Slashdot Mirror

← Back to Stories (view on slashdot.org)

Warflying 2013 Access Points in Los Angeles

Posted by CmdrTaco on from the now-thats-just-crazy dept.

Kallahar writes "We went warflying over Los Angeles and Orange counties yesterday. Flying in a small plane at 1400 feet we detected 2013 802.11b APs in 75 minutes, 71% had no WEP encryption. A map and some pretty pictures are up at my writeup."

22 of 328 comments (clear)

  1. That's nuts by GabeK · · Score: 5, Interesting

    What I find pretty amazing is the 500+ people with the default SSID. It's like my apartment complex...if I'm not careful, I can get on one of three different networks and not know it!

    --

    [sig] 10 + 10 = 100 [/sig]
  2. Hey thats my SSID by Delta-9 · · Score: 5, Interesting

    "Hackerish SSID (h3lpm3) 15 (0.7%)"

    Hey thats my SSID!

    All kidding aside, I wonder how many /. readers' SSIDs are in that netstumbler log, and I wonder how many are afraid to reply and say so since their GPS coords are associatated to their SSID.

  3. 2013 access points... by foxtrot · · Score: 4, Insightful

    ...is nothing; it's really kinda cool that there are that many.

    1430 of them being unsecured, that bothers the heck out of me.

    -JDF

    1. Re:2013 access points... by gnuadam · · Score: 5, Insightful

      Just because it doesn't have wep doesn't quite mean that they're unsecured. I don't use wep, but I only allow designated mac addresses onto my network, and make sure that any traffic I care about is either encrypted at the protocol level, or is ssh-tunneled to a wired machine. I trust ssl much more than wep.

      --
      You say :wq, I say ZZ. Why can't we all just get along?
  4. Sweet by Tebriel · · Score: 4, Funny

    I'll just get a hot air balloon and get to the right spot and kiss those Internet access fees goodbye!

    --
    The Blaster Master Fighting for Truth, Justice, and Evil Pie since 1979
  5. I live in LA! by jedir0x · · Score: 5, Funny

    Woah, nice to have a map of all the access points, for those times when I'm without internet connection ... or don't want to use my own :D Thank god for wireless!

    --


    I'm not drunk, I'm just in touch with pi.
  6. East LA by blackmonday · · Score: 5, Funny

    In East LA, a pilot is "warflying" when averting the numerous bullets flying into the air, shot by drunk cholos on July 4th. Talk about bombs bursting in air.

    And I can hear it already - hey ese, you forgot to encrypt your airport station, homes!

  7. Slashdotted by halo8 · · Score: 4, Informative

    On December 10, 2003 we went out Warflying over Los Angeles and Orange counties. Not5150 was the pilot of the 4-seater beechcraft and Kallahar was the laptop/gps/antenna operator. In a 75 minute flight from Pomona to Los Angeles to Santa Monica to Long Beach to Orange and back to Pomona, 2013 access points were found.
    The antenna was a mere Orinoco Omnidirectional Range Extender which was hand held. Unfortunately, the GPS didn't work for the first 20 minutes, and the wireless card crashed (had to reboot) while we were over long beach (took 7 minutes).

    Equipment
    Laptop Compaq Presario 2190US (2.4Ghz Celeron)
    802.11b card Orinoco Silver
    Antenna Orinoco 2-3dBi Omni
    GPS Magellan Meridian
    Software NetStumbler on Win2k
    Flight Time: 1 hour 15 minutes @ 1400ft

    (699x446 - 134k)

    Statistics
    Total APs 2013
    No Encryption 1441 (71.6%)
    WEP Encryption 572 (28.4%)
    Default SSID 513 (24.5%)
    Hackerish SSID
    (h3lpm3) 15 (0.7%)
    Informational SSID
    (southcoastcircuits) 23 (1.1%)
    Someone's Name 110 (5.5%)

    NetStumbler Files
    WarFlying (1.0MB)
    The drive home (168k)
    (for reference purposes)

    --
    The More Knowledge you have the Luckier you Get- J.R. Ewing
  8. all fun and games... by SuperBanana · · Score: 4, Funny
    We went warflying over Los Angeles and Orange counties yesterday.

    Yeah, it's all fun and games until someone gets caught flying upside down, no pants on, playing with the stick, lookin' at kiddie porn...

    --
    Please help metamoderate.
  9. 1400 feet? by planckscale · · Score: 5, Interesting
    You would think at that alitude they wouldn't pick up anything, considering my buddie's WAP won't reach his backyard. I wonder if they're mostly business WAPs?

    --
    Namaste
    1. Re:1400 feet? by ThogScully · · Score: 4, Informative

      Well, he was using a more sensitive handheld antenna, but also consider there was almost no interference between him and those access points, no walls, trees, etc - just a roof and clear sunny skies in most cases.
      -N

      --
      I've nothing to say here...
    2. Re:1400 feet? by Cthefuture · · Score: 4, Informative

      Air to ground doesn't have anything to block the radio waves. You get really good range.

      Same thing across open water. Although you get less range than in the air.

      --
      The ratio of people to cake is too big
  10. Warbussing by spooky_nerd · · Score: 5, Interesting

    I had a similar, but lower tech, experience just yesterday. On a bus ride through Seattle I flipped open a standard laptop with a Cisco wifi card, and found dozens of access points. Most of them where open. I wonder how long it will be until wireless companies start offering security out of the box? How hard would it be to have a wireless access point that shipped with a random password and instructions on how to use it? It's pretty obvious that the average person doesn't realize what the risks are. I know because as a desktop support tech I get asked about this all the time. As soon as I start talking about things like WEP and MAC addresses, I see eyes glazing over.

  11. Mirror by markclong · · Score: 5, Informative

    http://slushdot.org/mirror/warfly/warflying.php

    Coming slowly but surely!

    1. Re:Mirror by Kallahar · · Score: 4, Funny

      Heh, I swear my server could have handled a slashdotting. But in the last 50 minutes it's gotten 125,000 loads at 2.07 gigs.

      The images are down to 50 wide now, and compressed better, but even with that the sheer volume of slashdotters is tough to handle :)

  12. Better yet, a mirror :) by tugrul · · Score: 5, Informative

    Mirror

  13. Warflying....ok.... by mrtroy · · Score: 4, Funny

    Thats all cool, checking for open networks in your little plane.

    But WHY did you have to set up all those servers to syn SCO?

    They are an honest company looking to make a profit from suing their potential customers, which doesnt follow the DOT COM era at all, so it should be profitable.

    On a side note, you also violated homeland security.

    --
    [I can picture a world without war, without hate. I can picture us attacking that world, because they'd never expect it]
  14. No WEP != No security by wowbagger · · Score: 4, Insightful

    Just because a system does not use WEP does not mean it is insecure.

    I've been playing with a WAP - my intention is to firewall it to the point that the only things you can do are DNS, DHCP, VPN, and accessing a password-protected HTTP proxy with bandwidth throttling.

    The only thing WEP would do in such a case is prevent somebody from sniffing the proxy's password from the air, and if I cared I would just move the proxy over to HTTPS.

    Just as WEP != secure, !WEP != !secure.

    So all the "OMFG! 73% of all the APs we sniffed weren't using WEP, therefore 73% of all APs aren't secured" is somewhat flawed reasoning.

    Granted, it is likely pretty close to the truth. But it is not guaranteed to be the truth.

    --
    www.eFax.com are spammers
  15. Re:Semi-offtopic: Signal range by Grant29 · · Score: 5, Informative

    You can boost the signal strength of the Linksys WRT54G with this "undocumented feature". Basically it's a back door will let you up the transmission strength to the maximum output. Find details at this thread: WRT54G Increased transmission strength. People's comments there indicate pretty good results.

    Check out great deal on electronics and computer at Retail Retreat. Do your Christmas shopping online!

  16. Re:WEP + MAC filtering by pclminion · · Score: 4, Insightful
    Right, like a person capable of cracking WEP isn't going to know how to sniff a valid MAC and reset the MAC on his own card...

    MAC locking is only secure against very casual intrusion. Most cards (all?) can be re-flashed with a new MAC.

  17. How to leave my access point *IN*secure? by PCM2 · · Score: 4, Interesting
    1430 of them being unsecured, that bothers the heck out of me.
    OK, my immediate reaction is ... why?

    Fine, corporate "enterprises" (beginning to hate that word) should have secured their wireless networks. But lets face it, most of the APs discovered are probably Linksys routers sitting in some dude's office. Exactly why do all of these need to be secured?

    I'm a normal, conscientious Internet user. Most of the day, my Internet usage consists of email and (I admit) wasting time on Slashdot. I'm not looking at porn, and I'm not wasting significant amounts of bandwidth. Honestly, who should care if I happen to use their unprotected wireless network?

    Furthermore, I personally wouldn't care if anyone used mine. I would love to feel confident that I could leave my wireless access point unprotected. Several points nag me, however:

    • Every now and then, I'm going to want to download some Linux ISOs. (OK, I mean labels' entire catalogs of songs on MP3.) When I want to do that, *I* should have the bandwidth to do it. I pay for it, I get dibs. So far, I don't know of anything available to your average consumer that will let you throttle bandwidth for your "guests" at will (or, ideally, automatically -- my own MAC addresses get top priority).
    • The kiddie porn issue is an issue. As is, I guess, MP3 downloading. I don't want to have to firewall out P2P ports (and play the game of "what port are they using this week") just to protect myself from people using my AP who are too dumb to cover their tracks. No, I do not believe "but my port was unprotected, open to the world" is going to hold up in court.
    • People are, by and large, bastards. If I leave my AP unprotected, it's not going to be used occasionally by passers-by etc. It's going to be my next-door neighbor, using it to download massive AVIs all night long, all the time thinking "hee hee hee, this dumbass left his wireless AP unprotected." If I were to open my AP, I'd want the first thing to pop up on your browser to be a notice letting you know that, yes, I see you, yes, I'm logging you, and yes, if you were a decent person and you wanted to use this thing all the time, you might drop by, ring my doorbell, and offer to kick me a couple bucks every month.
    Furthermore, I'd like to publicly thank the various people around town whose unprotected access points I've used without permission. You never knew I did it, but it probably saved me some hassle.

    And finally, I'd like to publicly ask owners of coffee shops, delis, diners, bars, and other lounge-around spots: Have you ever considered not charging for that miraculous wireless network you just "installed"? Face it, Internet access is a flat fee for you. You want to bring in customers to buy that cup of half-and-half (I once heard that milk-based froofy coffee drinks have such an exorbitant profit margin that Starbuck's is essentially in the milk business). So why not do it by offering them a place to sit around, relax, and use their laptops? Seems to me it's no skin off your nose. Coffee shops have been providing shelves of books for years -- why not Internet access?

    I bring it up because the coffee shop down the street from my house recently switched from offering free wireless access to charging for it -- something like $15/month, fully a third of the cost of a DSL line that will give me full high-speed access around the clock. Lots of other places are starting to do the same here (San Francisco) -- the "trial period" is over, now you have to pay.

    I ask you: Where's the sense in that? I had just gotten into the habit of spending my mornings in that coffee shop, eating bagels and coffee while I got some work done, when they pulled the rug out from under me. Now the main thing that keeps me going down there is the fact that a couple of the shop's neighbors have their own wireless APs -- unprotected, of course. So now I'm not going to the shop as often, I'm buying less coffee and bagels, and worse, you went ahead and paid for all that (evidently quite expensive) Internet hardware and now I'm not going to be part of that new profit-center either.

    Make it free, man! Wired magazine said as much, months ago.

    --
    Breakfast served all day!
  18. Here's the scoop on this: by The_Pey · · Score: 5, Informative

    1. He was flying in a plane over LA. -For simplicity's sake when flying under Class B Airspace, many pilots on VFR flights tend to stick to flying over interstates - its easy and keeps you out of trouble.

    2. He had a laptop with only one 802.11 card and only one antenna for reception. The necessarily rules out any radio direction finding for accurate plotting of the access points. Instead what you see is what he picked up as he flew and the exact lat / long the plane was at at the time of the signal hit. If he could do some RDF by maybe having antennas in an array attached to the plane at say the wingtips he could with the right software plot out where each possible transmitter was. But he would need to know what altitude the plane was at, what the heading was and the different signal strengths received at each antenna as well as the distance between the antennas in his array. I don't know of any software out there that does this but the information to do this is readily available.

    If he had that setup you would see a map with the projected location of each access point arrayed around the path of the aircraft.

    --
    Hmmm...