Lewis' Blog Tales from the trenches of information technology

4Nov/100

Firesheep? Not on a Hautspot network

Download PDF

Many of you know that I am the Chief Network Architect for Hautspot. LLC, a little Wi-Fi company which, among other things, is a CLEAR Local Master Platinum Distributor in the Washington, DC metro market. Hautspot's main focus prior to entering into the distributorship agreement with Clearwire, was (and still is) managed Wi-Fi networks built on technology from Sputnik, Inc.

I stumbled upon this article on The Register this evening, describing an engineer at his local coffee shop (the establishment shall remain unnamed on my blog, because I truly despise their idea of java - and I'm a real coffee drinker) using Firesheep - a Firefox extension which allows one to pick off other users' authentication cookies over open networks - and easily hacking other people's social networking accounts (no surprise there, huh?), among other things.

Fortunately, most of our hotspots employ SSID Client Isolation, which is a technology which prevents neighboring users from snooping on other patrons' connections. No client-side configuration is necessary. No crackable VPN passphrases (Steve Gibson, for whom I have the utmost respect, is dead wrong with his suggestion of simply enabling WPA encryption on public WLANs and using a commonly used term, such as the venue name or even "free," as these can be so easily cracked and the system made vulnerable to MITM attack). It simply makes it impossible to route traffic from, say, 192.168.1.55 to 192.168.1.56 on the same LAN; the router won't pass the packets. Period.

Venue owners: for a few $$ per day, you could be enjoying secure, advertising-supported (i.e., you sell ad space on your very own portal page, thus offsetting the cost of the managed service) hotspots, with your own branding for all to see. Authentication is handled on our server. All that's needed on your end is a router/AP, which we provide, and a broadband connection (and if you don't happen to have one of those, we can usually fix that for you, too). Contact us for more info and a FREE site survey.

Last Updated on by

Related posts:

  1. Why social networking sites are evil…E-V-I-L (part 3) More examples of people opening themselves up to strangers on...
  2. Scammers target travelers using hotel Wi-Fi | Fox News Video As usual, media pieces for the consumption of the masses...
  3. Why social networking sites are evil… E-V-I-L (part 2) The folks at ProtectMyID.com seem to understand the risks of...
  4. Why must people carbon copy (cc) all the time? With the ease of 21st century communications comes the added...
  5. Forget those long tweets! Now you can chirp! Indeed, it was bound to happen sometime. The ability to...

Enjoy this article?

Consider subscribing to our RSS feed!

Tagged as: , , Leave a comment
Comments (0) Trackbacks (0)

No comments yet.


Leave a comment

No trackbacks yet.

» «

Recent Posts

Categories

Support Pages

Posts by Date

April 2024
S M T W T F S
« Jun    
 123456
78910111213
14151617181920
21222324252627
282930  

Log In

Email Notifications


 

RSS Feeds

Recent Comments

Tags

advocacy blog buzzword client cloud dns ecomstation edirectory email files firefox fix humor hype install internet internet explorer jfs joomla linux marketing memory mozilla netscape netware os/2 perl php privacy remote repair replace script seamonkey security shell site social networking support tuning update upgrade warpstock windows wordpress