Australian Police Plan Wardriving Mission

bfire writes "Police officers in the Australian state of Queensland plan to conduct a 'wardriving' mission around select towns in an effort to educate citizens to secure their wireless networks. When unsecured networks are found, the Police will pay a friendly visit to the household or small business, informing them of the risks they are exposing themselves to. Officers also hope to return to surveyed areas within a month to see if users have fixed their security settings. The idea is modeled on another campaign where officers walk around railway stations checking cars have been locked, and leaving notes warning people of the dangers involved with leaving their vehicles unsecured."

Aiding and Abetting?

[Stuart+Gibson]

"checking cars have been locked, and leaving notes warning people of the dangers involved with leaving their vehicles unsecured."

So, as a criminal, the police have saved me the trouble of having to work out which cars are unlocked by flagging them up for me?

Slightly more on topic, is there a law against leaving your network open in Australia? What if I'm just being helpful, will they continue to badger me until I lock down my access point?

Re:Aiding and Abetting?

[Bert64]

Well, the police also lock the cars as well as putting notes on them...

A friend of mine got hit by this, he had an old car which used 2 keys - one to open the door, and one to start the engine... He had lost the door key, but still had the engine one, so he simply left the car unlocked. Being an old, rusty and totally worthless looking vehicle it never got stolen, and he never left anything in it worth stealing either. It wasn't a problem until the cops came along and locked him out of it.

Re:Aiding and Abetting?

[corsec67]

Also, what is to prevent a thief from dressing up in similar clothing to a cop, and then wandering around checking the door locks like these police do?

Re:Aiding and Abetting?

[CarpetShark]

Being an old, rusty and totally worthless looking vehicle it never got stolen, and he never left anything in it worth stealing either. It wasn't a problem until the cops came along and locked him out of it.

...for his own safety? ;)

Re:Aiding and Abetting?

[Opportunist]

But ... but that would be like... you know, breaking into the car before stealing it!

I'm fairly sure that's in some way illegal.

Re:Aiding and Abetting?

[PiSkyHi]

I'm not doing a RAM raid with the side window smashed, it completely ruins the air con. effectiveness.

Re:Aiding and Abetting?

[Col.+Klink+(retired)]

I used to have a LeBaron convertible. When I first got it, I used to always lock it. One day, I discovered that criminals will happily cut into a top to unlock a door. Nothing inside the car was worth more than my deductible (plus the hassle of actually getting the top replaced), so I stopped locking it entirely. Thankfully, no pigs ever bothered to lock it for me.

On the other hand, the criminals still sometimes assumed it was locked and broke a window once to break into my unlocked car.

Locking a car only keeps non-criminals out.

yes and..?

[marcushnk]

so what do you think they'll say when I say I do it deliberately ?

I don't mind sharing my wifi with complete strangers. I restrict it to make sure they can't cost me too much and everything I do on it is encrypted via VPN so - meh!

Re:yes and..?

[Bert64]

They will say that by doing it deliberately you are aware of and accept the risks and responsibility of unknown third parties using your network to do illegal things... So if someone decides to download a bunch of kiddie porn through your open wifi, the cops will come straight back and arrest you for it.

Re:yes and..?

[ubrgeek]

> I don't mind sharing my wifi with complete strangers

I must need coffee. I misread this as "I don't mind sharing my wife with complete strangers."

Re:yes and..?

[hairyfeet]

The problem with what you are saying is you are thinking like an IT guy, that is to say you are logically walking through the steps from point A to Z. Not your fault really, it is pretty much the way most of us do it.

The problem with using logic is that Child Porn has become the new red scare and sadly logic often don't have shit to do with whether you will be spending years in PMITA prison or not. See McMartin preschool and Little Rascals Daycare for examples.

Now see, if they had actually used logic they would have said something like "Chuck Norris killing elephants in dungeons? WTF?" but instead they bulldozed the place to the ground actually looking for the fricking dungeon! So sadly until we get rid of scaremongers like Nancy Grace and start actually using logic in the courtrooms again you would have to be batshit crazy to have an open Wifi. Because your logic doesn't really help you when everyone is treating you like a monster, the state has confiscated all your possessions and leaves you to rot in some cell.

Sad that we have fallen this far down the rabbit hole, especially when the vast majority of sexual abuse cases involves a family member or family friend and not some Internet bogeyman, but you simply can't deny reality. If the cops kick down your door and scream "Child molester!" while pointing at you nowadays you are guilty, and whether you can prove your innocence later it will often still cost you years of your life, your friends, maybe even your family. It just isn't worth it.

Re:yes and..?

[PiSkyHi]

You want mod points , I got em, I can help you out with th... oh crap, I've done it again haven't I.

Visist Every Residence

[rtb61]

I also like the idea of police officers visiting every home and place of business, more as a social visit and to establish better ties between the police and civilians. You know, get to know 'your' local police officer and, establish a more social contact with at least one officer whom you can contact in the event of need. Also it would help to remind officers of what their role really is in assisting the public to maintain a civil and orderly society.

Of course while it might work in Australia, in the US with pepper spray and taser abuse out of control and with 'public' discussions of the effectiveness, legality and use of torture it would likely have the opposite affect and drive an even greater wedge between 'law enforcement' and the public.

Re:Visist Every Residence

[Opportunist]

Dunno how many people would just jump out the window if the police knocked and said "hey, we just wanna talk with you".

I mean, it's not what you'd expect from the police. Also, the price for dope would certainly go up with the increased demand, considering how much would be flushed down the drain...

Re:Visist Every Residence

[hab136]

I also like the idea of police officers visiting every home and place of business, more as a social visit and to establish better ties between the police and civilians.

The last time I approached a police officer in public to ask a question, he immediately said "get away from me" before I could even say anything. He was doing paperwork, FYI.

I really wish police officers would act as part the community, interacting with us, instead of acting as a separate society, above and over us.

I smell something sinister

[ring-eldest]

Seems like some kind of pseudo threat to me. What are they implying, that if some criminal uses their open access port to post goat porn to /b/ the home owner is going to be criminally liable? What if you _like_ having an open access port, and don't mind if your elderly neighbors use it occasionally to check their email? Quite frankly it doesn't seem to be the homeowner's job to lock the world down in order to prevent crime, especially crime that can be remedied by pulling a plug, if it ever actually causes the homeowner to lose bandwidth. Come to think about it, it's not the cops job to prevent crime either.

So, who exactly is this benefiting? My guess would be whoever provides ISP service has been hitting up their political puppets... after all, your 60 year old neighbor should get with the times and start paying $100 a month for internet access like all the other good citizens.

Re:I smell something sinister

[Rogerborg]

I wouldn't listen to the voices from your dental work. The police have been testing door locks since their inception. It's called crime prevention, and it's first and last in Peel's Nine Points:

The basic mission for which the police exist is to prevent crime and disorder. [...] The test of police efficiency is the absence of crime and disorder, not the visible evidence of police action in dealing with it.

Knock, knock...

[ekran]

Oh, there are a lot of strange ways this could play out:

[ knock, knock ]
-Do you have the WLAN with the SSID MonkeyTails?
-The what, Sir?
-Wireless Network?
-Oh, for the computer Internet? No, I think ours is called captaincrook.
-Okay, that one is safe.
-Safe?
-Yeah, we are driving around checking for insecure WLANs. Do you know who MonkeyTails are?
-I think it's my neighbour.
-Ok, thank you.
[ knock, knock ]
- Hello.
- Hello, are you the owner of the WLAN MonkeyTails?
- Yes?
- It's insecure.
- I know.
- Well, you should secure it.
- No, I don't want to secure it.
- You should secure it or pedophiles could use it.
- It is an old router that doesn't support encryption.
- Well, let us know if you see any pedophiles.
- Bye.

Re:Knock, knock...

[ozbird]

Change your SSID to "DontTazeMeBro" - it's safer that way.

If I did this, I'd be arrested..

So when a kid demonstrates he can access his school's network or a customer demonstrates that he can get free calls from a phone system, they will be thrown out of school for 'hacking' or arrested for 'theft of service'. But when the police do it, it's fine?

Whats happening here?

Unsecure WiFi is bad for Police, Bad for ISPs

[hughk]

It seems that two of the largest organisations hating the sharing of WiFi access are the police, who don't like the fact that unofficial open access points don't log and the ISPs who hate to think that they are losing a potential customer.

Some years back in London, a chain of winebars (C&B) offered free access for their customers with no fancy tumbling time code or anything (you, know where they print a code that has a limited validity on the till receipt).. A story appeared in one of the papers about how people were able to 'steal WiFi access' showing the 'security consultant' with a laptop in the city of London demonstrating that there was open WiFi. Yep, because they are standing directly outside that Winebar (out of shot). I have stood there myself, as the bar was too noisy, so I could use Skype over WiFi to contact my SO. This is fairly common practice now, but it disrupts the business models of people like Vodafone or commercial WiFi providers.

Stop being a nutjob and get a hold of yourself!

Seems like some kind of pseudo threat to me. What are they implying, that if some criminal uses their open access port to post goat porn to /b/ the home owner is going to be criminally liable?

It is not a threat. It is a fact. If your WLAN is left open and someone commits crimes through it, you could be really screwed. In most cases it would probably not be enough to prove that you did the crime and get you a sentence in court but it could still land you a lot of trouble. And it could be used maliciously: Let's say that a co-worker that likes neither you or your boss comes to use your WLAN to harass your boss?

There are risks in having an open WLAN. Some of them have something to do with you becoming suspected of crime, some are about how other people can commit crimes against you. It can be argued if the police is the best organization to educate about this or not but police certainly can do it and it is important thing to do.

What if you _like_ having an open access port, and don't mind if your elderly neighbors use it occasionally to check their email?

Then they say "Okay." and go to the next apartment. This isn't about them coming to force you protect your WLAN, it is about educating that "Hey, your WLAN is open. Are you aware of the risks?" Because honestly, there are a lot of WLANs that are open because their owner has forgotten to protect them, doesn't know how to do it or doesn't even know that it should be done. I would guess that these even outnumber those who leave it open intentionally.

Quite frankly it doesn't seem to be the homeowner's job to lock the world down in order to prevent crime,

Same can be said about locking your apartment's door. It isn't a homeowners job, right?

especially crime that can be remedied by pulling a plug, if it ever actually causes the homeowner to lose bandwidth.

In some cases the crime can cause a lot more. Perhaps the cops should visit you?

Come to think about it, it's not the cops job to prevent crime either.

Wait, what? Police is supposed to execute the laws which tell what people shouldn't do. It certainly isn't limited to investigating the wrongs that people have already done.

What "risks"???

[Jane+Q.+Public]

What risks are they exposing themselves to? Does Australia hold carriers responsible for content? How would a residential open WiFi differ from the free WiFi at a coffee house?

I think I would warn the cops about the "risks" of coming to my home and harassing me...

WEP_IS_LIKE_OPEN

[ammorais]

Does the police specified that people should use WAP and Strong passwords, if they really wanted to protect their networks.

I've moved to a new apartment 3 months ago. My building is in a very dense populated area. Due to bureaucrat issues, I was over one month without an internet connection. Since I had over 25 available wireless networks on my house I gave the http://www.aircrack-ng.org/doku.php?id=tutorial aircrack online tutorials a shot. It was amazing how easy it is to crack a WEP connection. On average I took less than 10 minutes to crack a WEP wireless. Over 40% of people(at least around here), still use this totally insecure encryption method.
I've started to get curious about who is Using Wep. So I've made a survey with my laptop, and my phone(it has wireless), to see who is using Wep. I have a HP shop on the other side of the street, that has a big splash symbol on the window "Microsoft Certified". They have IT consultants and they are using WEP. What a joke.
My local Social Security Center is using WEP possibily exposing the entire contry database(it's just a guess. I didn't really crack it). Also WAP is not difficult to crack with weak passwords, and most of the people don't have a clue about strong passwords.
I currently have my network open, only closing when I need full bandwidth, and my SSID is something like WEP_IS_LIKE_OPEN, but in my language.
I guess worst than having an open network is to wrongly think you are secure.

Re:WEP_IS_LIKE_OPEN

[wowbagger]

"If I had an access point that could reliably do virtual SSIDs ... I would likely set up a separate open network that used a transparent proxy to do logging so that anyone could use it."

That is an INCREDIBLY BAD IDEA. Do NOT log anything - for 2 reasons:

1) There is the possibility of logging information that could be considered "private" - in the (admittedly unlikely) event that somebody caught wind of it, you might find yourself on the receiving end of a civil suit and/or a criminal charge. The fact such a charge would likely be found unwarranted in no way mitigates the expense and hassle of dealing with it.

2) Should the police trace something to your connection, they WILL subpoena those logs. If and when they don't find what they are looking for, they will assert you have what they want and didn't surrender it, and they will tear your place apart looking for it. If you keep the logs for $TIMEPERIOD, and the event happened at $TIMEPERIOD+$POSITIVEDELTA ago, they will STILL want the logs - and the statement "I deleted them" will be portrayed at "COLLABORATION with TERRORISTS and PAEDOPHILES!" (again, it doesn't matter if they ultimately succeed in that, the cost of defending against it will be staggering).

Ultimately, the rule to follow is "Record NOTHING you don't want to see on the 6 o'clock news, or have used against you in a court of law."

Sad, but true.