Slashdot Mirror

← Back to Stories (view on slashdot.org)

Auto-Scanning the Names People Choose For Their Wireless APs

Posted by timothy on from the just-name-them-all-hidden dept.

MichaelSmith writes "I code on the tram, going to and from work, and I noticed that there are a lot of WiFi access points along the way. So one week I made it my job to write an automatic scanner which runs from a cron job every minute during commuting times. My backup script pushes the new AP names to my web server and you can read it online. It is a mixture of the straightforward, naive and funny, with a few pop culture references along the way. The first column in the file is the number of access points with that name. The second column is the AP name, in brackets to pick up white space." Why can't "Dress Me Slowly" and "Domestic Bliss" just share an AP?

54 of 422 comments (clear)

  1. Best SSID by thewils · · Score: 5, Funny

    The SSID I use is "Honeypot"

    --
    Once I was a four stone apology. Now I am two separate gorillas.
    1. Re:Best SSID by JWSmythe · · Score: 5, Informative

          I used to leave mine unencrypted, and change the name occasionally, calling it "BankOfAmerica", "FirstBankOf[mycity]", "FBI", "NSA", "CovertOps4", etc. I was very disappointed that I didn't have people trying to do nefarious things.

          Now I just call it "unreachable", and encrypted, which seems to have the same result. Ok, that's a lie, but I'm not going to post my real SSID here. :)

          I really appreciate all the folks with the Verizon DSL/FiOS routers with the 5 character SSID's, since those are easily crackable. They're nicer than the unencrypted ones, since I'm not competing with other users for the line. :)

          My last drive got over 2,000 in about 20 miles. Most were totally boring, and like 25% were unencrypted.

      --
      Serious? Seriousness is well above my pay grade.
    2. Re:Best SSID by quantumplacet · · Score: 5, Informative

      My FIOS wireless router came w/ 64 bit WEP enabled and a little brochure that claimed that cracking wireless networks was "just in theory" and that 64 bit WEP was in "as secure as a wired network".

    3. Re:Best SSID by Anonymous Coward · · Score: 3, Funny

      I named mine "GOATSE", no password, no encryption, but unauthorized connections get redirected automatically... They can't say they weren't warned.

    4. Re:Best SSID by bertoelcon · · Score: 4, Funny

      I use "GetOffMyLawn". It is very fitting for having a large enough yard that you can't see it without being on the lawn or in the house.

      --
      Anything can be found funny, from a certain point of view.
    5. Re:Best SSID by jandrese · · Score: 4, Informative

      If your switch has a collision light, you might just have a hub.

      --

      I read the internet for the articles.
    6. Re:Best SSID by cpt+kangarooski · · Score: 5, Funny

      Don't you mean Get off my LAN?

      --
      -- This and all my posts are in the public domain. I am a lawyer. I am not your lawyer, and this is not legal advice.
    7. Re:Best SSID by JWSmythe · · Score: 3, Interesting

          Look around online a little bit. The 5 character SSID is generated from the MAC, and so is the key. You can extrapolate enough for the SSID and the known parts of the MAC to generate the key.

      --
      Serious? Seriousness is well above my pay grade.
    8. Re:Best SSID by Dun+Malg · · Score: 4, Funny

      Mine is called "NotForYou!".... and then is unsecured. I like to be generous to those who don't do as they're told

      --
      If a job's not worth doing, it's not worth doing right.
    9. Re:Best SSID by cdrudge · · Score: 5, Funny

      The w in lawn is silent.

    10. Re:Best SSID by fatbuttlarry · · Score: 3, Funny

      Mine's called "Linksys" and the password is "1234", but there must be a problem because it always lists two of them and some times I make changes and it doesn't save.

    11. Re:Best SSID by JWSmythe · · Score: 4, Interesting

          Oh, I definitely broadcast my SSID. I've run into the stomping into each other problem before. It's a pain to do a site survey of who's around, pick a channel, just to find out that there's other traffic interfering.

          I know mine is receivable for a longer distance than others in the neighborhood. When they installed it, I wasn't here, and they put the AP under a desk, with a metal file cabinet beside it. {sigh}. I moved it up on top of the file cabinet, and that (amazingly enough) fixed a lot of my problems. I'd guess the neighbors got theirs installed somewhere, and they left it exactly where it was placed.

          I've had to change my channel twice where I am now, because the defaults for whatever a neighbor installed were on my channel and ruined my throughput. I may look like a lunatic walking around the house with the laptop listening, but it tells me what channels are being used, and what are free. It's kinda funny, there are three near the house that are all on the same channel. I bet they wonder why their connection is terrible, but it's not mine to fix. That, and I'm not ambitious enough to go find their house and offer to fix it. I did that once in an office building. Someone turned on an AP and stomped on my traffic. I wandered around, found them, went to the receptionist for the company and asked to see whoever was in charge of IT. They were completely oblivious to what I was asking.

      "Who takes care of problems with your computers?"
      "I don't know"
      "Can you please find someone who does know?"
      "Why?"
      "Because your access point is broadcasting over the legal limits for power, and is disrupting service for other occupants of the building."
      "What's an access point?"
      "It's the device that handles wireless network traffic."
      "I don't think we're on a network."
      "Can you go to web sites?"
      "yes"
      "Then you're on a network. Can you find the person who runs it"
      "No one here knows." (without asking or even picking up the phone)

      The conversation went on for a few more minutes, before I just gave up.

      I didn't know positively that they were over the legal limits, but since I had a good signal from their office several floors below, and even a good distance from the building, I figured they were doing something they shouldn't be. At least when I've put high gain antennas on, I look around, make sure I won't interfere with anyone, and use a very narrow beam antenna (i.e., a good parabolic), that doesn't come close to any other buildings. When I went hunting for my own signal in that circumstance, I couldn't even pick it up at ground level standing under the receiving antenna, 20' below it. I've only done that on long point-to-point connections, not as a general AP in an office building.

      --
      Serious? Seriousness is well above my pay grade.
    12. Re:Best SSID by Anonymous Coward · · Score: 5, Insightful

      ACTUALLY ... if you ever run into the hell that is a DUPLEX MISMATCH, you'll be grateful that your SWITCH does in fact have a COLLISION LIGHT.

      Why yes, I am CAPITALIZING random WORDS this evening. It's a RESULT of the prodigious quantity of ALCOHOL I have been drinking.

      THANK YOU. Now go back to scribbling about THINGS you DO NOT FULLY appreciate. This is SLASHDOT, after all. :-)

    13. Re:Best SSID by ivoras · · Score: 4, Funny

      That's a wrong way to do this conversation - you really need to pull something like: "I'm concerned the radiation levels of your wireless router are causing you all to have brain cancer" followed by "innocent" inquiries into if anyone on the office has headaches or problems sleeping, suggesting the AP might be the cause. It's bullshit of course but the only way to get people interested is to make it about *their* asses. If you're good enough (i.e. go through it in a really circumspect way) you may even get them to pay you to investigate and reconfigure the said AP :)

      --
      -- Sig down
  2. already by adairw · · Score: 4, Insightful

    slashdotted

  3. On a lazy Saturday evening by Anonymous Coward · · Score: 3, Funny

    MichaelSmith /.s his own server.

    1. Re:On a lazy Saturday evening by MichaelSmith · · Score: 4, Informative

      I can't believe it. I extracted the text file from mercurial and put it on disk as a plain text file. I submitted this article before I went out to my son's birthday party. When I got back I wondered why nothing was working.

      Once the smoke clears from my office I will go through the logs and try to work out whether it was the single, short plain text file or the link to the source code which did the damage.

      --
      http://michaelsmith.id.au
    2. Re:On a lazy Saturday evening by MichaelSmith · · Score: 3, Funny

      erm... "coral cache" rings any bell?

      It does now.

      --
      http://michaelsmith.id.au
  4. Having RTFA for once... by AccUser · · Score: 5, Funny

    My favourite is the tie fighter: ]-o-[

    --

    Any fool can talk, but it takes a wise man to listen.

    1. Re:Having RTFA for once... by geminidomino · · Score: 4, Informative

      <-o-> TIE Interceptor
      <-oo-> TIE Bomber
      [-o-] Darth Vader's Prototype TIE Fighter (TIE Advanced)

  5. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by leromarinvit · · Score: 5, Informative

    Huh? There's nothing illegal about logging the names of Wifi networks. Or at least there shouldn't be, as that would be completely crazy.

    It's aking to noting the names people display publicly next to their doorbells, just easier to do. He didn't connect to any of the networks, just log their names. Nothing wrong with that.

    --
    Proud member of the Ferengi Socialist Party.
  6. Re:hi neighbor! by adolf · · Score: 4, Funny

    I ran across one recently that called itself "BURN. FACIAL. SUCK IT."

    I've been thinking about putting together a cron job on a spare WRT router that periodically switches between various funny or disparaging SSIDs, myself. I might even leave it unencrypted, with DHCP on, with a random goatse appearing instead of net access.

    --
    Kid-proof tablet..
  7. Why. by Frosty+Piss · · Score: 4, Insightful

    There are a lot of "cute" AP names around, but mine is what the thing came with. The extent of my interest in that equipment is knowing I've properly secured it, and occasionally looking at the access logs. Beyond that I don't care. I've already thought about it way too much today.

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:Why. by Anonymous Coward · · Score: 5, Informative

      Besides the fact that assuming someone such as yourself uses WPA/WPA2 PSK, the SSID is seeded with the hash and by using the default one, you leave yourself open to the likes of rainbow table attacks - http://www.renderlab.net/projects/WPA-tables/

    2. Re:Why. by Planesdragon · · Score: 3, Insightful

      There are a lot of "cute" AP names around, but mine is what the thing came with. The extent of my interest in that equipment is knowing I've properly secured it

      Re-naming an SSID away from stock is part of properly securing it. Unless you're far enough away from your neighbors that your equipment never sees their access points, having a distinct name is part of ensuring that any client you want on your network properly connects to your network, and doesn't occasionally drop to another network (either through software bug or user error.)

    3. Re:Why. by Anonymous Coward · · Score: 5, Insightful

      He declared that the SSID he uses "is what the thing came with", which is probably a bad choice and definitely bad advice, since it can't be assumed that default SSIDs are not the same for many devices. Some manufacturers uses SSIDs with random character sequences, but many don't. The SSID is indeed used as a seed value in the calculation of the session keys, so not using a standard SSID increases the security.

      Besides, there are other good reasons for choosing a unique SSID: Your laptop won't try to connect to other networks with the same SSID as yours and it makes debugging simpler. There's no need to be cute, witty or offensive, but not changing the default at all is not a good idea.

  8. This isn't really your site, is it? by Rix · · Score: 3, Insightful

    What'd he ever do to you?

  9. answer. by Anonymous Coward · · Score: 5, Interesting

    "dress me slowly" is a retro clothing store on Nicholson St in Fitzroy. The tram route is therefore route 96 in Melbourne Australia..

    What? This wasn't one me those tram spotters quizzes?

    1. Re:answer. by GigaplexNZ · · Score: 5, Funny
      Opening line:

      I code on the tram, going to and from work and I noticed that there are a lot of wifi access points along the way.

      I thought about it.

      Sincerely,
      Derp

    2. Re:answer. by MichaelSmith · · Score: 3, Informative

      I live in Clarence street in East Brunswick and I get on at Blythe street. Because its at the end of the line I always get a seat. Going the other way I get on at the WTC in Clarendon street and even if the tram is full at that point it half empties at southern cross station. Going to work I normally sit at the northern end of the tram with an eeepc 701 on my lap. Feel free to say hello if you recognise me. I usually get on at 0730 and ~1745 or so.

      --
      http://michaelsmith.id.au
  10. Doesnt' netstumbler already do this? by scum-o · · Score: 3, Interesting

    Doesnt' netstumbler already do this?

    1. Re:Doesnt' netstumbler already do this? by shish · · Score: 3, Interesting

      or for linux, kismet

      --
      I mod down anyone who says "I will be modded down for this", regardless of the rest of their comment
  11. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by micksam7 · · Score: 4, Interesting

    Not only is it legal, but it's been going on for a long while now.

  12. Re:hi neighbor! by OverlordQ · · Score: 5, Funny

    Upside-Down-Ternet.

    --
    Your hair look like poop, Bob! - Wanker.
  13. Re:hi neighbor! by Rorschach1 · · Score: 4, Funny

    I came across one in Hong Kong called "DON'T STEAL MY FUCKING WIFI". And of course, it was unsecured.

  14. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by adolf · · Score: 5, Insightful

    Indeed. It's public information, broadcast on some of the most public of the public airwaves -- the 2.4GHz ISM band. Nothing needs decrypted (therefore, various satellite and terrestrial broadcast rules don't apply, nor the DMCA), and nothing needs accessed (therefore, various computer access rules don't apply). Further, an SSID is too short for a meaningful copyright, and trademark law doesn't apply since it's not used in trade. And, of course, recording and publishing these things is simply recording and publishing a list of facts; a practice which has long been protected by various laws and rulings.

    --
    Kid-proof tablet..
  15. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by deniable · · Score: 3, Insightful

    Better tell SETI. Wouldn't want to piss of the aliens.

  16. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by Xarun · · Score: 3, Funny

    Why would slashdotting your own website be illegal?

  17. Re:If you know enough to change the name... by Anonymous Coward · · Score: 5, Informative

    Hiding the SSID decreases your security. When the access point broadcasts the SSID, the clients passively listen for it when they're not in range. When the SSID is hidden, clients broadcast the SSID in search of the wireless LAN wherever they are. This tells attackers about your laptop. There's even a ready-made attack tool for this: the "JaSager" (an implementation of "Karma") will listen for the probe requests and pretend to be your access point. If your WLAN is encrypted, you won't fall into that trap, but anyone who uses MAC address filters and hidden SSID as the only access control mechanisms is instantly MITMd. Even if you can avoid fake access points, your laptop still leaks your SSID and any information that may give (your name? your address? an obscenity?). Don't turn off SSID broadcasts.

  18. Re:Only 29 Named 'Linksys'? by fuzzyfuzzyfungus · · Score: 4, Funny

    They are the nation's largest provider of free wifi, with their fierce competitor "dlink" close behind...

  19. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by tagno25 · · Score: 4, Informative

    you are not talking to it, it is talking to you

  20. Re:Once in Washington DC... by Gangis · · Score: 5, Funny

    I saw one near a Subway restaurant that said "Jared Is Still Fat"

    Also died laughing.

    --
    "Black holes are where God divided by zero." - Steve Wright
  21. Best Secure SSID by AmigaHeretic · · Score: 5, Funny

    I got rid of of passwords, WPA,WPA2,WEP or whatever crap and just changed my SSID to "$5.99 per minute".

    I check the logs and have never seen a single person connect to my router.

  22. Re:Tram? Get real... by Cimexus · · Score: 4, Funny

    Yeah because as everyone knows, Australia is in Europe...

  23. Re:What you are doing is ILLEGAL, IMMORAL, and IIM by KingArthur10 · · Score: 3, Informative

    You obviously have no clue how wifi works. The routers are broadcasting their identification codes and names. All your computer has to do is listen. It's the same as if you were just tuning into all the local FM bands and listening to what other people were listening to (as most of those devices are unencrypted). He doesn't have to "ping" the other wifi networks to listen to them. He doesn't hack anything or attempt to decrypt anything; he simply listens to routers shouting out their names. Perfectly legal. If you scan for wifi access points with Windows, you're doing the same thing; the only difference: he wrote the names down and put the names online.

    --
    I came, I saw, She conquered.
  24. Re:hi neighbor! by Jello+B. · · Score: 4, Funny

    Yeah, it sure takes a lot of genius to hear about something and post it to Slashdot in a relevant discussion. Somebody get this guy a fucking Nobel Prize in physics.

  25. Re:If you know enough to change the name... by JustOK · · Score: 3, Funny

    Their both right.

    --
    rewriting history since 2109
  26. Australia? by RevWaldo · · Score: 4, Funny

    I'm surprised all the SSIDs aren't "Bruce".

    --
    Prisencolinensinainciusol. Ol Rait!
    1. Re:Australia? by Jimbookis · · Score: 3, Informative

      Seriously, you read /. and you don't know your Monty Python?

  27. Quiet Street by Jeffrey_Walsh+VA · · Score: 5, Funny

    I leave an AP open using my street number as SSID. Its outside my firewall and bandwidth is throttled to 15% of my 15/25 Fios. I check the logs sometimes. Its usually someone who came out on a service call, probably logging the job and gettting directions to the next gig. I saw repeated connections once so I blocked the mac address. Shortly after, my close freinds next door noted to me that thier wireless stopped working. I went over and set up their Fios router for wireless.

  28. Cached version: by Twigmon · · Score: 4, Informative

    http://artifacts.glitch.tl.nyud.net/access_points.txt

  29. So... WTF is "Free Public WiFi" really doing? by MoxFulder · · Score: 4, Interesting

    I see these "Free Public WiFi" ESSIDs all over the place in public areas, such as airports. They never work. They're usually ad-hoc networks.

    I assumed for a while that they're symptoms/carriers of some kind of malware, but didn't really worry about it since I don't use Windows.

    I just read this article which has a slightly crazy but just-maybe-plausible theory to explain them. They think that it's a weird, propagating out-of-control Windows XP feature, which makes every network to which an XP computer connects propagate its name as an ad-hoc network. And then when somebody else tries to connect because of the enticing name, they keep the ESSID alive for another minute since it's an ad-hoc network, and this continues ad infinitum. So the whole thing is nothing but a long-lasting "echo" of a forgotten network that keeps alive in heavily trafficked public areas. The whole idea seems nuts. Dumber than dumb. Dumber than Microsoft even.

    But I haven't heard of any better explanation for the "Free Public Wifi" phenomenon. Anyone else???

    --
    My bicyles
    1. Re:So... WTF is "Free Public WiFi" really doing? by bemymonkey · · Score: 4, Informative

      How about evil people sitting at airports with laptops, setting up ad-hoc networks and trying to steal credit card numbers from unsuspecting travellers? Wasn't that actually on Slashdot a few months back?

      Rule of thumb: Don't log onto ad hoc networks unless you know who's running them...

    2. Re:So... WTF is "Free Public WiFi" really doing? by Techman83 · · Score: 3, Informative

      I don't think it was malicious and can confirm this was a significant issue at my work place. There was a hotfix that prevented it from happening and it was definitely addressed in SP3. Microsoft Windows Silent Adhoc Network Advertisement

      --
      # cat /dev/mem | strings | grep -i cat
      Damn, my RAM is full of cats. MEOW!!