Residential Wi-Fi Mapping Database Revealed

Talaria writes "An enormous database of home wifi routers and their locations has been revealed after the Internet Patrol did some digging following AOL's recent announcement of their new "Near Me" service, which allows AIM users to see which of their instant messenger buddies are geographically near them. The database, containing the unique IDs of more than 16 million wireless routers and their locations, has been compiled by AOL partner Skyhook Wireless, which claims to have mapped the majority of residences in the U.S. and Canada."

Wow...

[physicsboy500]

Why don't they just color code it to show the non-secure points and send a fax to all known hackers?

oh... just got an email!!

Re:Wow...

In Soviet Russia, the network maps YOU!

Re:Wow...

Done and done!

Re:Wow...

Actually, it sounds like this plug-in is wide open for mis-information. It works by linking your name with a location based on what WiFi points your computer picks up. You can screw with the system by hacking the plugin to upload completely arbitrary lists of WiFi access points.

Public celllular network

How soon before a nearly free public cellular wi/fi etc. network?

Re:Public celllular network

[PurPaBOO]

now. http://www.fon.com/

First post and it's slashdotted?!!

[writertype]

Man, that's some weak sauce.

Re:First post and it's slashdotted?!!

How about some cyber sauce?

AOL Introduces Location Plug-In for Instant Messaging So Users Can See Where Buddies Are

[...Adam McDugle (an IT manager and regular slashdot user) is testing out the Skyhook plugin on a late Saturday night over a scotch on the rocks at the house. Meanwhile an AIM session takes a curious turn...]
adam_mcdugle - So, you really look like that jpeg you sent me?
hotgrl69 - well my gf took the pic of me while i was showering lol!
adam_mcdugle - ORLY? Where did you say you live again?
hotgrl69 - my gf and i live in an apt in daytona beach :)
[ Adam notices the blue dot graph showing hotgrl69's actual location. He fires up google maps and sees hotgrl69 is actually in a trailer park in Jasper Arkansas. At this point, Adam pretty much realizes a set of twigs and berries is probably on the other end of the screen but really doesn't care... ]
adam_mcdugle - Tell me a little more about yourself. What makes you hot?
hotgrl69 - me and trish like long baths
hotgrl69 - we take turns with the sponge
hotgrl69 - we like to snorkel like ocean divers
hotgrl69 - hello?
adam_mcdugle - Yeah. I'm still here. But I only type 25 wpm per hand.

Figures ...

[petabyte]

My GPS unit for wardriving comes via Fedex tomorrow. Now they've taken all the fun out of it :(.

Haha, you turned off your SSID broadcasts

but you didn't turn off your MAC broadcasts!

Does anybody know their methods?

[kaufmanmoore]

I'm guessing even though my SSID is disabled they still could have found mine. I'm getting tempted to run that 75foot cable to my couch.

Re:Does anybody know their methods?

Every access point has a hardware address that never changes (unless the owner is a firmware-flashing geek) and is always broadcast, even if you turn off SSID broadcasts. If you have a powered-on wireless access point and they've scanned your area, your AP is in the database. I don't think people should be worried about this any more than they should be worried if there were no such database: If your wireless AP is configured properly, you're safe and there's no negative impact from someone using the broadcasts of your AP to determine his location. If you want your net to be private and your AP is open or using an insufficient password or encryption method, what exactly are you waiting for? If you want your AP to be open, then you probably want that people use it, so the database can only help, right?

Re:Does anybody know their methods?

[SCHecklerX]

I want people to stumble upon mine, and proudly broadcast it. Teenlesbianorgy.

Re:Does anybody know their methods?

[slazzy]

I've got a few dozen old WAPs plugged into various locations - funny part is they have no computers or internet connected. I love it when someone wastes their time hacking into them, it makes my whole day when I check them and see that someone has...

Re:Does anybody know their methods?

Not to rain on your parade of self-agrandissement, but many WinXP laptops will autoconnect when a wireless AP is in range, which is probably what you are seeing (unless your logs show a connection by de:ad:be:ef:b0:0b")

Oh, and you are the reason that the baby polar bears drown, you Global-Warming-insensitive asshole.

Re:Does anybody know their methods?

I get it! Global Warming because of all the routers he keeps plugged in!

Wonderful

[Spazztastic]

Now I don't have to cruise through neighborhoods to pick up access points to get into then commit crimes, I can just check the internet!

Re:Wonderful

[Dogtanian]

Now I don't have to cruise through neighborhoods to pick up access points to get into then commit crimes, I can just check the internet! And if anyone wants to know who carried out the crime, there's a nice log of your search from an IP probably linked to you.

Coral Cache

[TubeSteak]

The site isn't loading for me
Hit the Coralized link:
http://www.theinternetpatrol.com.nyud.net:8080/eno rmous-map-of-wifi-servers-including-yours-revealed -by-aol-and-skyhook-announcement

My only response to "ZOMG databse!!"
is that anyone could do this if they had time and money.

Re:Coral Cache

[damirl]

Coral didn't work for me, the only one I got working was google: http://64.233.167.104/search?q=cache:3lMim1h1duQJ: www.theinternetpatrol.com/enormous-map-of-wifi-ser vers-including-yours-revealed-by-aol-and-skyhook-a nnouncement+http://www.theinternetpatrol.com/enorm ous-map-of-wifi-servers-including-yours-revealed&h l=en&ct=clnk&cd=1&gl=ca it is pretty slow to load still and there isn't much of an article to begin with.

Re:Coral Cache

[ShaunC]

The Coral Cache operates on port 8090. Here is a corrected link, though at this point, all that's cached is proof that the Internet Patrol's copy of WordPress has left a smoldering crater where their server once was...

What "unique code?"

Skyhook's trucks have been cruising your street, have identified your home wireless router by its unique code that only your home wifi has - and is correlating it with your location using GPS.

Is this "unique code" just the MAC address? The SSID? Whatever it is, any router worth its plastic will let you change them, and all of us doing so would waste at least the sum of the antenna truck work done in front of our houses.

No surprise

[DogDude]

Who would be surprised about this? Are there still people out there who think that there's some magical way of being attached to the Net and still being anonymous? You've gotta be especially naive to think that your wireless router, broadcasting information into the air, isn't going to be picked up by somebody other than you.

Re:No surprise

[Rude+Turnip]

My neighbors learned this the hard way, after their wifi signal was overtaking mine. Let's just say their SSID mysteriously went from being "linksys" to "cia-fbi-disney" and the wireless function somehow stopped working soon thereafter.

Re:No surprise

[Joe5678]

This has nothing to do with using a wireless access point anonymously. This database only functions to allow a wireless enabled device (most likely a pda, or laptop since most cell phones already know where they are) to do a scan of the access points around it, pass the list of AP's it can see to the database/service, which then tells the device exactly where it is.

This doesn't involve you accessing the internet through your WAP and your privacy at all. Your WAP and it's unique ID are simply being used as a reference point for other devices.

It also doesn't seem like their work will pay off, since nearly all new pda's have cell service and already know where they are.

Re:No surprise

[Ankur+Dave]

Couldn't you just have changed the channel their router operated on? That would let them continue to use their wireless unharmed (so you avoid the bad karma :-) ) and your signal wouldn't get drowned out.

Re:No surprise

[Rude+Turnip]

I didn't fill you in on the rest of the story. They don't pick up after their dog and play their music too loud. Fark'em, I think I've netted positive karma despite it all :-)

They advertise it

[DogDude]

I love this silly blog... "according to news sources..."... like it's some kind of secret database. Here's a better source: http://www.skyhookwireless.com/ On their front page

"Skyhook Wireless provides a software-only positioning system that leverages a nationwide database of known Wi-Fi access points to calculate the precise location of any Wi-Fi enabled device. "

Skyhook trucks

[aliendisaster]

Next time you see a skyhook truck drive by, unplug your router. Then block the doorway and get out the double barrel shotgun.

Re:Skyhook trucks

[couchslug]

That's not a Slashdot solution.

A camera to monitor your street, and a switch that cuts power to your router while discharging a HERF weapon concealed in a lawn gnome is a Slashdot solution.

Re:Skyhook trucks

It would be a Slashdot solution if anybody here actually did that sort of thing.

Re:Skyhook trucks

I think you mean a lawn GNU/Gnome.

Re:Skyhook trucks

[glittalogik]

I think you meant Nerf weapons =) Not as effective, maybe, but totally more Slashdot...

Re:Skyhook trucks

[Turn-X+Alphonse]

You read a different /. to me then. We're against camera, would NEVER turn off our routers and we're anti violence outside of games. If this is what slashdot is now then I want out.

Any way, a REAL slashdot solution is to cover the entire house in tinfoil and solve four problems at once (Sunlight, radio waves, router being detected and insolating the house).

Re:Skyhook trucks

[Cramer]

weapon concealed in a lawn gnome

How very Invader Zim of you!

Re:Skyhook trucks

[HornWumpus]

You read a different /.

We are against government owned/operated cameras, wouldn't hesitate to throw breakers on the servers if there was a real need (to say nothing of drive self destructs and I'm not talking about software) and are good shots with real weapons.

Don't let the door hit you on the ass on the way out.

Re:Skyhook trucks

Any way, a REAL slashdot solution is to cover the entire house in tinfoil and solve four problems at once (Sunlight, radio waves, router being detected and insolating the house).

You mean five solutions - You would also effectively stop both the government and aliens from reading your thoughts.

Re:Skyhook trucks

[neonmonk]

Stops Aliens from reading our minds too!

bonus

Re:Skyhook trucks

[Ant+P.]

No, the slashdot solution would be to run Airpwn to redirect all the truck's connections to goatse.cz, and follow it with a cantenna so that's the only signal they get within a mile.

How about a photo of your house in a database?

[shalunov]

A truck records signal from your WiFi router? How about people taking a picture of your house to sell to banks and insurance companies? Or aerial close-ups of your backyard?

Re:How about a photo of your house in a database?

[fyrewulff]

Almost every house in Omaha is already photographed and can be pulled up from the Douglas County Assessor's website. If also available, you can get the floorplan for the house, see it's last appraised worth, etc.

The photographs are always taken from the street and you never see people in them. The only name attached to the files are the owners of the property. Heck, my mom's house is 75% covered by the tree in front of it - even though they took the picture at an angle.

When I worked at the library, we used this site to look up people that did not have a ID with an address inside the county but owned property inside the county, which qualified them for a free library card.

Re:How about a photo of your house in a database?

[keraneuology]

How about people taking a picture of your house to sell to banks and insurance companies?

What about it? Are you one of those idjets who object to people taking photos of the Empire State Building or the US Capitol?

Somebody taking a photo of your house - without setting foot in your yard - even once a year is nothing to get upset over.

Makes me wonder

[Bullfish]

If there is a way once you detect someone attaching to your wireless network to fry their computer remotely

Re:Makes me wonder

[Elentari]

You could pour boiling oil out of your window onto them, if they're the wait-outside-your-house-with-a-laptop variety.

Re:Makes me wonder

If there is a way once you detect someone attaching to your wireless network to fry their computer remotely

1) Assign their machine an address via DHCP
2) ping machine with the evil bit set on the packet
3) ???
4) PROFIT!

Re:Makes me wonder

I use squid in interception proxy mode to replace all their http GETs with goatse and lemonparty. They don't seem to stick around long after that.

Re:Makes me wonder

Damn you and your "lemon party"!

This just proves......

[8127972]

... That privacy no longer exists.

Re:This just proves......

[faloi]

Privacy never existed in public. Like it or not, broadcasting something over a radio is not the best way to make sure things stay away from the public.

iGigle for Mapping

I like to use the WiGle database and
http://www.irongeek.com/i.php?page=security/igigle -wigle-wifi-to-google-earth-client-for-wardrive-ma pping

to do my mapping in Google Earth.

hey

[mastershake_phd]

Guess war chalking is obsolete now.

Anonymous

[HomelessInLaJolla]

Are there still people out there who think that there's some magical way of being attached to the Net and still being anonymous? This guy thinks so.

Re:Anonymous

That sounds like hobo-talk. Let's ignore it.

Re:Anonymous

CALUMNY!

Yeah, it's hobo talk. I'll just ignore the smelly bum, too.

Re:Anonymous

Wow, you're insane.

Well, they didn't find me, it's pretty trivial

[wsanders]

- Set SSID to something random, and don't broadcast it
- I even use WEP, as supposedly insecure and old school as that is
- So far I have shown up on no wardriving maps

WiGLE

[lthown]

I've been uploading wardriving stuff to WiGLE for over a year, using that you can actually even see the access point names and if security is turned on: http://www.wigle.net/.

Re:WiGLE

[Achromatic1978]

Well, that sucks: FF20002, "browse interactive maps": "nothing here. are you a bot?"

Great site.

Re:WiGLE

[BooTy6]

Apologies, link fixed.

Apple vs. AOL...

[__aaclcg7560]

Didn't Apple trademark "iSpy" for a new product?

mod parent up

I honestly don't understand all the hype regarding wireless. Sure, it's convenient for laptops in an airport, cafe, or other public location, but to me it just doesn't make sense for most residences. I think it's main selling point is the fact that people don't have to run wires and people are generally cheap and lazy. But I wired my house myself (16 outlets over 6 rooms) for about $300 in equipment (router, patch panel, 1000' cable, tools, etc) and two days of my time. The setup is fantastic and I don't have to worry about some random jackass piggy-backing my connection. Even if you have a couple of laptops in your house it wouldn't be a problem if you planned an appropriate wiring scheme. Of course if you want to roam around your house and in your yard with your laptop wireless is really the only option, but in my estimation the vast majority of residences consist of exclusively non-portable desktop machines. In that regard wireless is used simply because it is easy and cheap.

Little girls go wiresless; real men run wires.

Re:mod parent up

[WindBourne]

Actual wireless makes sense if you are in an apartment or a place that you do not own. But if you own it and your house is less than 50 years old and you run wireless, then the person is either lazy or a total idiot. As it is, the wireless stuff is always undergoing expensive upgrades. I have wired to homes where each had 2300 up and each house had ~10 rooms (and 1 outside drop with an inside cutoff switch) that I wired in a weekend. First one cost me about 200 (10 years ago). The second was less than a hundred.

Re:mod parent up

That's nice for you. But my house is 113 years old, and has plaster walls. A fully wired network would be much nicer, and faster, but it is not always practical. Suggesting that people avoid running wires because they are cheap and lazy is pretty fucking ignorant.

Re:mod parent up

[_xeno_]

Actual wireless makes sense if you are in an apartment or a place that you do not own. But if you own it and your house is less than 50 years old and you run wireless, then the person is either lazy or a total idiot.

Or if you use a laptop and don't feel like being tethered to your desk.

I have an apartment, and my desktop, TiVo, and PS2 are all hooked up by wires (that run along one wall), but I still have wireless enabled: it's for laptop/Nintendo DS use.

I can, of course, also plug the laptop in directly via a wired connection, but then it'd be tethered to my desk. So instead I use wireless, and can use the laptop all over my apartment. Wireless is more for mobile device use than for simply avoiding having to run wires.

Re:mod parent up

[EatHam]

Or if you have 100 other things to do besides take an entire weekend running wires. Or if you want to use your laptop outside. Or if you don't want to drill holes everywhere. Or if you don't have easy access to an attic or basement. Or, or, or, or. There are valid reasons to go wireless. Being lazy is one, being an idiot is one, and just liking to have the freedom that comes with a wireless connection is another.

Re:mod parent up

[WindBourne]

I have wireless enabled as well, but that is so that I can play games with the police (I now live in highlands ranch, CO) and the drive-by crackers. They come by and attempt to play with the xen session that I have established as a honey pot for them. I have actually gone out and took a pic of 2 guys working furiously. When they realized that, they drove off quickly. I probably should have turned them in, but I have been hoping that they would come by again. I just want to play a little. :)

Re:mod parent up

[WindBourne]

For the couple of hundreds of dollars and a bit of time, it will increase the value of your home by more than a 1000 AND make it easier to sell. In this economy, I like having the edge, just in case. In fact, I will be installing central vac in the next year (grew up with one and they are a must have).

Re:mod parent up

[hcdejong]

Or if you use a laptop and don't feel like being tethered to your desk.

I'm not tethered to my desk. I've got a few Ethernet cables lying around the living room, so I can plug in wherever. I need to run wires to my laptop anyway (power, often USB (audio output) as well), so one more isn't going to bother me.

Re:mod parent up

My house is over 50 years old. My cable modem is downstairs, it plugs into my AP and my Vonage box. From the AP I get wireless upstairs to my desktop in my office, and throughout the house (and into the backyard!) for my wife's laptop, and into my neighbors houses for their laptops (yeah, I share my wireless with anyone). Performance on the desktop upstairs is good enough to not bother trying to run cable up there.

Re:mod parent up

[Stewie241]

Why would I want to bother running wires if I can get the same connectivity with wireless and WPA without bothering with cables. Especially considering that when my nephew comes over (who is one), he likes to get into cords and cables and stuff. My power cord pulls out of my notebook pretty easily, but the ethernet doesn't. What happens when he pulls on the cord and the computer comes crashing down? Happened to my M-in-Law and her notebook is still getting repaired (mind you, that's because the service at the place she got it sucks, but anyway).

Re:mod parent up

[slazzy]

I've done the same, house wired for networking, and I'm loving my new dlink gigabit router for transferring movies etc. between computers upstairs and downstairs in my house. Also bought a Leviton networking control box to keep everything organized - pretty neat. Everything is on UPS as well so when the power goes out - most of the time either my Cable or ADSL connection will keep running and I stay online no matter what. Planning on adding a Yahoo portable broadband internet soon as well. I've got a wireless router that I use sometimes when I want to work on my laptop out by my pond in the backyard, but much of the time I leave it turned off.

Re:mod parent up

[mightyQuin]

I am neither lazy nor an idiot - I have a PDA with WiFi.

Good for browsing, checking email, great for running voip and skipping the cell network charges.

Re:mod parent up

[badasscat]

I've got a few Ethernet cables lying around the living room, so I can plug in wherever.

Doesn't sound like your house is gonna win any design awards.

I mean look, people. Not all of us want wires "lying around the room", in literally every room of the house. With wireless, both my wife and I (that'd be two cables per room at least) can use our computers in the living room, the dining room, all bedrooms, the office, the backyard, the kitchen, the basement, and the front porch. And we do. And we do it without having a bunch of extra clutter and without having to spend thousands of dollars ripping down our plaster walls (not drywall) to run wires. That'd be one of the worst home improvement investments I could think of; you're never getting that money back. I'd rather spend that money towards a new kitchen or bathroom.

Why wouldn't you run wireless?

Re:mod parent up

[badasscat]

For the couple of hundreds of dollars and a bit of time, it will increase the value of your home by more than a 1000 AND make it easier to sell.

No it won't. There's no return on an investment in wiring your house for ethernet. Everybody knows these days that they can just run wireless. If anything, it can even decrease the value of your house, because people don't like to see a bunch of extra jacks and wires cluttering up every room, especially if they're not planning to use them. It's not one of those neutral to good upgrades, it can be a negative.

I just bought my house last year so I'm saying this from both first-hand and second-hand experience. A couple of houses we looked at had a lot of holes drilled in their walls and they said it was for ethernet cable; we told them that was a negative for us and our agent said we were not the only ones who felt that way. People just don't like seeing either holes or unfamiliar wall jacks; even with a jack, a lot of older people just don't even know how they'd use it.

Anyway, unless you have a newer house and do it all yourself, it's going to be more than a "couple hundred" dollars to wire your house regardless. My house has thick, 80 year old plaster walls. It took a master electrician several hours of hard drilling and digging just to run a power line along one of my walls shortly after we first moved in. And then I had a bunch of big holes in my wall that needed to be resurfaced. Wiring a house like this up yourself would take quite a while and be really hard work. Paying somebody to do it would cost thousands, making it an even worse investment.

If you do wire your house, do it for yourself, not for a potential buyer.

Re:mod parent up

[WindBourne]

I just sold me old house in South Aurora, CO. My realtor said that the buyer Realtors commented that the networking interested their buyers. SO I guess mileage varies.

BTW, did you realtor disagree with anything you said? They are trying to get you to buy something at a time where it is a 100% buyers market throughout the entire USA. I suspect that if you told them that you wanted a pink house with gold trim, they would comment that others wanted that same house and you will have to pay more for it.

Re:mod parent up

[hcdejong]

Doesn't sound like your house is gonna win any design awards.

No, but on my list of priorities, that's so low as to be invisible. My apartment is full of wires anyway: home theater with big-ass cabling, audio links to and from two computers, phones, etc.

Why wouldn't you run wireless?

My reasons:
1. It's more work to set up and configure than a wired network. Maybe I'm atypical, but the experiences I've had with wireless networks were all bad. Byzantine installation procedures, networks incredibly slow or not working for obscure reasons, etc.

2. The WAP is YA device that draws power 24/7.

3. It's YA attack vector you have to make sure is and stays secure (passwords, patches).

4. It's slower than 100B-T. I regularly transfer dozens of GB on my home network (including to/from laptops).

5. I managed to wire my apartment without any demolition. The only money I spent was on the cabling itself. I'll grant it's not the most invisible installation ever, but see above.

6. As I said in the GP post, in my experience opportunities to be truly wireless are rare. If you're going to need power anyway, one more wire won't matter.

Re:mod parent up

[WUNHJazz]

Why be wired if you don't need to be? I can plug my laptop into the router in my office if I really need to transfer some large files. Otherwise, my $20 after rebates wireless router has performed flawlessly for my needs. Sure beats $100 for cable, plus the install time for drops that I'd never use. Instead, I've spent many a summer afternoon in my hammock in the back yard, watching a baseball game over my wireless connection to my myth server, and eating apple pie, while being served beer and gently fanned by palm-frond wielding, bikini-clad women. Isn't this the new American dream?

Re:mod parent up

[Jon_S]

My laptop came with a battery so I don't need to run power cables. Look around, you're sure to find a model that comes standard with a battery installed.

wifimaps.com anyone??

[VorlonFog]

http://www.wifimaps.com/ - add MAC addresses and street addresses, and you're golden...

Noone loves me

[Cytlid]

Noone ever connects to my wide open wireless with an SSID of "Honeypot".

Re:Noone loves me

I'm happy Peter Noone loves you, but I don't know why you feel you need to post about it on Slashdot.

Re:Noone loves me

[crashlanding]

No one ever tries to connect to my WPA wireless with and SSID of "PoliceDepartment" And why not? Maybe I should change it to "GoAway" --- Got Milk?

Revealed? Huh?

[Lumpy]

http://www.wigle.net/gps/gps/Map/onlinemap2/

it's been out there for a long time. Most people into war driving know about it.

Microsoft?

[trashpickinman]

So what database is being used by 'Microsofts Streets and Trips 2007' "Wi-Fi Location Provider"/"Locate Me" feature? Picked my location without hesitation.

WiFi Mapping

[drewzhrodague]

I am not surprised by this. In fact, having been the guy that started WiFiMaps.com (In '02), I've been talking about this to others for quite a while now. Positioning yourself using wifi is probably the most useful application for wardriving data. Does it need to be accurate? No, not really. I've talked to scientists working on sub-meter acuracy, and it is very difficult. If you can find out on which part of which block, there are tons and tons and tons of location applets you can think of off the top of your head to make use of that. If there are people interested in a copy of our national (and some other countries) database of wifi locations, ours is GPL'd. What we don't have, is an all-in-one IM applet, which I guess Skyhook and AOL are now trying. Kudos. I sure wish I had some business skills. That can be the difference between the company's product as a topic on slashdot, and a dude at home posting on slashdot with no pants on.

Re:WiFi Mapping

[muellerr1]

That can be the difference between the company's product as a topic on slashdot, and a dude at home posting on slashdot with no pants on.

I'm at the office posting on slashdot with no pants on, you insensitive clod.

Re:WiFi Mapping

That can be the difference between the company's product as a topic on slashdot, and a dude at home posting on slashdot with no pants on.

And that, sir, is more information than we needed.

Re:WiFi Mapping

[dodobh]

That can be the difference between the company's product as a topic on slashdot, and a dude at home posting on slashdot with no pants on.

Tell that to the Goatse guy.

you name your network after your girlfriend?

[davidwr]

Oh wait, this is slashdot. Nevermind.

So who else will be buying it?

[WindBourne]

My bet is that this was funded by NSA, CIA or most likely FBI.

Re:So who else will be buying it?

[MisterCookie]

My bet is that the government has better ways of getting data then sending some guys around in a truck to document wireless networks.

Re:So who else will be buying it?

[raphae]

My bet is that posts deriding this new feature AOL is providing, and perhaps this entire ./ thread, are attempts by the NSA, CIA or most likely FBI to dissuade The People from establishing a nationwide network of free, open, hi-speed Internet access. Not to mention the pigopolist corporations said agencies are complicit with to restrict the information highway and exact ever more tolls.

Who with the what now?

I have wired to homes where each had 2300 up...

What does that mean? I guessed that you meant "two" instead of "to", but what does "where each had 2300 up" mean?

Re:Who with the what now?

[WindBourne]

Mea Culpa. I should never post when I am in a hurry. I did mean two homes (wow, that was bad). 2300 up is 2300 square feet upstairs(main floor and 2'nd level). There is another 800 and 1000 in the basement (800 in the first, 1000 in the 2'nd).

Re:Another reason...

Is there a wireless incarnation where it is a girl?

wireless is good for homes too

Wire to each room is a no brainier but wireless is also useful, I dont want a wire draped accross the couch when I am checking sports scores on my notebook and watching TV...what if I want to sit outside on the porch, or in the middle of the back yard for that matter, am I supposed to string a cable drop to the old oak tree? a drop that I may use 3 times a year...why be tethered? doing huge file transfer is one thing, but wifi is great for most every day stuff. Your post shows a sense of elitism that is the essence of what turns people off to this site.

Re:wireless is good for homes too

[hjf]

no. you're just wrong. I can see that you have never used wireless. My cousin lives in a regular latin american house. That is, brick and mortar. No drywall. There's no more than 30 feet to the access point, yet she has trouble to get signal. Sure, it's 2 walls away. But it's supposed to be convenient . It just doesn't work. And no, it's no crappy gear. It's a 200mW AP and a Centrino laptop (awhich are supposed to be the best wireless cards around). The other day I wasn't getting ANY signal, on the spot where she uses it all the time. Guess what I found? There was a BOTTLE OF WATER 2 feet away from the computer. I moved that bottle and it worked. That means wireless is NOT practical. No. It's not practical to need to install high gain antennas and range extenders everywhere. They are pretty expensive, too (remember: we are in the third world). And you need outlets all over the place. And don't get me started on how wireles works in my house (a two story house, all brick).

Re:wireless is good for homes too

[bluemonq]

NOT practical for YOU, you mean.

Re:wireless is good for homes too

[tomz16]

You either have interference, broken equipment, and/or perhaps you should dial down the power from 200mW... most commercial wifi radios just aren't happy at those powers...

In my experience, the standard 28mW output from my wrt54g is more than enough to completely cover a two story 2,000 sq ft house with excellent signal, even if the ap is at one extreme corner of the house.

-Tom

Re:wireless is good for homes too

[hjf]

well, my house is actually 4300 sq ft (2 story, 200 sq mt), and my cousin's home is a little smaller. but both are made of brick and high ceilings (my ceilings are 9 ft high). and remember that there's lots of metal in all that concrete. The equipment is not broken, as I have tested with several combinations: 200mW senao, 55mW Linksys, even a $ 1000 100mW Cisco Aironet, and none of them worked as good as I wanted them to work. Most times they do work relatively well in the same floor, but the signal doesn't seem to go past the ceilings. I have succeeded in installing 25km wi-fi links, which is what I did for a living a few years ago, but can't seem to make them work in my own house. Go figure.

Re:wireless is good for homes too

[hjf]

no, not practical. period. If I go to the store and see the label "150ft indoors, 300ft outdoors", I expect that to work. I even expect them to be way off the spec, somewhere like 75ft indoors and 150ft outdoors. But when I'm sitting 30ft away from the access point and getting 2 out of 5 bars of signal... that means it just doesn't work. I have to install range extenders, etc. That's not practical.

Re:wireless is good for homes too

[Vr6dub]

No, not practical for YOU or ANYONE ELSE WHO LIVES IN A BRICK HOUSE. Considering I've been using wireless for over 6 years now and can get access to my WAP from anywhere in my house including my neighbors house. So not practical for YOU does not equal not practical.

Re:wireless is good for homes too

[anagama]

I have a pottery kiln/studio in the middle of field. A neighbor about 400' away or more lets me uses his broadband connection. Trenching a line that far -- through blackberries and fences -- would be a nightmare. Instead, I picked up two wireless routers, put on DDwrt so I could adjust power output (80mw seems to work just fine), and got a couple cheapo antennas (they are about 2.5" square -- sort of directional). The whole setup was under $200, and the biggest bonus, I didn't have to dig a trench. I've done enough digging in my life. The connection has been really solid.

Of course, if I had to go through brick, that would be a different story. The radio just won't penetrate that. In order to improve my signal for example, the antennas on the kiln side are placed outside the wall, the router at the neighbor's has the antenna in a window, so the only thing separating them is glass, air, snow, fog, and rain -- none of which seem to make an appreciable difference. I would think that a few layers of brick though, would make the system fail.

Anyway, in the right circumstances, wireless is great and wired is a pain. And vice versa of course.

Re:wireless is good for homes too

[The+Darkness]

Installing 25km outdoor wifi links is a different beast from getting wireless working in a home. I've helped set up many in home wireless networks and even helped debug situations like yours. It's not just the AP; the quality of the antenna on the mobile device can have a large effect on the distance it can roam.

You know that the marketing people are going to take numbers from a "straight through the air-gap drywall" test where the line from the AP to the Wireless card is perpendicular to the line of the wall. Realistically speaking when those lines aren't perpendicular the signal has to travel through more material than just the thickness of the wall. Add that to the material that composes the walls of your home and it's a recipe for failure in your house. That doesn't make it bad for everyone, just you in your situation.

If you really want wireless then you're probably going to be better off with one or more APs per floor and then wiring them together. If you're against wiring them you could try using a mesh if you can get line of sight between a couple of them. I'd want at least two access points in a 2000 sq ft house to ensure yard access. I'd probably want three or more in a 4000 sq ft home.

Re:wireless is good for homes too

[FireFlie]

Grandparent and great-great grandparent (I think) are quite correct. Not all of us suffer your troubles. My house is not all brick (which is quite common in my area). My wireless comes in quite clean from one the from the very farthest end of the house, to virtually all corners and even at some signal in my driveway. I upgraded my antennas and strength is even better for me. For me wireless is not something that I use 24-7 because I have ran wires to the desk I use, but occasionally it is nice to surf or program while sitting on the couch watching TV. Wireless can be a decent solution, even though it is not ideal for everyone.

Re:wireless is good for homes too

[hjf]

sure, I was just joking. When dealing with 25km links I worry about the fresnel radius, antena height, and watertight enclosures. I always wondered. why go with 2,4GHz wireless? there's 900MHz (or so) wireless AFAIK, which penetrates walls just fine (I guess the antenna size is the key here). I *KNOW* more APs will make it work, but that makes it more complicated, adds more points of failure (MTBF kicks in), but most important: average joe will not know how to set up a wireless mesh (neither will he know that the speed will halve with every AP you add to the mesh, as stated in the manual of some gear I installed once).

I have received a lot of "hate replies" saying that the problem is "my house". Well, I know you americans live in your pretty, huge suburban drywall houses, but we in "the rest of the world" usually live in brick houses. I have yet to see extensive use of drywall in a house down here. We do use it here, but only for ceilings and some decorations. In my area we also use tin roofs (which happen to last forever even though in summer it can get from 50C to 20C in matter of minutes).

We also have big houses too. My 400 m2 house is located on a 200 m2 space wich happens to cost "just $ 120.000 or so, not counting the value of the house", and it's located 6 blocks (600 meters) from downtown. It's not a bad city either. It's not Buenos Aires but we manage to live decently. So, in a place where most houses are as big as mine (and some much larger), and where houses are made of brick, I guess I CAN say that Wi-Fi is not practical, not only for me but for the millions of houses around, made of brick, that won't be able to enjoy wireless as it's supposed to be (that is, just work).

Re:wireless is good for homes too

[FinestLittleSpace]

Just because it's a Centrino, it doesn't mean it's going to get good recpetion. It's all dependant on where the aerial is in the device. I've seen two laptops with the same Centrino chip achieve entirely different ranges.

Also, if your aerial is not perpendicular to the wall/ceiling, you are guaranteed to be getting your signal blocked significantly more.

Re:wireless is good for homes too

[aclarke]

OK, I live in a 140 year old STONE house, with walls almost a metre thick. I ran gigabit ethernet where I could when I was renovating and was pulling off the old inner wall coverings anyway. I also ran ethernet out to my office which is an old train caboose about 40 metres from my house. I use ethernet for the computers in the basement, the switch in my office, the SageTV media extender beside the TV in the sitting room, and for the computer in front of the TV in the living room, and it all works great.

However...

I ALSO run wireless. I have an Airport Extreme in the basement, an Express on the main floor, and another Express in my office. Why? Becuase I have a laptop and so does my wife, and it's FREAKING STUPID to have them hooked up to ethernet when I can just open them anywhere and have them work. I even use wireless in my office. The reason is, if I have a whole bunch of network shares open, ssh tunnels, etc. and I decide I want to take the powerbook back into the house and I unplug my ethernet cable, I LOSE MY WHOLE SETUP. With wireless, I just pick up my computer and bring it into the house. I have wireless connectivity the whole way across the yard, and my computer just switches automatically from wireless AP to the next. Try that with ethernet.

Some people want wireless, some people want ethernet, and some of us find that using both for their own strengths works best. But if you want to wire an old house, or set up a brick/stone house with wireless, both are certainly possible.

Re:wireless is good for homes too

[hjf]

what does it have to do with that? Did I say that you shouldn't use wireless? Did I say that you should always be tied to a network cable? Did I say that people who use Wireless are stupid? No. I just said that wireless doesn't work just like it's supposed to be. I'd be happy if I can just plug an access point somewhere in my house (not necessarily ANYwhere), and have it cover my whole house.

Is it too much to ask? NO IT'S NOT! I have a 2,4GHz phone (no you smart asses, I didn't have it yet when I tried wireless, so it's not the cause of trouble), and it covers ALL my house. The base is located in a corner, and I get signal everywhere in my house, also in the backyard and even some signal across the street (with no static). Why does a cordless phone "just work", and Wi-Fi does not?

Besides, you stated yourself that you have 3 access points to cover your house. Why do you need to have THREE access points? Why doesn't it work for a regular house with just ONE access point? (As my cordless phone does).

Re:wireless is good for homes too

[aclarke]

You didn't say I shouldn't use wireless, but you did say "wireless is NOT practical". I disagree. It is very practical, for me and millions of other people all over the world, in all sorts of buildings. I don't think there's a single reputable vendor of wireless gear who wouldn't tell you in the specs that obstructions will reduce the range of the gear. you make a comment like this:

So, in a place where most houses are as big as mine (and some much larger), and where houses are made of brick, I guess I CAN say that Wi-Fi is not practical, not only for me but for the millions of houses around, made of brick, that won't be able to enjoy wireless as it's supposed to be (that is, just work).

This is the sort of comment to which I was responding. I live in a stone house with walls much thicker and denser than brick, and wireless IS practical for me. It also workes as it "is supposed to" (go read the specs again on any Linksys/Netgear/Apple router) and it does "just work". It required some thought about what equipment to get and where to place it. Big deal.

I also only have two access points in my house, and one in my office which is 40 metres away from the house and is a train caboose entirely encased in aluminium siding, except for the windows and door. Basically a faraday cage.

OK so you live in the third world. I didn't think Argentina quite qualified as "third world", but then again I've never been there. I've heard it's nice and we're considering going late in the year. But anyway. If I spend $500 on wireless gear, that's a drop in the bucket for me compared to days setting up wires. It took me probably at least a day of digging to dig the trench from the house to the office for my ethernet and phone cables, for instance. It was good exercise, but it was a day that I couldn't bill anything, so that "cost" me a lot. If your time is worth anything to you, setting up a wireless network can often be cheaper than a wired one, ESPECIALLY in a brick or stone house where it's hard to wire things too. Not to mention, that switches and ethernet cable cost money too. I probably spent $150 on cable alone although I have a lot left over.

I guess I wasn't responding directly to you about not using wireless, but there was another guy who said he just leaves wires in his living room so he can plug in. I thought that was your comment, which is why I wrote that here.

Re:wireless is good for homes too

[hjf]

Well, I should have said it's not practical to "install" then. When it works, it works, but when it doesn't, it's a pain to make it work. I spent hours at my cousin's home roaming around the house looking for a place where there was a telephone drop and an outlet nearby, and also had good coverage.

Regarding the price of wire, that's not completely true. An access point and a wireless NIC cost more than the wired solution. For instance, network cable (CAT5e) costs ARS 1,50 for 1 meter (USD 0,50) or ARS 300 (USD 96) for 305 meters. RJ-45 plugs, like USD 0,10. AMP Cat5E jacks, $4. For a 30 meter run (the average for my house), it costs USD 23 or so. A switch costs USD 15. On the other hand, a wireless NIC costs $30, and a decent AP, $100. So a 5 computer setup costs $ 116 for wired vs. $ 250 for wireless. Oh, and in a third world country, I wouldn't make the $134 difference in a day. (Here in the third world, computers don't come with onboard Wi-Fi, and laptops aren't commonplace).

Of course, if you want to roam around with your laptop, wireless is the only way to go.

Regarding the "third world" status, well, Argentina is a nice place, and we do have Louis Vuitton shops and Maserati dealerships, and in some places of Buenos Aires you could actually think that you went to Europe... well I have an iPod and everyone asks about it, because they're so rare here ($20 generic players are everywhere). We are also currently in the middle of a Dengue outbreak in the north (although this is Paraguay's fault) and Argentina's main airport -Ezeiza, the gateway to the country. Remember that name as you're going through it if you come here- is running on manual because the radar broke 2 weeks ago and there's a huge scandal about that now (If you're interested on that, you can watch "Fuerza Aerea S.A" --roughly "Air Force Inc.", a documentary about the situation of airports in Argentina). So, if I were you, I'd wait a few months before taking a flight down here.

I guess you'd be going to the touristic places (the waterfalls -watch out for Dengue!-, the glacier, the mountains, etc). But when you're in Buenos Aires, keep your wallet in a safe place all the time. Crooks are really good here. How good? Well, someone managed to steal Barbara Bush's purse (yes, George W's daughter). OK, she left her purse in a chair on an open air cafe, which is pretty stupid even of she wasn't in Buenos Aires (a city of 12 million inhabitants). But how someone robs the US president's daughter, with Secret Service agents all around, is still something that amazes me.

Wireless company name?

[jeffkjo1]

What's wrong with companies, naming themselves after non-clever skynet euphemisms?

Skyhook Wireless? Come on.

Re:Wireless company name?

[donut1005]

Damn, you beat me to it. :(

Re:Wireless company name?

[apathy+maybe]

Skyhooks perhaps? http://en.wikipedia.org/wiki/Skyhooks

Re:Wireless company name?

[charlieo88]

When I was a kid, (read before Arnold started saying "I'll be back") a sky hook was one of these, sort of an optical illusion.

Come on guys!

[CasperIV]

Quick, everyone trade routers! Let's make some poor data entry grunt cry.

Typo in article

[donut1005]

That should read Skynet, not Skyhook

Or..

[CasperIV]

You could just line your living room with lead... and this way I'm getting 0 interference.

Re:Or..

[wsanders]

But if I do that, I can't mooch off all the neighbors' unsecured hot spots!

Re:Or..

[Cramer]

That would only help if your room was lead lined... faraday cages keep signals OUT not in. A well grounded cage will limit the output, but not stop it.

(And I would recommend aluminum foil... it's lighter, cheaper, and less toxic.)

Re:Or..

[SomeoneGotMyNick]

You could just line your living room with lead... and this way I'm getting 0 interference. I have an 82 year old house with original coats of paint under many recent latex layers. CHECK!!!

Now, how do I go about grounding the paint. :)

How did they crack my network!?!

[sarahlanephotography]

The article says that they have the "unique ID" of my home network. This really disturbs me because, as I'm sure most of the rest of you have done, I have configured my network to prevent this. I run a Cisco aironet 1200 AP with 802.11i, AES encryption, as the only supported method, and my SSID is nondiscoverable until you've progressed through the encryption handshake. What is this "unique id" they managed to snarf? How did they break AES 256?

I've gotta say that's a remarkable attack!

Re:How did they crack my network!?!

[belrick]

The article says that they have the "unique ID" of my home network. This really disturbs me because, as I'm sure most of the rest of you have done, I have configured my network to prevent this. I run a Cisco aironet 1200 AP with 802.11i, AES encryption, as the only supported method, and my SSID is nondiscoverable until you've progressed through the encryption handshake. What is this "unique id" they managed to snarf? How did they break AES 256?

I've gotta say that's a remarkable attack!

Are your not a troll?

Re:How did they crack my network!?!

Quick, someone make a "Your access point is broadcasting a MAC address" banner!

Re:How did they crack my network!?!

[Autonin]

I believe the item in question is called a *MAC address*.

You send a wireless packet of any kind, and there it is. In the clear. And it has to be, or they can't address packets back to you.

Re:How did they crack my network!?!

[RincewindTVD]

I believe that the SSID is still viewable if you send a blanket "I am dissconnecting" notification, APs in the area will reply with a "thanks for dissconnecting from router" message.

I think I read something about that a while ago.

Re:How did they crack my network!?!

[sarahlanephotography]

I'm not sure if you're joking or not... Have you ever used an IOS Aironet device? Cron, expect, ssh, and the IOS command "mac-address" have served me well. Hint: don't believe the documentation.

A MAC address is not now, and never will be, a unique device identifier. ESPECIALLY on my network.

I just want to know how they cracked AES.

Re:How did they crack my network!?!

[kmankmankman2001]

But my ID isn't unique! It's "Linksys", just like all my neighbors!

Re:How did they crack my network!?!

That's not your ID, your ID is more like AE-32-FF-20-04-EA or something. Oh well. I've had 4 residences in the past year so I'm not concerned :)

Re:How did they crack my network!?!

[HalWasRight]

The MAC address ...

Re:How did they crack my network!?!

[NotQuiteReal]

The answer is - MAC Address - 00:00:00:00:00:42

I wonder how many times that unique MAC address is used...

MAC addresses are as unique as the EEPROMs they're printed on.

Re:How did they crack my network!?!

Wouldn't the answer be 00:00:00:00:00:2A?

Re:How did they crack my network!?!

I'm not sure if you're joking or not... Have you ever used an IOS Aironet device? Cron, expect, ssh, and the IOS command "mac-address" have served me well. Hint: don't believe the documentation.

A MAC address is not now, and never will be, a unique device identifier. ESPECIALLY on my network.

I just want to know how they cracked AES.

You're being obtuse. They didn't crack AES. Whatever you changed your MAC address to is what they picked up. What they have in the database might not be what it is now, but that's what it was.

And yes, from the factory MAC's are supposed to be unique.

Re:How did they crack my network!?!

I knew there was something fundamentally wrong with that MAC address.

Microsoft Streets and Trips software

Has nobody mentioned yet that Microsoft Streets and Trips has had this built-in for years?

This will only end badly

[beerdini]

AOL's recent announcement of their new "Near Me" service, which allows AIM users to see which of their instant messenger buddies are geographically near them. You mean I can finally see where that 18/f really is...hey wait...thats the old guy down the street!

Seriously, what genius thought this was a good idea in the first place? How long is it going to be before the headlines read something like "Stalker kidnaps child with AIM"? I want to know how this idea got a green light considering the potential danger that it is going to create

Re:This will only end badly

[orionYoung]

My thoughts exactly! Now its even easier to find, target and kidnap children to molest! I'm looking forward to seeing the Date Line special on this!

You ain't seen nothing yet.

Wait until IPv6 rolls out.

Not an accurate representation of what's going on

[eggboard]

Here's what I wrote to the fine person who wrote the linked article, who I respect enormously, but think got it wrong in this case:

First, and sort of a priori, Wi-Fi uses unlicensed spectrum. The use of that spectrum means that you accept (however unknowingly, your point!) that any use treads in the public space. There are ways to reduce the signal strength of many Wi-Fi gateways if you want to penetrate further.

Second, what they're gathering is just a number (the BSSID, which is the unique base station identifier for networks that are set to broadcast). They do not access the network. And they can't provide any kind of exact correlation. Nor is there a way to associate BSSIDs with individuals or addresses in their system or elsewhere. (It's also not all home networks; there are millions and millions of business networks also being recorded.)

Third, their data is their crown jewel. They have every interest in protecting it in the strongest possible ways. The information they release is a set of coordinates based on signals measured and sent via their system. So you can't really perform millions of arbitrary queries, but rather only queries mediated through their software. This limits exposure.

So you have no specific information based on public use of public spectrum and strong needs to protect the data against unwanted access...

Sounds fairly reasonable to me.

If they started pairing individual addresses with BSSIDs, and sold that to Wi-Fi makers and others who would then perform direct mailings to users to get them to switch brands or add security -- that would be creepy.

Good for Router Business

[Wanado]

Soon router manufacturers will recommend replacing your router every 6 months to keep your SSID fresh and unmapped. You'll find shops pop up across the country offering "router change" service for $19.95. Watch out for that hazardous disposal fee!

I was able to recover the currently slash-dotted article via google's cache:

Enormous Map of Wifi Servers - Including Yours! - Revealed by AOL and Skyhook Announcement 3/19/2007 -

Summary: Quite a few people have by now read about AOL's new Skyhook "Near Me" buddys plug-in. That's the plugin for the service which lets you know if any of your buddies are geographically near to you, and puts them in a "Near Me" buddies group. But what far fewer people realize is exactly how it works. How does it know when you are near one of your buddies? The answer may surprise - and concern - you.

Quite a few people have by now read about AOL's new Skyhook "Near Me" buddys plugin. That's the plug-in for the service which lets you know if any of your buddies are geographically near to you, and puts them in a "Near Me" buddies group.

But what far fewer people realize is exactly how it works. How does it know when you are near one of your buddies?

The answer may surprise - and concern - you.

The underlying technology is provided by Skyhook Wireless. According to news sources, Skyhook has spent the past several years "driving a fleet of 200 trucks up and down the streets of 2,500 cities and towns across the United States and Canada," mapping every single wireless router. Not just commercial hotspot routers. They openly admit that their trucks "scan for the pulse given off at least once a second by every home wireless router or commercial hotspot, recording the unique identifying code for that piece of Wi-Fi equipment."

Then, that code - of your home wireless router - "is correlated with the exact physical location where it was captured using GPS in the trucks, which cruise the streets at 15 to 50 miles (24 to 80 kilometers) per hour as they collect this information."

Just in case the picture isn't clear, let me paint it for you:

Skyhook's trucks have been cruising your street, have identified yourby its unique code that only your home wifi has - and is correlating it with your location using GPS.

And then they put it in a database

Yep, Skyhook has what has got to be the largest database of wifi access points - public and private - anywhere. According to reports, the database has 16 million wifi access points "covering an area where Skyhook says 70 percent of the U.S. population lives and six Canadian markets where the majority of that nation's people live." Including you.

Including your wireless router.

How do you feel about that?

Suddenly the issue of whether your computer is seeping data seems a lot more relevant, doesn't it?

Buglars Delight

[BillGatesLoveChild]

Has anyone heard of a house being robbed because burglars found a wireless connection?

Is this a scheme by AOL Skyhook Wireless to sell more Wireless Routers?

Re:Not an accurate representation of what's going

[Charles+Dodgeson]

Second, what they're gathering is just a number (the BSSID, which is the unique base station identifier for networks that are set to broadcast). They do not access the network. And they can't provide any kind of exact correlation. Nor is there a way to associate BSSIDs with individuals or addresses in their system or elsewhere. (It's also not all home networks; there are millions and millions of business networks also being recorded.)

Exactly. There is no harm in anyone knowing that the wi-fi access point near or at my physical address has such and such BSSID. It doesn't add to any tool set that would allow someone to monitor me or my activity. All it means is that someone passing through my neighborhood can find out where they are by listening for my and other's APs. These are merely just electronic landmarks that have been mapped out. The BSSID of my AP is never passed along the net in such a way that it could be used for tracing some packet back to my location.

The reaction to these should be "neat idea, I wonder if it will work" instead of paranoid hype about privacy.

If anyone can think of a way that some three letter agency could make use of that database to invade anyone's privacy, please spell out the details. The only thing that I can see is for marketers wanting to know the install base for D-link versus Linksys, etc. I suppose that Linksys could find that I'm using a D-link and send mail to my street address encouraging me to switch. But that is the worst I can imagine.

Upload Copyrighted Music To Them . . .

And the rat them out to the RIAA.

Re:Not an accurate representation of what's going

[Greg+Lindahl]

Nor is there a way to associate BSSIDs with individuals or addresses in their system or elsewhere.

Unless the SSID has the address in it, which I see that several of the networks around my apartment do. "shadows109" is apt 109 of the complex I live in, 1600villa_107 is unit 107 of the apartments at 1600 Villa street, and so on.

Re:Not an accurate representation of what's going

[eggboard]

You're right. (Although the BSSID is not equal to the SSID. The BSSID is typically the MAC address of the Wi-Fi system in the gateway; the SSID is default or human-set text.)

However, if someone chooses to expose their identity in the SSID, then aren't they making a statement already about their concern for privacy? I used to label our network with our street address, but my wife asked me to change it. It's now Generic Home Network. Actually, after a change in setup, it's Generic Heim Netzwerk.

But it's a great way to find stolen gear

[Ungrounded+Lightning]

Every access point has a hardware address that never changes (unless the owner is a firmware-flashing geek) and is always broadcast, even if you turn off SSID broadcasts. If you have a powered-on wireless access point and they've scanned your area, your AP is in the database.

Sounds like a great way to find stolen Access Points, WiFi cards, laptops with built-in WiFi, and other such gear. B-)

How many petty thieves are going to re-flash the gear to change the MAC address? (And if they do it will still show up as MAC addresses appearing multiply in the maps and/or addresses outside the allocated ranges.)

(Our company had some APs stolen a while back. The IT guys did a little wardriving but didn't find them. We've upgraded since so it probably won't matter to us. But it could be really useful for people who had stuff stolen more recently.)

Re:But it's a great way to find stolen gear

[Cramer]

(And if they do it will still show up as MAC addresses appearing multiply in the maps and/or addresses outside the allocated ranges.)

What? "outsite allocated ranges"? Unless they're changing the first 3 octect -- the manufacturer, there's no such things. Manufacturers don't keep, and certainly don't publish, which addresses they've used. And let me go ahead and burst your bubble... MAC addresses are not globally unique. They only have to be unique within a lan segment -- with a wrinkle or two from other uses (licenses keys attached to MACs, DHCP, etc.)

Re:But it's a great way to find stolen gear

[Ungrounded+Lightning]

... let me go ahead and burst your bubble... MAC addresses are not globally unique. They only have to be unique within a lan segment -- with a wrinkle or two from other uses (licenses keys attached to MACs, DHCP, etc.)

MAC addresses were INTENDED to be globally unique - and properly assigned MAC addresses are.

They don't NEED to be more than "lan segment unique" because collisions can only occur on a LAN segment. This is inherent in the architecture of LAN segments. But the WHOLE POINT of assigning Mac addresses in a globally-unique manner is to allow any device to be plugged into any LAN seguent without having to change its MAC address to avoid a collision with some other device on that LAN segment.

Of course for WiFi a "LAN segment" is everybody within range of each other - which in principle is everybody, since there are no inherent boundaries (unless you count countries with incompatible channel allocations).

WiFi is one big "global village LAN".

Re:But it's a great way to find stolen gear

[technothrasher]

Manufacturers don't keep [...] which addresses they've used.

We most certainly do.

Re:But it's a great way to find stolen gear

[Cramer]

YOU might. Unless you work for every nic manufacturer on Earth, you cannot make such a blanket statement. And it's already a proven falsehood as others have reused addresses. Both 3Com and Intel have been scolded for "rolling over" within the same OUI. And then there's the infamous case (story?) of 3Com shipping an entire unit (bulk pack up to palet, everytime you tell the story, the fish gets bigger) with the same address; granted, that wasn't intentional.

As we've discussed elsewhere, Sun Microsystems didn't used to put a MAC address on their nics. The MAC was generated from the system hostid (which is stored in nvram.) So, every nic in the machine has the same address. They stopped doing that stupid shit several years ago.

Re:But it's a great way to find stolen gear

[petermgreen]

they are supposed to track addresses so that they are globally unique (since this is the only way to be absoloutely sure that any combination of ethernet products placed on a lan with thier factory addresses have unique addresses). To achive that manufacturers must keep track of which addresses they have allocated.

Some manufacturers do screw up sometimes though and i bet it often goes unnoticed because the probability of collisions is fairly low unless a manufacturer does something *REALLY* stupid like shipping a cratefull of cards with the same mac or shipping a firmware upgrade utility that screws up the MAC.

but i agree with your main point, pick a random mac within the range of a vendor that really exists and you are pretty safe.

Look

[Anubis350]

OK, I'll bite. We have a lot of comps in my house. Most of them are towers, and they are wired. However, we also have several laptops. When I, or my parents, or my sister are at our desks, wires are fine. When we're sitting in the living room, kitchen, terrace, etc. they're not. Running 1 wire to living room... maybe, if it's needed. Running 4 or 5? Ugly, a pain, and n ot necessary since it can be taken care of with wireless. Sure I could drape the living room in wires, but why bother? If I needs high speed data xfer to my other comps, I plug in to the gigbit wire. Otherwise, 11g is just fine for web (hell, it's overkill), and the convinience is great.

Real men...

use wireless to play poker on their laptop while sitting on the crapper.

Jerry! Jerry!

[iminplaya]

All right! Break out the 12 gauge and ax. Another trailer park war.

That's illegal, see case referenced in comment.

[RunzWithScissors]

Some of you may remember this story: Hacker Sentenced To Longest US Sentence Yet about a young man who accessed a wide open access point to check his Yahoo! e-mail. The feds nailed him for "Unauthorized Access to a Protected Computer" because he accessed the Lowes Store Wi-Fi Access Point. I fail to see how Skyhook's methods are any different. They may not have used the access point to do something, but they still connected to it, uninvited.

If it's good enough for our real life citizens, it should also apply to our corporate citizens; at least in a fair and just world.

-Runz

Re:That's illegal, see case referenced in comment.

[Nukenbar2]

um, not even close. By simple click the link you provided, you can see in the summery that he was attempting to steal customer credit card information from that network.

A little different from checking your e-mail and worth some jail time.

off-topic

[mapkinase]

I misread "to see which of their instant messenger buddies are geographically near them." as bullies. Seriously, I do not lie.

cheap and lazy, that's me

[cascadingstylesheet]

I think it's main selling point is the fact that people don't have to run wires and people are generally cheap and lazy.

Or have other, higher, priorities for their time and money.

like...?

[Quadraginta]

Uh...what kind of crimes?

I guess you can't mean any ordinary physical crime, like robbing someone or burglarizing his house, for which a wireless access is wholly unnecessary.

So what could you do with wireless access from your black-painted car or truck that you can't do as easily (or with equal difficulty) from the comfort of your regular crime lair, or from the Starbucks down the street?

Re:Revealed? Huh?

[georgn]

Particularly sweet are the WiFi hot spots in the middle of large lakes.

Access points that move to new locations

[Rick17JJ]

The assumption is that wireless access points are permanently located in one location, but once in a while that is not true. One example would be a couple who has both a summer cabin and a winter home. They might own just one wireless access point or wireless router and take it to their other home for the other potion of the year. Another example would be a retired couple who has a home in a colder part of the country and who, every winter, take their large motor home or travel trailer to Arizona or Florida for the winter. They might also take their wireless router and their laptop computer with them for the winter. Because of these moving wireless routers, the database of wireless locations will, presumably, occasionally be wrong.

There are also cases where a wireless router might make a one time move to a new location. For instance a home owner or business might move to a new location. Another example would be a small business owner who would initially configure and try out their wireless router at home and then after they have everything working perfectly take it to work and set it up permanently there. How quickly will the database of wireless access points be updated with the new location?

Of course, no such system is perfect. For example, I just put my address into mapquest.com and even after all these years, their map still is wrong about where I live. About seven years ago, I sent them the GPS coordinates for my address and described the nearest cross streets and they thanked me for the information and never changed a thing.

Interesting

[sarahlanephotography]

I randomize my MAC daily but I didn't know the SSID could leak. It sucks because the SSID 'secret' is how my notebooks assosciate. Any links you can dig up? I use the standard stumbler stuff..

Now feel the wrath of the Monarch!

Release the Butterflies!!!!

"ok, who forgot to feed the butterflies....."

New Product!!!

[BaronElectricPhase]

Now you too can have the biggest tin-foil hat in the neighborhood
with the in home do-it-yourself Farraday Cage wallpaper and window treatments kit!

Or just move into one of the older (and I mean OLD)
houses that are lined with a tin sheath...
(I forget the original purpose of it)
Like the older homes in Andersonville neighborhood of Chicago.
Cellphone has full signal outside... no signal inside.

HERF Gnome

[BaronElectricPhase]

While your perfecting this device I'd like you to consider testing on a vehicle that seems to parade down my street 4 times a day while subjecting me and my windows to the effects of his 2000(?) watt automotive megabass setup.