First Post!
We’re just getting started here and we’ve got a few things happening:
- What the heck is this?
- WiFiCharlottetown.org (this website) is all setup and should provide a central resource for WiFiCharlottetown info and discussion.
- Hardware is on the way! We have ordered a few Sputnik access points to experiment with them as an option for easily manageable access points for people to share WiFi from their homes. We’ll post here when they arrive.
- Maps! Our resident war-driver has taken a spin around town with his laptop and GPS receiver. We don’t have anything worth showing yet, but we hope to have some maps up soon.
"Alternatively, you can open up your access point to all mac addresses and turning off WEP (if these terms don’t mean anything to you, contact one of us and we’ll do our best to help)."
I am curious as to what advice you give to non-technical people reguarding these security features of their access point. Is the setup of their home network taken into account before they are advised to disable these features?
I reality I doubt you'd find many non-technical people with these security features enabled since almost all access points currently ship with these features disabled.
If we were to advise to someone to open their access- point, it would be with the disclaimer that they are doing just that: opening their network – to goodies and baddies. The NYCWireless site has a good answer to the question of security: Is it secure? No!
I think some of the confusion comes from the lack of distinction between public and private networks when wireless security is discussed. While the same networking hardware is used in both types of networks, the security concerns are quite different. The security features in current access point such as MAC lists and WEP are designed for private networks. They are designed to wirelessly extend whatever privacy the private network already has. This is done by controlling access and encrypting transmitted data.
There is nothing inherently bad about public networks... that's what the Internet is afterall. The concerns arise when trying to protect private systems that are connected to a public network. Long before WIFI, The original approach was to secure systems individually by securing all software and by carefully authenticating all remote access. This is both difficult and unattractive among a group of trusted systems. The more popular way to define the public-private division has been the firewall approach. Behind the firewall is a private network where security can be more relaxed. While firewall rules can be complex, the basic operation is simple: traffic is limited between the public and private sides.
Router boxes are finally starting to secure home networks of non-technical people. Although these boxes are usually marketed for the purpose of internet sharing, they have the benefit of being a natural firewall. This is a benefit to both the owner and the Internet community at large since it helps to reduce the spreading of certain types of viruses and makes it more difficult for systems to be used in a distributed denial of service attacks.
What does this all have to do with public WIFI? Public and private networks are different by definition. When a wireless access point is installed its configuration should be dependent on the type of network. For a private network use MAC lists and WEP to keep the network private. For a public network disable those features and create a public WIFI AP. It is impossible to do both at once.