[RBS] Open Wireless - Issues & The Truth

[RBS] Open Wireless - Issues & The Truth

Sarah Rosenblum grosenblum at 012.net.il
Tue Apr 14 11:50:54 IDT 2009 

FYI....This was a reply to the email below on one of the other Listing, but
because it did not appear on all Listings I am forwarding it on for
everyones perusal.
 
 
 
----- Original Message -----
 
From: "Akiva M" <akivam at gmail.com>
To: list at shemesh.co.il
Subject: [BS/RBS list] Open Wireless - Issues & The Truth
Date: Mon, 13 Apr 2009 23:57:10 +0300
 
 
 
(I'm somewhat of an expert on these issues - not meaning to brag but just
for context.)
 
Some of what I've seen so far has inaccuracies and a touch of fear
mongering. Here's some straight info on wireless internet access and
leaving it open or not...
 
1. If you leave your wireless internet open - unsecured with password -
anyone close enough to your home can use it.
 
2. If many nearby people use it, it can slow down your access. Kind of like
opening all the faucets in your house, the water pressure gets lower.
Realistically, this is only bothersome if it's a neighbor and they are busy
downloading lots of movies. If somebody wanders by, they're probably not
going to be sitting out on the sidewalk downloading for hours.
 
3. Your wireless router provides some moderate protection from internet
computer attacks (via a hardware firewall). If someone connects to your
open network they can directly attack your computer as they are inside the
firewall. Realistically, the danger from tens of thousands of hackers on
the internet versus one or two people who may be close enough to access your
 
network is very very small - unless your neighbor's son happens to be a
major hacker and doesn't like you. Everyone should have their Windows
Firewall enabled.
 
4. If I get into your network, I can watch where you go on the internet. If
it's a secure connection, like Gmail or your bank, I can't watch watch you
do. If it's not, like eBay, I can ... if I'm a lightly skilled hacker who
is close is standing nearby - only when I'm nearby. Realistically, your
neighbor's son may be of concern, people probably aren't going to be sitting
 
out on the sidewalk late at night monitoring you.
 
5. Most older routers are using the wireless security setting called WEP.
Unfortunately WEP was cracked about 2 years ago and is subject to a
straightforward attack that takes about 10 minutes to break into any WEP
secured network. If your router is newer than about 3 years, you should
choose security setting WPA. (There may be several WPA options, they are
all good.) Make sure your computer (or whatever is connecting) also has a
WPA option - all newer stuff does as does any Windows that's been upgraded
in the past 4 years.
 
6. You CAN intentionally share your network with your neighbors, and this is
 
a reasonable way of saving money by getting one higher speed connection and
using it through several homes in the same building. Newer wireless routers
will also allow you to "relay" a connection, meaning you can have your
router on one side of your apartment to pick up on your neighbor's
connection and then share it through your apartment. This does require his
router and your router to be set in special ways, but a single 10mbit
connection could easily service one whole apartment building this way.
 
7. It's nice to share. Personally I have two routers, one older one and one
newer one. I leave the older one open for sharing and use the newer one to
secure my computers. I've appreciated my neighbors with open networks when
I've had internet outages and had important work to do, and hope they've had
 
a chance to use mine as well.
 
If anyone has any more specific technical questions, I'd be glad to answer.
Email me directly. I do not offer any kind of service in helping others set
up their networks but can advise.
 
Moadim L'Simcha,
Akiva, RBS-A
 
-------Original Message-------
 
From: Eliyahu Shiffman
Date: 14/04/2009 7:28:47 AM
To: strenger
Cc: Rbs2; list at shemesh.co.il; Aryeh Sonnenberg; RBS1
Subject: Re: [RBS] [BS/RBS list] Enlightening and Frightening
 
My son, David Shiffman, addressed this very issue on the list a few
weeks ago. Following is an edited version of his remarks:
 
After reading a recent warning about the vulnerability of home
wireless Internet connections to use by kids out on the street, I did
my own mini-research project. I went around the block with my IPhone,
which signals me when it finds a "wireless point" it can access.
Almost everywhere I walked, it was signalling me! On checking, I
found that virtually every one of these wireless points was not
password-protected. Even in the case of those that are protected, a
simple program can "crack" the password.
 
While everything that was written about unintentionally providing kids
with uncontrolled internet access is correct, that is only half the
problem. The risk to you of allowing others to gain free access to
your wireless internet connection is enormous. One risk is "computer
vandalism." Someone out on the street can go into your computer via
your wireless connection and delete files, change files, insert
viruses into your computer and insert "trojan" programs that can allow
anyone anywhere access to your computer.
 
It gets worse. Someone who gains access to your computer can
essentially "watch" you use your computer, and learn your passwords on
Amazon, eBay, GMail, PayPal, etc. (Some of you may even have a file
where all these passwords are listed!) They could cost you huge
amounts of money. They can also invade your privacy by copying your
pictures and files. They can even install a password on your internet
connection so you can't use your own system.
 
Unfortunately, some of these things may already be happening without
you being aware of it.
 
I am an officer in the IDF engineering corps, and have been working in
computers since I was 15. I have prepared high school students for
their bagruyot in computers, and plan on making a career in the
computer education field once I leave the army in November.
 
I am willing to help Beit Shemesh-area residents with their computer
and network security issues for very reasonable fees in the free time
I now have available. Because I am working only on computer security
issues, I am very efficient in determining quickly what the problems
are and how to deal with them. I can not only make sure your computer
and wireless connection are password-protected, but can even hide the
fact that you have a wireless connection from outsiders. That way,
they can't attempt to "crack" your protection. I can also make sure
your anti-virus is working as it should. (You do have anti-virus
installed, don't you?)
 
I am generally available to help you Thursday evenings, Friday during
the day, and Motza'ei Shabbat. I am occasionally available Sunday
mornings as well. If you would like my help, you need to arrange a
time with me in advance. Call me at 057-815-6944. My advice is not
to put off dealing with this until you have a problem -- deal with it
NOW before you have any problems!
 
David Shiffman
 
On Mon, Apr 13, 2009 at 3:23 PM, strenger <strenge at 012.net.il> wrote:
>
> Yes, please do. My son was here visiting with his laptop. I don't have
> wireless internet, but he was easily able to gain access to a number of
> people in the area's computers.
>
>
>
> -----Original Message-----
> From: list-bounces at shemesh.co.il [mailto:list-bounces at shemesh.co.il] On
> Behalf Of Aryeh Sonnenberg
> Sent: Monday, April 13, 2009 9:47 AM
> To: RBS1; Rbs2; list at shemesh.co.il
> Subject: [BS/RBS list] Enlightening and Frightening
>
> I was driving away from my RBS home yesterday a little before 5:30 AM, and
I saw a teenage boy running through the streets with a laptop computer.

> It was then that I realized that any unsecured, wireless internet could be
 
> incredibly dangerous.

> Please, if you have a wireless connection, password-protect it, and make
> sure that it is only filtered Internet (I recommend Internet Rimon).

> Aryeh Sonnenberg
>
> 972-54-499-1733
>
> www.jewishisrael.org
>
> 'The Land is Very, Very Good'
>
>_______________________________________________
 
RBS Alef mailing list rbs at cs.huji.ac.il
RBS Alef List Archive http://www.yahoogroups.com/group/rbsA/
 
To subscribe, unsubscribe, or set digest or vacation mode,
send a message to:
rbs-request at cs.huji.ac.il
 
Rbs mailing list
Rbs at cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/rbs
.
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.cs.huji.ac.il/pipermail/rbs/attachments/20090414/6c02c938/attachment-0001.html>

More information about the Rbs mailing list