Slashdot Mirror

← Back to Stories (view on slashdot.org)

Could That Be The Wireless Police Knocking?

Posted by ryuzaki0 on from the as-if-from-thin-air dept.

netbuzz writes "Should private-property owners be required to practice safe wireless? Are the wireless police about to come a-knockin' on the front door of your castle? Network World reports on a condo complex in Arizona that will monitor your wireless signal for security. Is this the way all condos and apartment complexes should go?" From the article: "'We just kind of kicked it around the table and everybody said that's a helluva good idea, (mandatory encryption) ought to go in the declarations,' says Welch. However, a lawyer warned that wireless technology could quickly overrun any specific covenants they put to paper, 'so we decided that instead of recording (declarations) at the county that we would leave it up to the hotel manager to put it in their rules and regulations.' Why bother at all? 'We just don't want to see anybody hurt with their wireless system,' says Welch. 'If someone (unauthorized) were accessing it and an owner's information, there could be damage and a potential lawsuit.'"

21 of 322 comments (clear)

  1. paper tiger laws by adam · · Score: 5, Insightful

    FTFA: "We just don't want to see anybody hurt with their wireless system," says Welch. "If someone (unauthorized) were accessing it and an owner's information, there could be damage and a potential lawsuit."

    absolutely ridiculous. maybe they should start digging through our trash to make sure we've properly shredded our monthly bank statements too.

    Furthermore, this rule would be a total paper tiger, as far as enforcement goes, since wep [which i do believe is the most common security protocol in use for wifi today] is widely known NOT to be secure. It will be ironic when the first whitehat captures a few days worth of packets from outside that guy's home and then published the unencrypted contents of his web traffic.

    --
    I am Jack's complete lack of surprise.
    1. Re:paper tiger laws by gnasher719 · · Score: 5, Insightful

      '' Lawyer "Mr. Doe, you left the SSID or 'name' of the network at the default value and didn't add any encryption or security?" ''

      Some manufacturers of wireless equipment are just clueless and make it unnecessarily hard for people to do the right thing.

      On my wireless router, there is a setup page with an html interface where all kinds of things can be changed. The problem is, it never tells you what these things are that you could change, and why you should change them, and what you could change them. One of the things to change was called "SSID" and the preset value was the name of the manufacturer.

      Now how am I supposed to know what "SSID" means? If you apply logical thinking, since it is set to the name of the manufacturer, it is probably meant to be the name of the manufacturer. So the logical assumption would be that it is used to identify the make of the router, like a processor having an ID of "IntelInside" or "AMDSomething" so you know who made it, and the only reason to change it would be to pretend to be a router made by some other manufacturer.

      If these idiots had set the preset field to "NameOfThisNetwork" or "TypeInNameOfTheNetworkHere" then it would have been much more obvious what SSID is for. One line change in the source code for the router software, and I guess 30 percent fewer people leaving the default name because they don't have a clue what SSID is supposed to mean.

      Now that is just one minor point. But consider that there are about hundred settings, and ninetyfive of them will stop the router from working properly if I change them, so how is an end user who is not a computer expert supposed to get this right?

    2. Re:paper tiger laws by penix1 · · Score: 3, Insightful

      "Now that is just one minor point. But consider that there are about hundred settings, and ninetyfive of them will stop the router from working properly if I change them, so how is an end user who is not a computer expert supposed to get this right?"

      Just like any other field where you are clueless....You hire an expert. I wouldn't consider doing heart surgery on my brother who had a heart attack for the same reason.

      B.

      --
      This is a sig. This is only a sig. Had this been an actual sig you would have been informed where to tune for more sigs.
    3. Re:paper tiger laws by walt-sjc · · Score: 3, Insightful

      Or you call support. People are unwilling to read manuals, but perfectly happy to sit on support hold for 30 minutes. An "expert" is not needed for home setups (which is what TFA is about.)

    4. Re:paper tiger laws by Fred_A · · Score: 3, Insightful

      I agree, couldn't each AP setup "wizard" just randomly generate a key during setup ?

      Step 1 : Type the name of your network here __________

      Step 2 : This is the generated WPA key of your network write it down and enter it in the gadgets you want to talk to this AP, alternatively enter your own key

      If you lose/forget the key, press the reset key on the AP and rerun the wizard.

      There is a moderate risk in this if the random number generator creates predictable keys.

      It's always seemed to me like a very simple way to solve the problem yet I've never seen a setup routine go that way.

      --

      May contain traces of nut.
      Made from the freshest electrons.
  2. oh thank you nanny state by kaufmanmoore · · Score: 5, Insightful

    i will never have to learn from my mistakes ever again.

  3. Rediculous... by Xserv · · Score: 5, Insightful

    This is a waste of time and money. People should secure their own networks. If you don't know how then you pay someone to do it for you. If you can't afford it, then how are you able to afford a wireless network. Period.

    Why should any government, company or anyone else worry about someone else's network connection security -- unless they're being paid by that party to do so. And in the case of a government (city/state/local/federal) being responsible; don't make ME pay for it.

    Xserv

    --
    "I love lamp."
  4. should I... by Anonymous Coward · · Score: 4, Insightful

    get blamed when someone breaks into my house if I leave the door unlocked?

    Or should I be blamed when Windows automatically connects me to open APs?

    And...If we are going to go that far?

    Why not get these people in trouble for using WEP to begin with?

    Safe wireless? WEP is like using a condom that's been poked with holes.

  5. Why single out wireless protection? by ewireless · · Score: 5, Insightful

    This seems silly. If you want to protect your own private property or not, that's your own business. They don't require you to lock your apartment door when you leave. They don't require you to lock your car door when you park in your parking space. How is this any different?

    1. Re:Why single out wireless protection? by Tim+C · · Score: 4, Insightful

      So if I move into one of these blocks and am friends with my neighbour and want to collaborate on a project the 'management will come and shut us down?

      No, they'll tell you to enable encryption, which you'll do, and you'll agree on a shared secret, and all will be well and you'll realise that the sky isn't falling after all. That's assuming that they have the right to impose such conditions in the first place; that'll depend on your local tenancy laws.

      --
      It's official. Most of you are morons.
    2. Re:Why single out wireless protection? by ivan256 · · Score: 4, Insightful

      And if I want random strangers passing by to be able to connect?

      What about systems that show you a gateway page unencrypted to help you gain encrypted access? Whould those be illegal?

      How about you go to hell and stop telling me how to live my life. I love how people are all about civil liberties until it comes to something that they like, and then it's OK to force people to behave that way.

      Here's another way for you to think about this: These rules are being put into place because the appartment complex is probably getting kickbacks from the local cable or DSL provider and they want to make sure they collect the maximum possible number of subscription fees. These rules are solely in place to protect the profits of the local monopoly. Congratulations on being a big business shill.

  6. Ludicrous by z_gringo · · Score: 4, Insightful

    That is just nuts!

    I run mine wide open because that is they way I want it. I secure my machine of course, but if someone is within range and wants to use my connection, I don't have a problem with that. Hell, my SID is actually "WideOpen".

    I used my neighbor's DSL for over a year, but I eventually got my own. There is no reason every house on a block should purchase their own Internet connection, and wireless network. Apartment buildings are in an even better situation. All that money that people are spending on individual connections could purchase a lot higher speed connection for everyone and still save money.

    --
    -- -- Warning. Do not stare directly at the sun.
  7. ridiculous by thdexter · · Score: 3, Insightful

    I know several people who leave theirs open for neighbors and friends to use without encumberance. It's a nice gesture, one in which a private good becomes a public good via goodwill. Even with bittorrent running I'm not using all of my bandwidth at all times.

    Besides this, do we mandate that folks lock their car and house doors? Are there laws against leaving a key under the rug, on the door frame, or below your car door?

    --
    I'm on a road shaped like a figure eight; I'm going nowhere but I'm guaranteed to be late.
  8. FCC by Detritus · · Score: 3, Insightful

    I'd argue that their rules are preempted by the FCC's regulations on spectrum use. The FCC usually takes a dim view of people who trespass on their turf.

    --
    Mea navis aericumbens anguillis abundat
  9. Here is what you should think about by zoomshorts · · Score: 3, Insightful

    Suppose a known sex offender began moving child porn over YOUR wireless network.

    I would love to see you explain that away as an "oops, I forgot to turn encryption and
    authentification on" to the police following the pervert. They will FIRST get you for
    aiding and abetting the crime.

    This stuff, security, only makes sense in today's world.

    1. Re:Here is what you should think about by Mantrid42 · · Score: 3, Insightful

      Oh no! I better never do anything nice for anyone because of the tiny, tiny chance that someone might possibly maybe do something bad with it one day!!

  10. Not a law, it's a condo rule. by Tetravus · · Score: 4, Insightful

    There is a difference between laws and condominium covenants you know...

    So, the owners decided to implement access point security and pool their resources to provide monitoring (I guess, the article isn't too clear on enforcement methodology). Why isn't the /. crowd applauding end users for not only caring about their networks but actually taking pro-active steps to prevent break ins? Sure, it's not a perfect solution, but it's certainly better than the status-quo and it keeps over zealous government types from being able to create actual laws to enforce this behavior ("Look, we've already got encryption. No need to legislate it.").

  11. The real reason... by Joce640k · · Score: 4, Insightful

    The real reason is "plausible deniability".

    If you have an open connection then you can't be found guilty in court of any cybercrimes comitted via your Internet connection. The thought police can't bear the thought of that.

    --
    No sig today...
  12. Some Perspective by Fnord666 · · Score: 5, Insightful
    Let's get some perspective on this please. Despite the gratuitous use of the word "police" in the posting headline, this has nothing to do with the police or the law. No one is trying to pass any laws. This is one condo association setting up the covenants under which purchasers of the condos must live. This isn't any different than a restriction that condo owners can't put a fence in their front yards.

    According to the article

    "Bryan Welch is sales manager and designated broker for Canoa Ranch and he takes credit for first broaching the wireless security mandate with the developers of the project, which will provide each condo unit/hotel room with wired broadband, telephony and cable TV service."
    In summary, the condo developers are providing the broadband connection and want to make sure that the condo owners secure their endpoints. Open access points have some risks that the developers are apparently not willing to accept. As a goodwill gesture they could retain a local networking firm to help owners set up their wireless networks properly though.
    --
    'The tyrant will always find pretext for his tyranny.' - Aesop's Fables
  13. Experts by Presence1 · · Score: 4, Insightful



    "I wouldn't consider doing heart surgery on my brother who had a heart attack"

    This is not heart surgery, it is a consumer product. It performs commonly used functions in a standard way, within standard capabilities. One should not need to hire an expert for common consumer grade functions (even when there is an incredible amount of technology 'under the covers').

    In the early days of automobiles, it was necessary to hire a driver because driving was complicated and dangerous -- you could break your arm if you got it wrong starting it, and you had to manage spark advance and several other long-since-automated controls in addition to the throttle, brake and clutch. Now, hardly anyone even knows what is under the hood.

    In early networking, there were many protocols, and IP addresses were set by hand. It is now approaching the point where it is a plug-and-play product, and this is GOOD.

    Progress is not only making the previously impossible, possible -- progress is also making the previously difficult, easy.

    Technologists who understand this will have more and happier customers. Technologists who don't are almost as bad as Luddites in holding back technology.

    The GP post is absolutely right -- the top-level UI should hide functions that are not commonly changed, and make clear what should be changed ("YourNetworkNameHere" is a GREAT idea). Uncommon, expert level functions should be available, but only via deeper UI levels.

  14. Re:this is absolutely necessary by repvik · · Score: 3, Insightful
    1. Unprotected wireless access points are one of the main ways illegal porn, illegal software and various other data gets uploaded to the internet
    Please say you're kidding. Cite any reliable source for this.

    2. it is one of the ways terrorists can communicate safely without any chance of being tracked
    Kind of true. But they can also do this with encryption, public payphones, prepaid cellphones, wireless networks with WEP-encryption, etc, etc.

    3. unprotected wireless access is an open invitation to hackers to steal important personal information (including financial info)
    Having sensitive personal info on your PC has always been an "invitation" for someone to steal it. Ever heard of malware? If you can't take care of your sensitive data, shame on you.
    In this day and age, having unprotected wireless access is akin to having your home telephone line available to public. Imagine your surprise when police knocks on your door and tells you your home phone was used to call a remote cell phone to trigger a bomb and you please ignorance saying well it is available to everyone.
    Again, you've gotta be braindead. Ever heard of "payphones"? Does it make the phone company liable?