About these ads
«
»

Why I Don’t Like Hotel Networks

Perhaps this indicates most folks can’t configure network encryption with known parameters, but advising everybody to just turn that pesky WEP stuff off seems, well, misguided:

Disable WEP

Disable WEP

Sniffing a guest’s private bits from an unencrypted link doesn’t pose any challenge at all and, given the hotel’s location in Hartford’s hot urban core, I’d expect absolutely no security-by-obscurity whatsoever.

On the other paw, Dragorn of Kismet points out the triviality of a man-in-the-middle WiFi attack no matter what encryption you might (think you) have in effect. So maybe it doesn’t make much difference.

And if you think the wired network is inherently more secure, that should change your mind.

About these ads

This entry was posted on 3-April-2012, 07:35 and is filed under Home Ec, Oddities, PC Tweakage. You can follow any responses to this entry through RSS 2.0. You can leave a response, or trackback from your own site.

  1. #1 by david on 3-April-2012 - 20:11

    “that” is exactly the reason why WEP, WPA, and all other layer-2/3 encryption is utterly pointless. If you’re not running SSL, SSH, or the equivalent, you are guaranteed to lose, and if you are, your link-layer “security” is totally irrelevant, just a waste of time, effort, and needless complexity and bugs.

    Reply

Comments, thoughts, notes, corrections: what do you think?

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s