Slashdot Mirror
Best Wireless SSIDs You Have Seen?
Ant writes "Best SSIDs you have seen is the name of the new Broadband Reports' wireless security forum.
Funny ones listed that made me chuckle: WardriversOpenAP,
GET LOST,
HackedAP,
SecureAP (no WEP/WPA), TOP_SECRET, HPD-FieldOffice,
MiddleEarth, HoneyPot, mine, and people's full/last name." I think naming your network 'Default' or 'Linksys' should be a crime ;)
Several "linksys", a couple with family names, and one called "The Castle"
Just another day in Paradise
The best SSIDs are generic names like linksys or default. Generic names most always mean I get free wireless access.
Gravity is not just a law, it's also a good idea.
Found one that said "SECURE_ME". A quick Windows share enumeration showed sales data and presumably credit card information avaliable to anyone who was listening.
I informed the business owner that it needed to the secured, and he said his ISP had called and asked him about an "open access point - whatever that is". I sighed and left.
"liberty and justice for all those who can afford it"
Not trying to be funny here, but I've seen HACKME and my boss insists that I use his last name so that he can remember it. (Even though it's broadcasted.)
I just hope he doesn't get mad at me when he gets hacked and someone starts downloading child porn and The Anarchist's Cookbook using his broadband connection.
-Arthur
Cave ne ante ullas catapultas ambules
Seriously?
NEWSFLASH: SOMEONE WHO PLAYS EVERQUEST DOESN'T KNOW WHICH CASE TO CHOOSE
Wow, a "story" on a slashdot forum about a lame "what's the best post" on another forum.
Too bad I can't mod the entire story as -1 LAME.
is "linksys". From that point, I know that the AP is unsecured, and has a default admin password. I visit a cafe a lot in my town, and they have wireless internet that you have to PAY for, and it's like $20/hour, which is ridiculous to pay that much for wireless internet access. But what's more amusing is that it's unencrypted AND still has the default password to the admin console. I feel sorry for anyone who's paying that $20 to surf the web there.
They kept the SSID simple: FU
HackerDetected and Iwillsniffyourpackets are a couple I've seen.
There are some people that if they don't know, you can't tell 'em.
http://www.netstumbler.org/showthread.php?t=11311
I can't speak for many others but my SSID is "KeepDrivingAsshole" - I've also seen one in my wardriving travels called, "LeaveMeAlone". Apparently somebody had already had a bit of fun with his network, eh?
I love idealists not because I am one, but because they make life bearable for pragmatists such as myself.
my friend and i were at a summer camp where we werent supposed to have internet access, but we plugged in a WAP we brought and set the SSID to "drewisawanker"
drew was the name of his RA
the next day we saw 3 RA's walking through the hallway trying to triangulate the location of the WAP
crazy kids we were!
That's mine.
when it's a Netgear with WPA running then I don't want to be right.
BeaverNet, and before you ask.. yes, it was "wide open" :)
http://www.fsckin.com/
My WAP is connected to an 'untrusted' interface on my firewall, such that users can access the web and DNS only. The SSID is, with "addr" replaced with my street address, "come_4_beer_at_addr". Haven't had any takers, yet. :)
THIS_IS_A_SHIT_STORY
Vs lbh pna ernq guvf, ybt bss abj. Tb bhgfvqr. Syl n xvgr.
My last name is Default, you insensitive clod!
Mine is "Sorry, the network is down right now." with MAC filtering enabled. Nobody ever stops to play with my AP.
How am I supposed to fit a pithy, relevant quote into 120 characters?
YOu can search for SSIDs, MACs, and cities and states at WiFiMaps.com. Funniest ones I've seen:
hellostumbler - Framingham, MA
buyclamsonline.com - Pittsburgh, PA
Zhrodague.net - I do projects and stuff too.
I used to live fairly close to a major street and not too far from a university campus, so wardrivers were always trying to connect to my network.
So I decided to ask WWTBOFHD? (What Would The Bastard Operator From Hell Do?)
So, I set up a nice AP called 'linksys' with no WEP. Obviously, every freeloader on the planet would try and connect to it.
Oh, and you could connect to it alright. The problem was that it was connected directly to a proxy server that rerouted every web request directly to goatse.cx and blocked everything else.
Apparently the word got around, and the number of people trying to access that AP went down precipitously after that.
I'm such a bastard...
What's the matter with Default if you change the default password and enable encryption?
I meta-mod all positive moderation Unfair, because it's abuse of the system.
I set up one for a buddy of mine with this SSID. His building is right next to a post office, so it adds credibility. It's hilarious to watch people come in and see "do you want to connect to noconnect-federaloffense?" One literally jumped back from his laptop.
I guess the Man has us trained well!
Mine's called "Default"... and has no password.
;)
Oh, wait... it's not mine, it's my neighbor's. That's why I don't need to pay for broadband service
lorem ipsum, dolor sit amet
At a hotel that charged for Internet access, someone had an access point with the SSID, "LeaveBeeror5dollarsatRoom505". Nice, cheap, easy Internet access without the $15 charge the hotel wanted.
My home AP is named "FuckOff". It's secured (to the extent that an AP *can* be secured) well enough.
My neighbor INSISTS on leaving his WRT54G unsecured. I change it whenever I'm bored (I've also connected to the LAN, and then to one of his shared printers and printed out some "interesting" photos). I'll name his AP stuff like "pimpwifi" "secureme" "hellomike", etc. Nothing too interesting really.
-This sig intentionally left blank
Of course, then you have to come up with a decent DNS name. Mine is `gaga', because it was all I can hear due to the nice heavy masonry walls of these traditional blocks.
_O_
.|< The named which can be named is not the true named
I used to name my phone that way in bluetooth.
A lot of people actually were wondering what was wrong with their cellphones, when they explored their bluetooth-neighbourhood (or got a bluetooth message from me)...
Slashdot: stuff for news, nerds that matter, matter for news, stuff that nerd
Why is that so funny?
It lets people know where to contact the admin. Could be useful if nearby AP operators wanted to link, or perhaps discuss the channel configuration in order to avoid interference.
The address isn't exactly top secret information, surely anyone near the area could easilly figure out what house the wireless signal is strongest near?
*****
:)
It's easy to remember
I think the one most relevent to current events is the coolest. That'd be Cisco's "tsunami" default SSID on some of their access points.
C'mon, baby, kiss The King.
Although lots of people are bashing it, I think default is actually quite a good name (assuming that the router isn't still in its completely default config!) Linksys is not so good as it gives away the manufacturer and allows an attacker to target the attacks. I do however think that default is a lot better than people using house or family names, as that identifies where the AP is. Even using mordor or middleearth or similar can give away your interests, and thus possibly who you are to someone who knows your street well... default is nice and unassuming.
Acquintance of mine has a SSID "Blew me for helping with WLAN" (In Finnish though, "Imutti WLAN-avusta", I think) in his neighbourhood. He's been looking out through his window since the discovery at his neighbours lately trying to figure out which woman it is, always willing to help out.
It was also common to use what looked like a business name or the a person's first name ("lisa") as the SSID. Some AP's had random alphanumerics or what was obviously an attempt at a password for the SSID.
I also did a very basic analysis of some of the interesting things I discovered, such as...
The sample size for this was about 250 AP's during the outbound trip. On the return trip I ran NetStumbler for a lerger portion of the ride and recorded over 1000 AP's (some of which were duplicates of course) but I haven't taken the time to anlyze this larger data set yet.
I didn't try to connect to any of the AP's... most of them would come and go within a few seconds anyway. :)
I'll just wave that one on.
"Learning is not compulsory... neither is survival."
--Dr.W.Edwards Deming
Umm....let's see how hard it is to figure out who is running an AP.
Step 1. Get laptop or $20 Wifi strength meter.
Step 2. Walk around.
Step 3. Use publicly available sources to find out who lives there
And if you really think someone gives a shit if you like LOTR, I think you need a bigger tinfoil hat buddy.
"IfUcanReadThisUR2Close" ?
Dogs look up to men; cats look down on men; But Pigs! Pigs can look men square in the eye. -Churchill
I was sitting in a car in a residential neighborhood Palo Alto, looking for a wireless AP to read me email. Someone's AP was labeled with their street address, which made it easy to drive up in front of their house for better reception.
Linksys is not so good as it gives away the manufacturer and allows an attacker to target the attacks.
It gives away a manufacturer; not the manufacturer. My 'Linksys' might be running on an Airport.
With or without the name of the manufacturer, it is the same. You can always discover the manufacturer - MAC address is unique, and its first part is assotiated with the manufacturer.
No sig today.
I accidentaly renamed a neighbors unprotected network, thinking I was renaming my own. When I realized my mistake, I wanted to rename it back but I couldnt remember the exact spelling of the name they had used. So, I renamed it "oops". That was 6 months ago, and the "oops" network is still around. I wonder if they are continuing to use it under the new name I gave it...
Disabling SSID broadcast doesn't prevent somebody from seeing your SSID. The SSID is in every frame, so it's not like you're preventing anybody with a sniffer from seeing the SSID. Furthermore, they don't even need your SSID to connect to you, as on most systems, the "ANY" SSID will allow association unless your AP had the ability to disable that.
All disabling SSID broadcast will do is to prevent your SSID from showing up in Windows little list of "available networks". This might prevent the little old lady next door from connecting to your system by accident, but it does absolutely nothing in terms of security.
- Give a man a fire and he's warm for a day, but set him on fire and he's warm for the rest of his life.
I like "FBI-STING" I bet that will scare them away
Danger Will Robinson! You are now entering a condescending Unix user zone!
"StopLookingAtMySSID"? I've seen it, no lie.
Premature optimization is the root of all evil
I don't see how it is a problem to use a street address as an SSID. If somebody wants to figure out what house the AP is in, all it takes is a Pringles can (or less) and a couple dollars in parts. They can then look at the numbers on the front of the house, and they have the exact same information as before. I know what house every AP in my neighborhood belongs to, without even using directional antennas. I have spoken with their owners (was helping resolve interference problems in the neighborhood) and confirmed my guesses. If you don't want anyone finding out what house has the wireless AP, you probably shouldn't use wireless equipment in that house.
Using the address, or a phone number, or even both as I do, makes it very easy to get in contact with the owner should the need arise. If an AP is malfunctioning or misconfigured and is causing interference, the owner should be contacted and informed.
The other reason I have my phone number in mine is because if someone else wants to use it, they can. I don't want Johnny Scriptkiddy driving through and screwing with it. But if a neighbor has a guest staying who wants to use my wireless, that is fine. Long and short of it, if someone has the decency to call and ask permission, I will give them my WPA key. My AP is on a separate subnet and requires VPN to access my wired network, so I don't mind giving local people access. Without VPN, all they can do is browse the web and check e-mail.
No matter how you look at it, using wireless has some risks to it. The best way the average home user can protect themselves is to enable WEP (or WPA if available) and lock down the MAC addresses. Using an accurate and descriptive SSID is not a risk, and can actually be very helpfull. Turning off SSID broadcast does absolutely no good and can cause additional problems.
Advanced users and corporate users obviously have more options available to them, but out-of-the-box configuration options are adequate for home users as long as they configure them.
Jeremy
The mac address give away the manufacturer as well, and that can't be changed.