Locate Any WiFi Router By Its MAC Address

coderrr writes "SkyHook Wireless has been wardriving the US for years creating a huge database mapping wireless routers' MAC addresses to their physical locations. They provide an minimally documented API (docs here) which allows anyone to query the database directly for any MAC address. This could potentially allow some malicious individual to find out exactly where you live. Of course for them to get the MAC of your router in most cases will require either being infected with malware or some sort of social engineering attack... Imagine if you got a phishing email that included your home address."

Perfect for scaring people

[QuickFox]

This is perfect for when IPv6 takes off, with its built-in MAC address. Then my website can scare people shitless by greeting them with a note saying exactly where they live.

Re:Legality of this

[grayn0de]

Only when the person is too much of a poser to not find the hidden SSID. Not everyone knows how, though it is incredibly simple. That is the reason why we have security through obscurity, to begin with. Also, to comment on the topic, it does not take social engineering to find the MAC address for a router. Almost every stumbler does that, by default, out of the box. Many will show that there is a hidden SSID, but they may still show the MAC address. Even if they don't, the SSID can be found and the router cracked.

The thing is...

[theotherbastard]

I believe Skyhook uses the Wireless Antenna's MAC Address, not the WAN Port MAC Address. So, you'd have to be within proximity of the WAP in order to get that information anyway, which means you know about where the WAP is in the first place.

Late to the party

[ElectricTurtle]

Wigle has been doing this for years and years. They're also almost completely open and cross platform. Besides, if anybody wants to know where somebody is, there are a lot easier ways than trying to link a an address from the media access control layer to some coordinate on a map.

Re:Legality of this

[Sethb]

Yep, there's even a company called Navizon that's building a competing service to Skyhook, yet they pay individuals to collect the MAC addresses (as well as Cell tower IDs) with their GPS-equipped devices, so that those without GPS can still obtain their location. It integrates with the new Fire Eagle software/service from Yahoo too.

Here's a link (with my referral code inserted): Navizon

Skyhook has zero data in the city I live in, though I did eventually figure out how you could submit a MAC and coordinates to their system, and fed mine in, so at least my iPhone-owning friends will know where they are when they're at my house...

How is that informative?

[tetromino]

First: I use Comcast. Over the past 3 years, I've replaced wireless routers 2 times (in 2 different homes). The only thing I needed to do to set up a new router was to power-cycle the cable modem; I did not need to change the router's MAC address.

Second: in any case, even if you use some ghetto ISP that tracks router MAC addresses, the external MAC (what the cable modem sees) and the internal wireless MAC (what the wardrivers see) are different and completely independent. You can easily change one without changing the other.

Compatibility

[tepples]

Only when the person is too much of a poser to not find the hidden SSID.

Plenty of devices with an 802.11b radio, especially handheld devices, cannot connect to networks with hidden SSIDs. (A lot of them can't do WPA either.) If you use one of those devices, you have to reconfigure networks that you administer not to hide the SSID.

Re:Quick, Change your MAC!

[clone53421]

Ok, a few other people have said basically the same thing I'm going to say, but I thought their answers don't do a very good job of describing the problem for a very non-technical user. Hopefully I'll do better (and if I'm incorrect in any of my statements, I'm sure somebody will correct me... I'm not really an expert).

• Your cable modem has a MAC address which can be seen by Comcast and any computer on your personal network.
• Your wireless router has a separate MAC which can be seen by anyone close enough to get the signal (or who's plugged into the wired ports on the wireless router itself).
• Your computer has its own MAC address, which is visible to any other computer on your network (on your side of the cable modem).
• Any other computer, printer, or network device on your network has a MAC that is visible to other devices on your network.

In other words, there are a lot of MAC addresses on your local network. The key point is this: A wardriver will get the MAC of your wireless router (well, if he connects to the network he might be able to get MAC addresses of your other equipment, but that would only be possible on an unencrypted network). You can change that safely, because it's not the MAC that Comcast sees. (On a related note, changing the MAC on your computer's network card, whether it's wired or wireless, isn't going to be effective, because that's not what a wardriver is going to see. If you're "visiting" someone else's wireless network, then changing the MAC of your wireless card will anonymize you a little, but that's useful because you don't trust the network – in other words it's a different scenario. You generally "trust" your own network.)

Re:Security

[novakreo]

You realize that you're giving all your data and control over to a machine that you don't control.

Isn't that what you already do with your own ISP? How do you know that some bored guy there isn't already eavesdropping on your data? Or even someone at your ISP's upstream provider?