Why You See 'Free Public WiFi' In So Many Places 260
An anonymous reader writes "Almost anywhere you go these days (particularly at airports), if you check for available WiFi settings, you have a pretty good chance of seeing an ad hoc network for 'Free Public WiFi.' Of course, since it's ad hoc (computer to computer) it's not actually access to the internet. So why is this in so many places? Turns out it's due to a bug in Windows XP. Apparently, the way XP works is that if it can't find a 'favorite' WiFi hotspot, it automatically sets up the computer to broadcast itself as an ad hoc network point, using the name of the last connection the computer attempted. So... people see 'Free Public WiFi' and they try to log on. Then their own computer starts broadcasting the same thing, because it can't find a network it knows. And, like a virus, the 'Free Public WiFi' that doesn't work lives on and on and on."
Dupe (Score:2, Informative)
http://hardware.slashdot.org/article.pl?sid=07/01/26/1420202 [slashdot.org], among others.
Old news (Score:5, Informative)
Re:I see this alot (Score:5, Informative)
I researched this myself, and it ended up that there were a bunch of better ways to implement it, but HP flat out didn't care.
I don't see it very often... (Score:5, Informative)
Almost anywhere you go these days (particularly at airports), if you check for available WiFi settings, you have a pretty good chance of seeing an ad hoc network for 'Free Public WiFi.'
Doesn't match my experience. I have done a fair bit of flying lately - and always needing at least one connection each time because my closest airport sucks - and haven't seen it at the airports I've been to. I have checked for WiFi at coffee shops and restaurants and haven't seen that SSID there either. Lately I have been connecting through some of the busiest airports in the country (O'Hare and Newark Liberty in particular) and haven't seen this.
In fact, I can't think of the last time I did see it. I often use my blackberry to access open WiFi spots, and I don't have a record of a network that I have connected to called 'Free Public WiFi'.
"He can't spell cue!" (Score:1, Informative)
Your machine would have to be years out of date (Score:5, Informative)
to be affected. This was fixed in XP SP3. Love lines like "When a computer running an older version of XP ...." without further explanation. Haters gonna hate!
Re:Dupe (Score:1, Informative)
Not a dupe, clearly you didn't RTFA.
Re:I don't see it very often... (Score:5, Informative)
Re:Dupe (Score:3, Informative)
Re:Possible attack vector (Score:3, Informative)
While that is certainly true, if you're trying to mimic a known network, you should probably name it appropriately.
After all, if you go to the trouble of setting up a fake walled garden page, you should name the network similar.
It's actually a very easy attack to run at places like hotels where travelers might be unwary and quite willing to fork over CC info for internet access.
Hidden Message in the SSID. (Score:2, Informative)
Re:I don't see it very often... (Score:4, Informative)
Well, and this is from my logs, I've seen 'Free Public Wifi' in ad-hoc mode:
2009-03-29 LHR
2009-03-29 LAX
2009-04-03 LAX
2009-04-05 DTW
2009-04-06 LHR
2009-04-06 LGW
2009-04-12 LGW
2009-04-18 LHR
2009-04-18 LAX
2009-04-29 DFW
And that's just over the course of one month.
Looking at another random month:
2010-01-04 LGW
2010-01-04 LHR
2010-01-06 BKK
2010-01-06 SYD
2010-01-06 BNE
2010-01-14 BNE
2010-01-14 LHR
2010-01-18 LHR
2010-01-18 LAX
I'd pretty much say this exactly confirms what the article spells out. (For the record, I was a Consultant, getting drunk in airplanes was my job).
Re:I see this alot (Score:3, Informative)
zeroconf and those "Quick Connect" buttons that routers and Windows have these days, for two.
Re:I don't believe that works for TLS. (Score:3, Informative)
Sadly Google Chrome doesn't support TLS (no friggin idea why) so server will negotitate down to the less secure SSL v2 or SSL v1 standard.
IE 8 or later, Firefox 2.0 or later. and Safari (no idea what version) all support TLS but obviously google thinks security is over-rated.
You are wrong but I can see why you would think that by looking at the Options section in chrome
Per Google employee lan Ian Ian
We explicitly disable SSLv2 (along with MD2 and MD4 certificate signatures). SSL3/TLS1 are enabled by default. It is automatic and hidden. [google.co.nz]
Re:I see this alot (Score:1, Informative)
So basically what you're saying is that my WiFi is perfectly secure since I do not use a password that is easy to bruteforce. Which defeats your whole argument above. It's not easy to hijack WPA2 unless someone has a terrible password.