[AusNOG] Public Internet Access Policies

Mark ZZZ Smith markzzzsmith at yahoo.com.au
Tue Oct 14 07:54:05 EST 2014






>________________________________
> From: Mark Newton <newton at atdot.dotat.org>
>To: Skeeve Stevens <skeeve+ausnog at eintellegonetworks.com> 
>Cc: "<ausnog at lists.ausnog.net>" <ausnog at lists.ausnog.net> 
>Sent: Friday, 10 October 2014, 10:01
>Subject: Re: [AusNOG] Public Internet Access Policies
> 
>
>
>
>
>On 10 Oct, 2014, at 9:34 am, Skeeve Stevens <skeeve+ausnog at eintellegonetworks.com> wrote:
>
>We do not look at normal usage.  The only usage we see are the log files of the violations / redirects in the web filtering which includes the URL they tried to go to, the category/blacklist/etc violation or the reputation that websense reported for non-categorised sites.
>
>Wait up -- the fact that you're running censorware causes you to stick your nose into other peoples' business?  
>
>
>Why are you even logging? You can turn it off, y'know.
>
>
>This kind of stuff is why I don't actually bother with public wifi anymore. Phone already has internet access, why would I want to subject myself to unreliable, restricted and annoying experiences by associating with an SSID? There mere fact that so many of them have T&C splash-screens is reason enough to avoid them.  The whole product class has been wrecked by people who aren't thinking hard enough about what they're trying to do.
>
>

And they're potentially a insecure too. I was in the Virgin Australia lounge in Brisbane recently, which had free wifi. I suspect there are people out there who think the spashscreen preventing access makes it secure, because there was no wireless security of any type on the SSID at all (not even WEP). If people don't realise how easy to capture traffic of a network like that is, under Linux all you need to do is add a 'monitor' interface to your Wifi interface, and then run tcpdump against it after connecting to the network:

/usr/sbin/iw dev {INTERFACE} interface add {INTERFACE}mon type monitor

ip link set {INTERFACE}mon up

tcpdump -n -e -i {INTERFACE}mon







>
>
>
>  - mark
>
>
>
>
>
>_______________________________________________
>AusNOG mailing list
>AusNOG at lists.ausnog.net
>http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
>


More information about the AusNOG mailing list