Man Arrested for Using Open Wireless Network

DaCool42 writes "In Tampa Bay, a man has been arrested for using a wide open WiFi AP. The St. Petersburg Times has the full story. 'It's no different if I went out and bought a Microsoft program and started sharing it with everyone in my apartment. It's theft,' said Kena Lewis, spokeswoman for Bright House Networks in Orlando."

Open doors

[bburton]

Police say Benjamin Smith III, 41, used his Acer brand laptop to hack into Dinon's wireless Internet network.

Yeah, because we all know how much "hacking" is required to use wide open WiFi connections.

Also, the poor guy admitted to using the connection too (unauthorized access to a computer network, which is a third degree felony according to the article). Now, if he would have just asked for a lawyer and then shut up, he probably would have gotten off with just a warning.

Re:Open doors

[Kethinov]

You mean the free internet I'm getting from my neighbors isn't legal? :(

Re:Open doors

[PopeAlien]

It remains unclear what Smith was using the Wi-Fi for, to surf, play online video games, send e-mail to his grandmother, or something more nefarious.

.. or quite possibly.. ALL OF THE ABOVE!

For safeties sake lets just outlaw the internet.

Re:Open doors

[bigman2003]

I've got a handheld (Dell Axim) and frequently when I am out and about, I'll turn it on to see what networks are open.

The other day I was eating my lunch near some businesses, and I found 4 networks...3 of which were completely open.

I sat there and checked my e-mail while I ate lunch...not a big deal.

Then I went into one of the businesses (that is the reason I was out in front eating) and I saw a big 'free wireless networking' sign on their counter. And this was a physical therapy clinic...

Re:Open doors

[QuantumG]

Right now you're accessing network that you have no received permission to access. Guarenteed. How can I possibly know? Well heck, you're posting on Slashdot. The whole concept of the Internet is based around a default policy of openness. It is assumed that we have permission to access anything connected to the Internet and that assumption is only revoked by layering an authentication system on top. These people who buy a wireless router, connect it to their network, don't even bother to turn on the authentication system and expect it to be private are just pissing in the pool.

Re:Open doors

No and if you keep clicking on those damn slashdot goatse links I'm seriously going to turn WPA on.
-your neighbor

Re:Open doors

[mnbjhguyt]

I don't think the open doors analogy is fit.
What you are getting is not a property, is a service.

When using network sockets, there are well documented protocols being used.

So the client computer is basically saying to the server, or wireless router: can I connect?
and the server replies: sure, go ahead

It would be the same thing if a bartender gave drinks for free because he wasn't trained in asking for money in exchange.
Would the customers be liable of theft if they took advantage of this?

Re:Open doors

[TWX]

"...It is your private property and you never expect anyone who wasn't welcome to break those boundries, but we have welcomed the Internet with it's complete opposite point of view..."

"The difference here is it's wireless. It uses *PUBLIC* airspace/radio frequencies. That's the same line of reasoning the Supreme Court used with regards to the creation of the FCC."

It's even more than that. The wireless router received a standard, "can I have legitimate credentials on this network?" request in the form of a DHCP lease request. The wireless router replied with valid credentials for that network. The user did not make any malformed requests, did not use any information that he should not have rightfully posessed, and in no way forced his way into the network.

He also properly followed FCC rules regarding the use of wireless equipment.

If the owner of a wireless transceiver, a radio if you will, doesn't want to let that device communicate then they bear the burden of making it not communicate. If they leave it in a mode that allows any public access over frequencies that belong to the public-at-large then they bear the responsibility.

I'd like to see the ARRL and the FCC get involved in this, even though the odds are against this guy having any official licensing from the FCC.

Re:Open doors

[Mythrix]

Or it's like this:
Someone bought a wireless router to share his internet connection at home with the rest of his family, but he didn't bother to setup any security.

Then someone outside of the house connects to the wireless router to use the internet connection, without the owner of the router knowing or approving this.

...wait, what were we talking about again?

Re:Open doors

[Questy]

I know in my last apartment that from my sofa I could see three separate unprotected networks *AND* my protected one.

Oftentimes (the way the nic drivers for my card worked) would cause my system to prefer the stronger signal, so I would waft onto one of the other networks. I was only free from the other nets when I logged into each one as admin (they were broadcasting the name "linksys" and had left the original admin accounts untouched) and add my MAC address to the deny list.

So, the question then becomes, when I was using their networks, was it because I was intruding onto their network, or because their network was intruding into my home?

I mean, at what point (other than logging into their WAP as "admin" :) ) does using these networks constitute a crime? Isn't it incumbent upon the owner of said network to secure it? If I leave a set of tools on my front step and it disappears, then I see my neighbor with it, just how mad can I be for having left it out for anyone to walk off with?

Re:Open doors

[stry_cat]

It's even more than that. The wireless router received a standard, "can I have legitimate credentials on this network?" request in the form of a DHCP lease request.

I hope this guy uses this argument and the jury/judge can understand it as this is the key. You can't access a network without being given permission and that permission is usually giving by some automated process.

Re:Open doors

[v1]

I was just fine-tuning the analogies being used here and have one of my own that's a little closer to the point.

Imagine your neighbor has a TV going loudly - he has cable TV and you do not. You hear a show playing you've been meaning to see. You yell over the fence, "mind if I come over and watch that show?" The neighbor's butler yells back, "Sure, come around through the gate.". You go over, sit down and enjoy the show. After the show is over, the owner shows up, and is PISSED because you are there.

The neighbor has not lost any property, but has been denied payment for a service he has performed. (providing you with entertainment) Unfortunately for the neighbor, you were allowed free access to the entertainment indirectly by the neighbor. The neighbor has no legal grounds against you because you were acting with permission of an agent of the neighbor. (the butler)

This is very similar to the issue of open access points. The wireless router being the butler that's been told to allow anyone that asks to be given free internet access. Just because you get upset that the currentl policy of your own access point bothers you does not give you free license to sue someone that has taken advantage of your offerings.

Looked at another way, if a store owner places a tray out in his grocery store labeled "free samples", and some kids come in and start eating the samples, the store owner has no right to prossicute the kids for theft just because it's not "what he intended". He has every right to change his mind and tell the kids to leave, but what's done is done. Give someone permission to do something, and you're just going to have to accept it when they've done it.

This second example has only one assumption to be made though... does an open access point imply a "free samples" sign? Surely we can agree it would not be the same if the tray was sitting in the store and did NOT have a "free samples" sign, surely anyone in the store would be apprehensive about taking something from the tray, and surely the store owner would have right to be upset if someone started snacking on his new display he was setting up. Unfortunataely, access points come from the factory open, and unedjucated consumers don't realize the door is open by default for the world, so they feel that their beliefs take precidence over their actions. This complicates the matter of assuming an open access point is intended to be a free access point, because it can't easily be said that most access points that are open are intended to be free. I'd be willing to bet that 90% of the open access points in my city would get closed if the owner realized I had free and unimpeded access to them. Given that simple reality, I realize that most laws are made to protect the majority, sometimes from their own stupidity.

Should accessing open wireless access points be illegal? That is a tough question for me to answer. I believe the 'free' sign cannot be assumed because the majority of WAP owners simply don't realize the WAP is open to all - this is not something that anyone can effectively argue against. This makes the open access point much more akin to the plate of what appear to be free samples in the grocery store, but with no sign saying "free samples". This places Joe Public on much more shakey legal ground if he digs in. It could then be assumed that the onus is on the public to determine whether they really are free samples before digging in, and if they eat some and then the store manager storms out and is pissed because you are eating his display, I believe it could be assumed he has a right to be upset.

The simplest way to clear this up is to ship WAPs with free access disabled, OR to ship all WAPs with a label taped over the power jack, saying THIS ACCESS POINT SHIPS FROM THE FACTORY WITH ALL SECURITY AND PRIVACY FEATURES DISABLED. UNLESS THIS CONFIGURATION IS CHANGED BY THE CONSUMER, ANY MEMBER OF THE PUBLIC THAT COMES WITHIN THE RANGE OF THIS DEVICE MAY HAVE UNRESTRICTED ACCESS TO YOUR INTERNET CONNECTION. With that in place, the onus then falls on the WAP owner to secure his access point, and we can more easily say the "free" sign is out on the WAP if it is left unprotected.

Re:Open doors

[alta]

I think in this case I'd say you left a set of tools sitting in the guy's kitchen, in his way.

I have exactly the same problem, I have my laptop setup to auto-connect to the best network because it's very convienent while traveling. Then suddenly the guy in the office downstairs gets an AP, puts it on the same channel as mine (dumbass) and leaves it insecure. So I suddenly get connected to his stinking network and all my servers are unavailable. So I went down there, had a talk with him about security and for free, secured his network. 2 weeks later, it's called linksys again and it's insecure. I go down and ask him why "Oh, we had someone else come in, and we couldn't find the codes (he meant wep keys) so we just reset it. Great hu?"

Yeah, great....

So now, I have a WAP that I sat as close to his office as possible. It's on the same channel as his, it has an antenna pointing at his office, it's wide ass open, the SSID is linksys (even though it's not a linksys), and it has no connection to the internet. awe......

But really.....

[DotNM]

How was the guy supposed to know that he didn't intend for the AP to be open to everyone.

AP makers should force, once the device is connected for the first time, for it to go to a config page which outlines all the security settings (WEP, etc.)..... maybe then some people will start to understand security.

Should charge the idiots who leave in unencrypted

If microsoft left xp disks at street corners unattended complete with legal cororate serial numbers would they be surprised if people were using them? Same idiocy here. Leave a network open and someone's going to get in. If you're lucky it's just for free internet.

Erm..

[mar1no]

I always thought stuff like this was a little weird.

It is like a radio station only allowing members to listen to their station, but broadcasting to everyone and saying if someone who isn't a member listens in, they are breaking the law. Either set up your shit so only authorized people can access it, or don't and not be permitted to have unauthorized people arrested for using it.

Re:A poor analogy

[ne0nex]

no different if I went out and bought a Microsoft program and started sharing it with everyone in my apartment. It's theft'

or better yet, continuing to use her flawed analogy:

It's like buying a Microsoft program, and leaving the open box, with the jewel case and installation media on the sidewalk in front of your house then bitching when someone walks by and installs it.

Not quite

[secondsun]

Ok, the headline should read "Man Arrested While Using Open Wireless Network." He was arrested because he had been sitting in front of a guys house all day in his suv on his computer. Whenever he was approached he would shut his notebook and look suspicious. After a few hours of the nonsense the police were called.

The rest of the article is standard "open wireless is for kiddie porn and a gateway to identity theft" FUD. Of course, most people just use it to download music for free, but the warnings of consequences for the owner of the network are legit. If your network is used in-appropriatly, you ARE responsible.

Turn on encryption, add a password, add mac based filtering, turn off dhcp and you are pretty much set.

Re:WTF?

[st0rmshad0w]

Sure you are giving permission, if your network hands out an address to anyone who comes along you have basically given them permission to use it.

Look at it this way, if you leave your porch light on, is it illegal for someone to use it to read by if they are out on the public street?

Re:If I leave my back door open...

[Mr2001]

But if you leave your TV facing the front window, and you don't close the blinds, you shouldn't be surprised when people on the sidewalk look through your window and watch the TV you're paying for.

An open wireless network is hardly a "back door" - it advertises its existence to the world, and it blankets an entire area. Walking in through a back door means targeting a specific house and looking for a way in, but it may not even be possible for the average person to figure out which house is hosting a particular wireless network.

Re:Yeah...

[pmazer]

You could be arrested if your neighbor happens to also have a wireless network and your computer decides it likes that one better one day. That's egregious.

Re:A poor analogy

[jamesh]

Or worse still, he could have been spamming!!!

The person being arrested should be the one with the open access point. The owner could be committing all sorts of illegal acts and can then claim 'But my access point is open. It could have been anyone. Prove it was me!'

How can he be arrested for using a resource which was advertised publically? The guy was broadcasting his ssid with no security on it, which sounds like an invitation to me

Re:A poor analogy

[HardCase]

I think a more appropriate analogy...

How about not using any analogy at all - this isn't exactly rocket science. Don't screw it up by suggesting another bad analogy to explain a simple situation.

Re:A poor analogy

[QuantumG]

Or it's like, umm, leaving a hotdog on the front seat of your car in the midday sun.. it just keeps gettin' hotter man. Ya know, prior to The Enlightenment there was only two forms of argument. The first form was the usual "appeal to your sense of humanity" emotional bullshit argument favoured by mothers and republicans of all eras. This argument usually starts with the five most stupid words you can ever use to start an argument: How would you feel if.. The second form of argument available was the "appeal to analogy" style or, to use a fancy name for it, Case Based Reasoning. That's the kind that summary girl used and you just compounded, where you try to dumb down the situation so people who have never thought anything through in their lives can make a snap decision about the moral standing of a unique and complicated situation. Following the middle ages we received another kind of argumentive style. Some might call it a "modern" style of argument, but I prefer to say that it is a logical form of argument. This is where you state a number of basic axioms and then using easy to follow rules you present a string of statements which one can follow to arrive at the current situation. For example, you might present the axioms:

1. People exist in time.
   
2. People feel pain.
   
3. Pain is unpleasant.
   
4. Actions can be taken by one person to make another person feel pain.
   
5. Sometimes people can be provoked into performing such actions.
   
6. Causing pain without provokation is unjustified.
   

From these axioms you can easily make the argument that beating people up for fun is not justified. By introducing just a few more axioms you might make the argument that drivers should be licensed to ensure a minimum level of competency in order to prevent unprovoked pain to others, etc.

But hey, feel free to keep making arguments the old fashioned way. After all, it's not like you ever claimed you weren't intellectually lazy. It's not like you're posting on a site where one of the most treasured attributes of the target audience is their intellectual superiority or anything.

Attractive Nuisance

[cmd]

This seems to be similar to "attractive nuisance" violations: If a homeowner sets up a trampoline in his front yard he must also put a fence around it. Otherwise, he cannot complain about trespassers when all the neighborhood kids start jumping on it. Furthermore, without the fence the homeowner can (and has been successfully) be sued for negligence when one of those kids breaks his neck.

This Story Isn't About WiFi...

[aluminumcube]

It is about the fact that the guy was a fucking creep.

Seriously- if he REALLY thought what he was doing was OK, why did he act all cagy and close the laptop/drive away every time the homeowner saw him?

WiFi or not, this guy was acting strange in front of someone's home in such a way that I think it would probably freak most people out. The cops used the WiFi excuse just to bust the guy and I say jolly good show on them. I would feel very diferently if the guy simply said to the homeowner who he was and the fact that he was surfing on his net connection, but he didn't.

Re:Entrapment

[tez_h]

The homeowner KNOWINGLY left his router unsecured.

Since, in general, a homeowner is neither an officer of the law nor an agent of the government, the prerequisites of entrapment are not fulfilled.

-Tez

The Looming Legal Threat to Wi-Fi

[usurper_ii]

Your post reminded me of a good Dvorak commentary that came out about a year or so ago. -- Usurper_ii

http://www.pcmag.com/article2/0,1759,1565274,00.as p

By John C. Dvorak

To drive around looking for connections to open wireless access points is called wardriving. In Canada, people who are caught doing this can be arrested for stealing bandwidth. The legality of this practice in the U.S., however, is a bit hazy, and there are many mitigating factors. One is that several organizations deliberately leave access points unencrypted so that people can use them as necessary. Also, many computers with built-in wireless simply grab the first signal they detect. Then there's the trespassing issue: The wardriver isn't trespassing on the router, the router is trespassing on the wardriver's airspace.

Free Access

This issue was brought home to me recently when one of my laptops told me it was ready to install new Windows XP upgrades, even though the laptop was not on a network and my wireless access point was off-line. I discovered that a neighbor's wireless router, named "default," had provided the access. Using my Toshiba's View Wireless Connections option, I saw five nearby networks that I could grab, three of which were unencrypted. Obviously there's plenty of free access around for harried travelers. It seems to me that being able to download your e-mail at an open connection is a good thing.

Look into the legality of this, though, and you hear vague comments like "The FBI doesn't know how legal it is" or "It may be illegal, because you're using someone else's connection or you're spying on their network." This issue will create ridiculous legal problems, which is bad news for both consumers and law enforcement, unless a sensible, national policy can be developed.

Personal and Corporate Responsibility

Let me jump in and propose a simple, logical public policy. Law enforcement doesn't need to get involved whenever some guy in a doughnut shop poaches a nearby Wi-Fi connection to check his e-mail, thinking he's on the shop's network. This shouldn't be a crime, even if he's intentionally poaching. We must put the burden of responsibility on the broadcaster, not the end user. It has to be made clear that people sending open connections all over town should be responsible for them.

Here's what I propose: Once a wireless signal leaves private property, it becomes public domain. If the person transmitting the signal wants it protected, then encryption is up to him or her. If someone beams an Internet connection into my home and I happen to lock onto the signal, he is trespassing on me, not the other way around. Public policy must reflect this logic. Keep it out of my house if you don't want me using it. Keep it out of my car. Keep it away from me in public places.

The Public Interest

This policy makes sense because it lets anyone who wants to provide open access do so without hassle or fear. Groups in San Francisco and Seattle are openly promoting free 802.11 connectivity. Many coffee shops, restaurants, and community groups now provide free wireless access, and directories of these hot spots are easy to find online.

This ubiquity of access is to be encouraged as in the public interest. But it can't happen if the law doesn't make the person transmitting the 802.11 signal responsible, instead of blaming any roaming users who are simply grabbing open connections. If this means that a corporate network is wide open to hackers, because the company doesn't bother encrypting the signal it broadcasts all over town, then so be it.

We must not follow the Canadian model that views using unprotected 802.11 connections as bandwidth theft. My computer grabs wireless signals impinging on my house more often than it grabs my own 802.11 connection. It just does. Agencies shouldn't be required to sort this out; it would be a law enforcement nightmare. In fact, it's

Is accessing an open Wi-Fi network a crime?

[ptb]

Caveat: This article is merely the results of my research, so please keep in mind that I am not a lawyer and am not qualified or licensed to disburse legal advice. Corrections to this information are welcomed and desired.

My research would indicate that accessing an open (that is unencrypted) 802.11b/802.11g wireless network is not a federal crime. However, individual states may have enacted their own laws.

According to Title 18 (Crimes and criminal procedure) of the United States Code, Part I (Crimes), Chapter 119 (Wire and electronic communications interception and interception of oral communications) from usdoj.gov:

2511. (2)(g) It shall not be unlawful under this chapter or chapter 121 of this title for any person --

(i) to intercept or access an electronic communication made through an electronic communication system that is configured so that such electronic communication is readily accessible to the general public;

2510. Definitions
(16) "readily accessible to the general public" means, with respect to a radio communication, that such communication is not --

(A) scrambled or encrypted ;

(B) transmitted using modulation techniques whose essential parameters have been withheld from the public with the intention of preserving the privacy of such communication;

(C) carried on a subcarrier or other signal subsidiary to a radio transmission;

(D) transmitted over a communication system provided by a common carrier, unless the communication is a tone only paging system communication; or

(E) transmitted on frequencies allocated under part 25, subpart D, E, or F of part 74, or part 94 of the Rules of the Federal Communications Commission, unless, in the case of a communication transmitted on a frequency allocated under part 74 that is not exclusively allocated to broadcast auxiliary services, the communication is a two-way voice communication by radio; [Ed. FYI the unlicensed spectrum used by Wi-Fi is ruled by part 15.]

I do not believe that Title 18 (Crimes and criminal procedure) of the United States Code, Part I (Crimes), Chapter 47 (Fraud and false statements) Section 1030 (Fraud and related activity in connection with computers) from usdoj.gov applies:

1030. Fraud and related activity in connection with computers
(a) Whoever--
(1) having knowingly accessed a computer without authorization or exceeding authorized access [...]
(2) intentionally accesses a computer without authorization or exceeds authorized access, and thereby obtains--
(C) information from any protected computer if the conduct involved an interstate or foreign communication;

Whether or not this would apply would depend on the definition of the term "protected computer". An open netwo