People Really Are Clueless Sometimes

H

HardOCP News

[H] News
Joined
Dec 31, 1969
Messages
0
So some random guy decides to use Firesheep to warn Facebook users about using public networks by sending them messages using their own accounts. The result? Nothing. No one really cared. :eek:

Really wasn't kidding about the insecurity thing. I won't send another message after this - it's up to you to take your security seriously. You're at the [XYZ Street] Starbucks on an insecure connection, and absolutely anyone here can access your account with the right (free) tool.

Twenty minutes passed, and all four were still actively using Facebook.
Click to expand...
 
You are currently reading comments on HardOCP in your mom's basement. Your computer is being hacked!
 
Does anybody know if this can collect data on a WAP that is configured to separate the users? All the public WiFi systems I have configured for various customers over the years I ALWAYS enabled the option to not allow peer to peer connectivity.

I may have to test this and see.... I am also curious to see if my phone passes any similar info when it query's facebook for updates.

Joe...
 
Some of the comments underneath the guys post are IQ reducing when you read them. Didn't think you could get anymore stupid then ignoring security but some of the comments prove otherwise.
 
I did a similar thing with my neighbors wireless... They just moved in, I walked over and told them they should secure their wireless cause anyone could DL kiddy porn and they would be held responsible.

Even offered to help them...

The pretty much just rudely said thanks and slammed the door.
 
dandirk said:
I did a similar thing with my neighbors wireless... They just moved in, I walked over and told them they should secure their wireless cause anyone could DL kiddy porn and they would be held responsible.

Even offered to help them...

The pretty much just rudely said thanks and slammed the door.
Click to expand...

Just use it for all your file sharing/music downloads.
 
jmack_3 said:
Does anybody know if this can collect data on a WAP that is configured to separate the users? All the public WiFi systems I have configured for various customers over the years I ALWAYS enabled the option to not allow peer to peer connectivity.

I may have to test this and see.... I am also curious to see if my phone passes any similar info when it query's facebook for updates.

Joe...
Click to expand...

Whats to stop someone from just breaking wap and just capturing packets since everything will be in the clear at that point? Maybe not point and click easy to get what you want, but still easy.

At least with WPA/WPA2 even if the password is known they still will have to break an additional layer of protection for each user, then worry about dealing with peer to peer.
 
dandirk said:
I did a similar thing with my neighbors wireless... They just moved in, I walked over and told them they should secure their wireless cause anyone could DL kiddy porn and they would be held responsible.

Even offered to help them...

The pretty much just rudely said thanks and slammed the door.
Click to expand...
Yeah, I would have too. Why not start with "Welcome to the neighborhood. Have some delicious cookies" before going all IT on their asses?

:D
 
@srangara - he said WAP as in Wireless Access Point.

@jmack_3 - AFAIK the separation of the clients should help. Just install Firesheep and test it out. And your phone is just as much at risk if it is on the WiFi. Put it back to the phone's own 3G network and you have heavy duty encryption protecting you again.
 
Um and he's surprised. . .

First mistake thinking the hipsters at starbucks understand the word security. .. (we all know macs are immune to everything)

Second mistake targeting people on facebook, really . . . .

He couldn't have picked a worse set of targets.
 
Suprised no one brought this up! It was at a Starbucks! 99% of people who are sitting their on their laptops sipping their $8.00 coffee are fucking morons to begin with. The most smug people you'll ever see outside an apple store. Complete and utter clueless people!
 
Yossarian22 said:
Those people should have been punished. Preferably with a defacing. Would they have learned? No. Still...
Click to expand...

I had someone use my email address (I assume by accident) when they signed up for an Amazon account. They then forgot their password and had the password reset link sent to my inbox. I sent him a note informing him of this problem, and why he should fix his email address. His reply was "Whatever ++++++". So I changed his password and spent some time on his account browsing Amazon's selection of gay sex toys and Twilight books. I left my contact info in one of the notes, but I never received anything from him. Some people are just too stupid to use computers, his credit card information was saved to the account, I could have gone on a shopping spree and destroyed his credit.
 
wizdum said:
I had someone use my email address (I assume by accident) when they signed up for an Amazon account. They then forgot their password and had the password reset link sent to my inbox. I sent him a note informing him of this problem, and why he should fix his email address. His reply was "Whatever ++++++". So I changed his password and spent some time on his account browsing Amazon's selection of gay sex toys and Twilight books. I left my contact info in one of the notes, but I never received anything from him. Some people are just too stupid to use computers, his credit card information was saved to the account, I could have gone on a shopping spree and destroyed his credit.
Click to expand...
You should of... I would of been thankfull of the mishap. You should of ordered all this womens clothing and big TV's... lol
 
This is why I browse via an encrypted SSH SOCKS tunnel whenever I am on public wifi!!
 
This is a sharp contrast compared to when I once IM'ed my cousin with his IP address and the whois information and he freaked out saying I better not be hacking his computer.

This was back when ICQ was still independent of AOL and displayed the IP address in the contact information panel when they accepted your request to add them to your list.
 
dandirk said:
I did a similar thing with my neighbors wireless... They just moved in, I walked over and told them they should secure their wireless cause anyone could DL kiddy porn and they would be held responsible.

Even offered to help them...

The pretty much just rudely said thanks and slammed the door.
Click to expand...

Shouldn't have mentioned kiddy porn so fast.
 
love it when the wireless is open as it makes its easier to move there wifi channel away from mine so its not interfering with my wifi connection 2 down my street that have no security set at all full access to the router page as well (need to get some tinfoil and use my phone as an directional wifi locator so i can make some money :) and pay me to secure there setup) a lot still use WEP as well, if i tried i think i could get the key in under 30 secs under WEP

WPA and maybe wpa2 in TKIP mode takes bit of time brake but it can be (depends if the wifi is moving a lot of data or not and if the Key Renewal Interval is set long or short, it should be set thought as some have it set to 0 so not sure if that means 3600 secs {default most routers} or on connect only)
WPA1 or 2 in AES i think is currently secure (take to long to brake)
 
Meh for open networks I use strongvpn, the people being clueless it isn't surprising
 
People are beyond stupid. Our school network is encrypted and locked down extremely well. However, some good old social engineering negates all that.

I'm sitting here in class and set my Droid Incredible to an unencrypted hotspot titled "guestnetwork."

Within 5 minutes I have seven people's FB login.
 
computerpro3 said:
People are beyond stupid. Our school network is encrypted and locked down extremely well. However, some good old social engineering negates all that.

I'm sitting here in class and set my Droid Incredible to an unencrypted hotspot titled "guestnetwork."

Within 5 minutes I have seven people's FB login.
Click to expand...

Gee were you at Sea-Tac airport a few weeks ago? :D
 
You must log in or register to reply here.
Back
Top