval, probably 40% of it is buildings. (It's the gray part of the map.)

      --
      Patrick Doyle
      I mod down every jackass who puts his moderation policy in his sig. Oh, wait a sec....
    2. Re:Uh-oh. by Greedo · · Score: 2, Funny

      I don't want all of the info that the Ontario Government has on it's citizens (like me and my family) being broadcast for anyone to see/save/use.

      Don't worry Scott Kormick (SIN: 574-782-401). All of your personal information -- such as your annual salary of $45,490 as Assistant Manager of a Subway franchise, your 12 unpaid parking tickets, and your criminal record (shame on you for drinking in High Park) -- is secure within the governement's system.

      In order to assure you, I stopped by your house at 312 College St. to let you know in person. I guess you were at the hospital having that nasty rash looked at (I hear it's hereditary).

      Oh, and your cat Snickers is cute.

      --
      Tuus crepidae innexilis sunt.
  40. I work in IT... by wo1verin3 · · Score: 3, Funny

    With IT people in the Toronto area... here is how serious they took this map.... Several of them wanted to know if we could find the blinking red dot over their house. :(

    1. Re:I work in IT... by CokeBear · · Score: 2
      The first thing I did was check to see the one that I administer (at the corner of Bay & Elm Streets). I work in a little Mac Store here, and one of the services we provide to our customers (and everyone else) is free wireless access. I should probably WEP my network, and at least have them ask for the password to log in... but I'm just too lazy. We're open 'till midnight on weekdays, so I might get around to it tonight. If you're in the area, drop by and ask for Daniel... If you tell me you saw my posting on /. um... I'll give you a free Ambrosia SW CD. Otherwise... free AirPort access until I secure it.

      Cheers

      --
      Reality has a liberal bias
    2. Re:I work in IT... by Anonymous Coward · · Score: 0

      thats kewl Daniel! cheers m8! :D

  41. While Bush Fucks America, Canada Just Looks Better by Anonymous Coward · · Score: 0

    Tired of Bush?

    Fuck it. Move to Canada. A real, civilised, modern nation. Who would have thought?

    Excellent healthcare FOR EVERYONE, excellent schools, the most pristine nature in North America. Cool cities, great people.

    Why get shot in the 'hood when you got Canada in yo hood?

    Canada loves you, and we love Canada.

    And really, there is no place like B. C. It Owns!

  42. Arg, they keep making that mistake!! by ch-chuck · · Score: 1

    while black triangles indicate networks protected with WEP -- "wireless equivalent privacy" -- encryption.

    I know it's a wireless technology, but WEP is (in theory at least) wired equivalent privacy - that is, it's supposed to be about as good and private as cat5, arrrrrg!

    --
    try { do() || do_not(); } catch (JediException err) { yoda(err); }
  43. I'll Give Admins Some Ideas Too Then. :) by The+Turd+Report · · Score: 1
    1. Block outbound/inbound port 25 traffic, except to/from local MX. Or, block it totally, if possible.
    2. Block common proxy ports.
    3. Route all HTTP traffic thru a secured proxy.
    That should cut off most of the routes that spammers use to spam. Any WLAN that does not take these steps will soon become a spammer magnet.
    --
    Michael Loves Me!
  44. This is a problem everywhere! by Newer+Guy · · Score: 2

    This is a problem in just about every city. I live on a tree lined residential street in Santa Monica, CA. There's no real offices or businesses within about a half mile because I live between two public parks. I was planning on putting in a wireless network in my house so I bought a card and put it in my laptop. I was AMAZED to find that it locked right up to someone else's network immediately! I was able to browse the web, and even look at their shared files. This was true on channel after channel on the card. I can only imagine how it must be even worse in an industrial area. Now I know why my 2 Ghz spread spectrum phone has such poor range.

  45. Reality Check by Anonymous Coward · · Score: 0

    I like to give Americans a reality check by telling them that the southeast end of southern Ontario is farther south than northernmost California. They invariably don't believe it. Then I pull out a map and show them.

    1. Re:Reality Check by FigWig · · Score: 1

      Doesn't really matter, Toronto weather sucks most of the year (too cold or too humid & hot). Just like New York and the rest of the region. I'll take the Northern California Bay Area weather anyday.

      --
      Scuttlemonkey is a troll
    2. Re:Reality Check by kcurrie · · Score: 1

      ..yes and when you tell them that Windsor, Ontario is SOUTH of Detroit, MI they don't believe that either! 'tis true.

      --
      -- I speak only for myself.
  46. Wireless in trouble? by Anonym1ty · · Score: 3, Interesting

    With all this on war driving and hacking into networks for fun or foul, we better start being careful of what we say and how we act. (be nice)

    We should realize that right now we have a great oppertunity to use wireless.

    If admins continue to leave networks that need to be secure open to the public they are going to get hacked -in one form or another, maybe just harmlessly syphoning bandwidth, maybe stealing private information - but something is going to happen regardless.

    What I fear hear is government regulation. Right now it is the resposibility of the admin who sets up this network to make sure it is reasonably secure. If wireless hacking becomes enough of a problem, governments will be compelled to regulate wireless networks. Sure some regulation may even be good, but from my perspective what is more likely to happen is it will be regulated to death.

    Whenever we are forced to regulate we get these types of results: People who want to use wireless won't be able to comply with impossible for the little guy to comply with standards - experimentation dies, soon so does innovation.

    Why should admins secure their network when they can rely on a government wireless police force to go around picking up the kiddies breaking into their network? Sounds stupid? that's right it sure is, but crap like this could very well happen. -We're allowed to remail lazy.

    I have a wireless lan and it's reasonably secure... It isn't hack proof - nothing is. but it is encrypted and secured and stuff and also it is on it's own network, not directly tied into my wired lan... plus there isn't information on the wireless that could be considered "secret" or personal. I want the thing to work around the house for getting that there interweb. The access point is in the basement -- a simple thing, limits the coverage of the unit a lot - just the house and parts of the yard.

    I'm still looking at other ways to secure it. I found a good one the other day SHUT IT OFF WHEN NOT IN USE. (who'd a thunk it?) Why can't businesses figure this one out?? put the power cord to the thing on a timer!! not business hours? no wireless!

    --
    See the Pictures of the Flood of '08
  47. Re:neat idea; needs work. by Anonymous Coward · · Score: 0

    Read it out loud: "I Pee Everywhere". Weak pun, but better than nothing.

    How can this be considered Off-Topic, it was explaining the pun for those that don't get it?

  48. that's 90F plus by Anonymous Coward · · Score: 0

    The weather today in Toronto is 34 celcius, that's 90F plus

    93.2F, and that's before you factor in the humidity. The current "humidex" is 37C which is 98.6F. Thank god we all live in igloos - we just get naked and lean on the walls to cool off.

  49. Re:While Bush Fucks America, Canada Just Looks Bet by iplayfast · · Score: 1, Offtopic

    And yesterday Ontario just had our 25 smog alert day of the year. Beating our all time record. :(

    So much for our pristine nature.

  50. Richmond and Spadina? by checkyoulater · · Score: 1

    I want to know who is using all those Wireless Networks all along Richmond near Spadina. I thought that was towards the end of the Club District.
    Even along Queen West, for that matter. Last I checked Queen West was a bunch of trendy clothing stores and used cd shops. Of course, I can't forget about Active Surplus, the best damn store in Toronto.

    Am I missing something here?

    --
    Is that a real poncho? I mean, is that a Mexican poncho or is that a Sears poncho?
    1. Re:Richmond and Spadina? by SaturdayNight · · Score: 1

      Actually, there are some pretty chic office spaces down there that are used by IT consulting firms. Offhand I can think of Cyberplex (may no longer be there) which is in the Paramount movie theatre building, and Toronto.com's offices. Chapters.ca as well...

    2. Re:Richmond and Spadina? by SnarkDogma · · Score: 1

      Sure, lots of people, myself included live, in the area. I would guess that a good number of the WAPs they found are actually residential.

      --
      "This isn't right. This isn't even wrong." -- Wolfgang Pauli
    3. Re:Richmond and Spadina? by _J_ · · Score: 1


      I live NW of Queen and University. I think I need to get a wireless networkign card....

      IMHO, as per

      J:)

      --
      Oh well, no point in steering now.
    4. Re:Richmond and Spadina? by Mr+M · · Score: 1

      Richmond and Spadina is a huge IT / .com area. No surprise at all that there are lots of nodes in that area. I would expect it.

    5. Re:Richmond and Spadina? by checkyoulater · · Score: 1

      Residential. Of course! I forgot about all those old textile buildings that were turned into expensive lofts for cool yuppies. Wish I could afford one. Hell I wish I could afford a Wireless card for my notebook, then I could ride around there on my bicycle.

      --
      Is that a real poncho? I mean, is that a Mexican poncho or is that a Sears poncho?
    6. Re:Richmond and Spadina? by AndroidCat · · Score: 1

      It's not just residential. There were a lot dot.boomer companies that moved into that area. (But BigRedH is dead dead, ha!) Lovely wood floors.

      --
      One line blog. I hear that they're called Twitters now.
  51. Naked College by mr.+phantastik · · Score: 2

    Apparently my college (George Brown) has a naked network. I never thought in a million years I would be reading something like that on Slashdot.

    I love it. Time to h4x0r my grades.

    1. Re:Naked College by Anonymous Coward · · Score: 0

      Or Alias Wavefront head office (and main dev site) - which is right next door.

  52. U of T. by Christopher+Thomas · · Score: 2

    I notice one of the big red "abuse me" circles right in the middle of the U of Toronto engineering buildings, where they should know better.

    I'd make snarky comments about the prof who I suspect might be running the open network, but in this case I have no strong reason to suspect it's him.

    1. Re:U of T. by Anonymous Coward · · Score: 0

      U of T has had an open network for over a year now. It was done as such for the benefit of the students. I don't know what the details are for access control, but with hundreds or thousands of wireless users, I doubt they even care much.

    2. Re:U of T. by Christopher+Thomas · · Score: 2

      U of T has had an open network for over a year now. It was done as such for the benefit of the students. I don't know what the details are for access control, but with hundreds or thousands of wireless users, I doubt they even care much.

      Ok, then it isn't the nameless prof.

      It just disturbs me that, in addition to having basically insecure workstations with their arses hanging out on the 'net with little or no filtering, that we are doing the equivalent of giving anyone who walks by an ethernet cable and saying "here! don't bother attacking us remotely, we'll give you a direct link!".

      To their credit, the administrators do a fine job of keeping the system up and running. I just find security around here a little worrisome.

  53. Technological darwinism. by MongooseCN · · Score: 2

    I say abuse the ignorant and we can bring back darwinism in a technological point of view. Survival of the fittest.

    --


    Outdoor digital photography, mostly in New Engl
  54. Not necessarily a problem by Arker · · Score: 3, Interesting

    Remember, WEP is not the be all and end all of wireless security. Just because those networks don't have WEP doesn't mean they aren't secured in another, quite possibly better, way.

    Of course, they could also be totally open. No way to know without taking your laptop on a walk I suppose... let us know what you find out if you do.

    --
    =-=-=-=-=-=-=-=-=-=-=-=-=-=-
    Friends don't let friends enable ecmascript.
    1. Re:Not necessarily a problem by Soko · · Score: 2

      Ummmm...that was the point of my post. WEP is more or less just a padlock - it only really keeps out the curious. Someone looking for access won't have much trouble getting past that. In order to dead-bolt the access, the wireless access points should be on the untrusted side of a firewall, with VPN access for authorised machines.

      I wish I _could_ find out if it's still wide open - I'm a ways away in Hamilton right now. And one does not just "go to Toronto" on a whim - the gridlock is viscious, so I'll rely on others to find out and post what they saw. :)

      Soko

      --
      "Depression is merely anger without enthusiasm." - Anonymous
  55. Come, spammers! To my unsecured tr^H^Hap! by tunabomber · · Score: 2

    Spamming from unsecured wireless networks will be a fun form of shameless profit until people start setting up "sting" nodes that will be specially rigged so that upon detecting that they are being used by a spammer, they will photograph their license plates, call the cops, and maybe spray some hot tar and feathers for good measure.

    --

    pi = 3.141592653589793helpimtrappedinauniversefactory71 ...
    1. Re:Come, spammers! To my unsecured tr^H^Hap! by AndroidCat · · Score: 1

      Computer controlled stone gargoyles. 20+ story drop. Problem solved.

      --
      One line blog. I hear that they're called Twitters now.
  56. Should how awareness is achieved be important? by Senior+Frac · · Score: 1

    Is this going to help spread awareness, or is this just going to encourage people to abuse the (apparently) ignorant?

    You act as if these are two mutually exclusive events. I do not believe them to be. Awareness is nice to be given in homeopathic doses, but I'm glad to see it spread given any opportunity.

  57. I.P. Freely by kirkb · · Score: 1

    Wouldn't IpFreely have been even funnier?

    --
    Slashdot: come for the pedantry, stay for the condescension.
  58. Aluminum siding better than WEP by elliotj · · Score: 4, Insightful

    I setup a WIFI net at home recently and have found that the coverage I get inside the house is amazing. Outside it's a different story. I'm pretty sure that the aluminum siding is blocking the signal from leaving the building because I do get limited reception if I'm lined up with a window.

    Basically this stops any war drivers from seeing my network unless they get really lucky and creep up to the bushes outside one of the few windows that faces the street. If they do that I'm more at risk that they see ME naked than my network!

    Anybody else notice specific physical obstacles that clobber reception?

    1. Re:Aluminum siding better than WEP by mekkab · · Score: 2

      For this exact reason I have stopped the time honored practice of "checking the wifi atennae in the buff."

      I haven't tried this yet, but I'll check what my outside reception is like. I'm still trying to figure out how to set things up inside. I get AWESOME reception two floors below in the "dungeon", but who wants to compute in the dungeon? (INSERT BDSM PRON JOKE HERE)

      I'm not sure if the heating ducts running up and through the house are helping it or not...

      And my "spot" at the dining room table gets BALLS. Its quite close to the open stairwell (at the top of which is the room with the WAP diagonally opposite the door) but the waves will not travel.*

      * Actually, I haven't checked since I re-positioned the wap on top of a 100 blank cd-r tower and tried to tilt the antennae in the right direction.

      --
      In the future, I would want to not be isolated from my friends in the Space Station.
  59. Naked != unprotected or insecure by mouthbeef · · Score: 5, Insightful

    I just spoke with the COO of the IPEverywhere about this study, and confirmed that the methodology only established whether a node was running WEP (a "security measure" of dubious value).

    That means that many of the "unsecured" nodes in this report may have had other means of securing themselves, from switch- or AP-based MAC filtering to captive portals such as NoCat. Moreover, the protocol for this study did not establish whether the open APs in question were handing out DHCP leases (or, indeed, whether they were connected to the Internet at all).

    Finally, this study did not investigate in any depth whether the open APs were deliberately or accidentally left open. Many of us run open "community" networks around the world (I operate one in Toronto at King and Niagara, and three in San Francisco, two at 19th and Shotwell, and one on Sycamore near 17th and Mission). These networks are deliberately "unsecured" and are provided out of public-spiritedness, or even out of a political commitment to providing tools for anonymous speech on the Internet -- anonymous speech being fundamental to democratic discourse.

    Since WEP is such a poor "security" measure, the best practice for wireless users is to use SSH and/or SSL tunnels to secure sensitive traffic to a proxy (either remote or on your own network). In fact, if you're a promiscuous user of any network -- conference centers, airport lounges, hotel rooms, schools, etc -- you should assume that unless your messages are encrypted, they will be sniffed on the wire.

    The primary "security" concern about open wireless seems to be that a "rogue" AP will be installed behind a firewall. The firewall, of course, is hardly sufficient in and of itself for securing a network. It's based on the presumption that everyone on one side of the firewall is trustworthy, and everyone on the other side is untrustworthy. We know, though, that this is a fallacy. Getting inside the firewall -- either through physical intrusion (think of visitors to your office plugging into the the network to check mail) or virtually, by 0wning a box on the network with a trojan -- is not difficult for a determined intruder. Meanwhile, the legitimate users of your network resources are often outside your firewall (mobile execs at a client site, for example) and thus not only walled off from the rest of the network, but also vulnerable to attack, since their machines' first line of defense is the firewall, which they are suddenly out of.

    Security is hard. The proper place to draw your network perimiter isn't around your office, but around each machine. Personal firewalls, regular applications of security patches, good passwords and user education provide genuine security. Firewalls (and FUD about open APs) doesn't.

    1. Re:Naked != unprotected or insecure by PureFiction · · Score: 2

      the best practice for wireless users is to use SSH and/or SSL tunnels to secure sensitive traffic to a proxy

      This can be abused, however, if someone sets up a rogue access point with the same ESSID (perhaps even spoofing a good AP's MAC) and then executes various known and implemented man-in-the-middle attacks against SSH/SSL sessions.

      In fact, many, many applications fail silently in the presence of a MITM attack. If you are lucky you will see a warning from SSH. If you are UNlucky, you will think you are secure while someone with a rogue AP captures all your traffic, and perhaps even hijacks a session.

      You can do this with commodity amplifiers (to ensure that your AP signal is higher than all the legitimate AP's) and easy to come by antennas.

    2. Re:Naked != unprotected or insecure by Anonymous Coward · · Score: 0

      From what little I understand, MITM attacks are only doable with SSH1 protocol and not SSH2.

      Can anyone provide more information on this?

    3. Re:Naked != unprotected or insecure by Anonymous Coward · · Score: 0

      MITM attacks can occur whenever any sort of key exchange occurs over an insecure network. Typically the public key is sent, swapped with a bogus one (provided by the attacker) and you'd just never know.

      Your best bet is to compare fingerprints when you first log into a machine. You know that message PuTTY shows you when you first connect to a machine? You know, the one you always just click Yes to and not actually read. Next time, compare it to the actual key on the server.

      $ ssh-keygen -l -f /etc/ssh/ssh_host_dsa_key.pub

  60. Re:While Bush Fucks America, Canada Just Looks Bet by Anonymous Coward · · Score: 0

    All time record --- despite the fact that the criteria get more and more strict, and back when smog was really bad (100+ years ago), there were no recorded statistics or "smog alerts".

  61. Direct URL to the map by ShieldWolf · · Score: 2

    The actual URL is http://www.nakedwireless.ca/winudcol.htm

    I work for a computer company at the corner of Bay and Dundas on the map, which has tons of red push pins. Luckily there are no nudist colonies here ;D

    -Shieldwolf

    --
    just = (My)Opinion.toCents();
  62. The Naked City by PizzaFace · · Score: 0, Offtopic

    Darn, I thought this article was about Toronto's gift to journalism, Naked News.

  63. There's a disclaimer ! by LePrince · · Score: 0
    No one will abuse the map, there's a disclaimer that you have to accept before you see it that stipulates that you will not use it to abuse it. :-)

    [/SARCASTIC MODE]

  64. Same thing in Dallas by tiedyejeremy · · Score: 1

    The ONLY paper in Dallas publish the same type of info last week on the front page of thier technology section.

    --
    Anything you say will be held against you. ... "tits"
  65. Re:While Bush Fucks America, Canada Just Looks Bet by cprice · · Score: 1

    Most people in the rest of Canada would probably argue that Toronto is not really a part of Canada anymore. The only thing making Toronto vaguely Canadian is the fact that they happen to be on the Canadian side of the border, and thats where the similarities end.

  66. wow, lucky for microsoft by AA0 · · Score: 1

    Its lucky for microsoft that their main office isn't in Toronto, otherwise people might find out something in microsoft isn't secure.

    1. Re:wow, lucky for microsoft by Anonymous Coward · · Score: 0

      Anyone know of a war driving map of Mississauga? MS Canada HQ is near Hwy 10 and Matheson Blvd W...

  67. Hey! by eaddict · · Score: 2

    Did Ashcroft help design thier logo?

    --
    "If you are on fire you can just stop, drop, and roll. If you fall into Lava you are just dead." - my 5yr old daughter
  68. Re:Terror Alert and The Posse Comitatus Act of 187 by Anonymous Coward · · Score: 0

    Why don't you repost it to your heart's content? I don't have time to fucking dress up and prepare PR and press releases. You know as well as I that the lame ass editors here never post any USEFUL criticisms or editorials of "YRO" subject matter. I found this information disturbing and I tried to first post it to somewhere where it would get bandwidth. I like how being right about something is contextual. Not very promising, if my fellow fucking human beings place context above what's right an wrong.

    Sadly, I am telling a fellow activist, fuck you and your troll rating, you fucking would be fascist. You don't censor things due to context. Like the radio dial, turn the station, tune out, but don't agree with the removal of what you find distasteful, because its subjective. One day the government might find YOU distasteful and contextually incorrect and you should be marker "DEAD," and promptly put into an oven and turned to ash.

  69. No wonder the voices in my head are so loud!! by Anonymous Coward · · Score: 0

    I work in the building on Bay/Gerard and there's a ton of devices in that location.

    Seriously, I have a headache right now.

  70. Insecure Linux distros? Already got 'em by Anonymous Coward · · Score: 0

    Red Hat
    Mandrake
    Suse

    They're about as secure as Windows.

  71. A nice name by IPFreely · · Score: 1
    Toronto consulting firm IpEverywhere (pun intended)

    I approve their choice of name.

    --
    There is nothing so silly as other peoples traditions, and nothing so sacred as our own.
  72. Toronto, The Naked City by Mika_Lindman · · Score: 1

    "Toronto, The Naked City"

    Damn, even Slashdot is trying to get people to click links by promising pr0n.

    1. Re:Toronto, The Naked City by AndroidCat · · Score: 1

      They should be careful: If this topic gets any more popular, Slashdot might be Toronto'd.

      --
      One line blog. I hear that they're called Twitters now.
  73. Re:While Bush Fucks America, Canada Just Looks Bet by iplayfast · · Score: 2

    I think you would find most Torontians and Ontarians, feel differently. As for the rest of Canada's opinion about Toronto, I wouldn't know, and wonder why you would presume to. Do you always put your foot into other peoples mouths?

  74. Re:While Bush Fucks America, Canada Just Looks Bet by Anonymous Coward · · Score: 0

    Hey cprice, your retarded anti-Toronto bias is showing! Toronto is, actually, one of the largest contributors to Canadian culture in the country. This takes nothing away from other cultural centres like Montreal and Vancouver. Unfortunately for you, irrational hatred of a city just for being successful wont't make this fact go away.

  75. There are offices there by pischke · · Score: 1

    The headquarters for Sears Canada is near Jarvis/Dundas. That's probably the signal they were picking up.

  76. am I ignorant? by briancnorton · · Score: 1

    why are those with open access points ignorant? I have an open access point, and I know EXACTLY what I'm doing.

    --

    People who think they know everything really piss off those of us that actually do.

  77. Is locking down the MAC addresses sufficient? by emil · · Score: 2

    My friend has a Linksys wireless base station and laptop; I gave him some minimal help in setting it up in "infrastructure" (unrestricted?) mode.

    Unless there is some sort of "wireless sniffer" which can detect in-use MAC addresses, and also unless the wireless NIC can modify its own MAC, restricting the Linksys base station to a specific set of MACs should be sufficient for small-system security, correct?

    It would be even better if I could take a MAC from an old NE2000 10Base2 ethernet card and use that MAC, since anyone trying to guess a MAC would probably use the ranges that have been assigned to the WAN manufacturers. It would be best if this could be done under Windows (in spite of my distaste for MS).

    I'm just looking for a "hosts.deny" sort of security; I don't really need encryption (and I understand that wireless encryption has been broken anyway).

    Pardon me for any technical errors; I'm clueless about wireless.

    1. Re:Is locking down the MAC addresses sufficient? by Bishop · · Score: 2

      Pardon me for any technical errors; I'm clueless about wireless.

      Er. Yes. :-)

      Anyone can sniff the valid MACs out of the air and spoof a valid MAC. Useing a old MAC buys you nothing. There are 2^48 MACs so it is unlikely that anyone will randomly try MACs. They will sniff.

      To be secure you need WEP. It is not perfect, but if you change your secret atleast once a month you will be far better off then doing nothing. WEP will provide both date security, but also the access controls that you want.

      If you really want to be secure you would setup airsnort to try and crack your secret. Once you have half the number of weak packets required to crack, set a new secret. Other options include: use Cisco cards only and Leap; Use Orinoco cards with the new (beta) drivers that don't use weak WEP IVs; Use a proper VPN for all traffic going over the wireless link.

      But you in particular have a linksys and don't want to buy new gear. So use WEP and change the key.

  78. Flash? by b1t+r0t · · Score: 3, Informative

    I don't see any map. All I get is a couple of pictures and two plug-in boxes. Either the site is slashdotted, or it requires you to run "Naked Flash". I refuse to leave Flash enabled because of all the annoying web ads that now (ab)use it.

    --

    --
    "Open source is good." - Steve Jobs
    "Open source is evil." - Microsoft
  79. You are ignorant by dnoyeb · · Score: 2

    Appearantly the ignorant one is you considering that the encryption is faulty anyway, why bother fooling yourself...

  80. Re:While Bush Fucks America, Canada Just Looks Bet by iplayfast · · Score: 2
    OK all time record since I've been alive. Hows that?

    What really bothers me, is that I drive to work and even though the "drive clean" program has been in effect for years, I'm still seeing black exhaust comming out of trucks and cars. Or about Canadian companies like Eco Logic that have working systems to clean up hazardeous waste, yet receive no support from the government, that still incinerates garbage and pcbs. (kirkland lake area residents what out!).

    Not to mention the pollutants from the coal burning electrical plants in Ontario. Let's invest a couple of million and put scrubbers on the stacks so that tons of carbon isn't spewed into the air. And oh, yes, Ohio thanks for your contributions to our haze. You're one of the dirtest states there is, but you don't notice because it blows over here.

    I've considered moving just for my health's sake, at a great financial loss. Thanks to the government for giving me this option. (Die of lung cancer, or other respertory disease, or move).

  81. Old digs in Toronto dry, but Waterloo high by c13v3rm0nk3y · · Score: 1

    Too bad: According to the map my old places on D'Arcy and Kensington Ave. would have been Wi-Dri.

    Fortunately, my new digs are working on going wireless, and legally.

    --
    -- clvrmnky
  82. This is the wrong approach by dazdaz · · Score: 2, Insightful

    I think this is a childish approach and very dangerous because of the legality of doing this, however I do understand their need to highlight this serious issue, this is clearly the wrong way.

    In fact I would go so far as to say this is an unauthorised pen-test, in that part of a pen-test is in finding hosts/networks in the same way the physical location has been found, but not only found, also published.

    I dont know where liability and juristiction come into play here, i'm surprised these guys/gals are prepared to go this extreme and risk finding out.

    Surely a CNN interview would do their careers good and promote the issue far wider than a website could?

  83. APs everywhere in Auckland. Advice required. by Anonymous Coward · · Score: 0
    on the RoamAD network.
    Their network is here:

    RoamAD network area



    I can't get on to it though. Any pointers? Tips? from the pros. How do you do it?
  84. You decide by dazdaz · · Score: 1

    Is this a very nieve and good samaritan concerned Internet users united thing or a business strategy in order to obtain security work and publicity.

    If it's the first, then they should take legal advice.

    If it's the second then is this what the Internet has come to? [I'm talking about publicity of themselves and assuming that not all of those networks will be Internet connected].

  85. How many false positives are on this?? by chinard · · Score: 1

    I live in toronto, and i must say that looking at this map is quite shocking. Then i sat down and really started looking at it, and i made an interesting observation. Most of the really HIGH concentrations of red markers are in RETAIL districts where there are alot of stores with POS systems, shoplifting prevention, motion detectors and store security. Most of these stores probably don't actualy have wireless networks, but have plenty of other things that might generate an rf signal that could be mistaken as a wireless network.

  86. Uhhh, kinda like Portland? by Anonymous Coward · · Score: 0

    http://www.pdxwireless.org ?

  87. Aww, darn it! by AndroidCat · · Score: 1

    I was going to by a wireless card and a Pringles can and get rid of my DSL. And now someone had to go spill the beans!

    --
    One line blog. I hear that they're called Twitters now.
  88. What's really retarded is... by inteller · · Score: 0

    .....when a bunch of war drivers get together and start calling themselves a consulting group. You can't even take their name seriously. I seriously doubt they can offer any serious services besides telling me what the latest news is on slashdot and who has the highest score in Warcraft 3. I wish I could have reputable reporting that doesn't give fly by night groups attention.

  89. False sense of security by shepd · · Score: 2

    Sorry, I can't find the link, but with the right equipment (all consumer available) you can easy link up to any wireless network up to 40 km away.

    With your sheilding they might have to be just 1 or 2 km away, which still leaves them completely hidden, and your network totally open.

    --
    If you could be told what you can see or read, then it follows that you could be told what to say or think - BoC
  90. Toronto, The Naked City by Hott+of+the+World · · Score: 1

    There's one thing wrong with that title. Can anyone spot it?

    --
    | - | - |
  91. Mostly residential and small business by Jeff+Hornby · · Score: 1

    I live in Toronto, and looking at the map I'd say that at least half of the unsecured networks are either very small businesses (no more than 5 or 6 employees), residential or one of the universities. The clusters along Yonge, Richmond, Queen, King, etc. are mostly stores with some residential or commercial space above them or condo towers.

    Look around King and Bay where the banks are and you'll see that there are hardly any networks at all.

    Still a problem, but it looks like the big boys (read the ones we don't want hacked) are doing OK, it's the little guys that are screwing up.

    --
    Why doesn't Slashdot ever get slashdotted?
  92. False conclusions by Jetson · · Score: 2
    The map and site determine "secure" and "insecure" solely by whether or not the node uses WEP. That's wrong for two reasons:

    1) WEP all by itself is simply not secure.

    2) If you are using another form of encryption (such as IPSEC) then WEP would slow down your network without any security benefits because the data stream would be encrypted twice.

    By way of example, I run a Linux server and Linux laptop. The server has a second ethernet interface that is dedicated to the wireless device. Both the laptop and the server are configured to drop all packets arriving or departing via the wireless device except for IPSEC (esp protocol and udp port 500). Forwarding in the server is only permitted from the ipsec (post-decode) interface. If someone wants to use my broadband connection then they have to break IPSEC.

    And yet these guys would flag me on their map as an insecure station because I don't use WEP. Maybe they should re-make the map based on whether or not their roaming node can do more than just handshake. Like, try connecting to Slashdot or something....

  93. open source method to roam between these networks? by robdeadtech · · Score: 1

    Are there any open source project to enable roaming "seamlessly" between wireless networks? Greenpacked(http://www.greenpacket.com/) is working on this but AFAIK it isn't open source...

    --
    Heil Sig! -Rob
  94. this is great! by Anonymous Coward · · Score: 0

    i am both for improving system security AND abusing the ignorant:)

  95. Re:open source method to roam between these networ by Anonymous Coward · · Score: 0
    Check out RoamAD:

    http://roamad.com/roam_home_demo.html


    They seem to have solved all that.
  96. 24 Sussex by Anonymous Coward · · Score: 0

    I bet here in Ottawa, you'd see a nice red pushpin near 24 Sussex. The RCMP can't grasp the concept of physical security, let alone network security.

    If you observe the traffic, you will notice a barrage of UDP packets. Yup! It's JC out back playing his favourite game.. Chrétien-Strike.

    There are two teams: MPs and Protestors.

    If you play JC, you have your choice of pepper spray or your bare hands.

    If you're playing Sheila Copps.. well, trust me.. you won't need a weapon.

  97. Really? by Anonymous Coward · · Score: 0

    I would have thought that a lot of "naked networking" went on there.