Security Expert: I Leave My Wi-Fi Wide Open

Thu Jan 17, 2008 11:43AM EST

See Comments (17)

I greatly respect security expert Bruce Schneier and I blog about his writings frequently. But his latest, a column for Wired, had me a little taken aback. Why? Schneier says he leaves his home Wi-Fi network open for any passers-by who might like to borrow its signal.

Such behavior flies in the face of common sense and what we've been told since the dawn of wireless: Protect your signal to protect yourself. Who wants interlopers hopping on their network?

For Schneier, it's an issue of "basic politeness." Visitors, he says, should have open access to the internet, just like they do to heat and electricity. And I totally agree with that: It's the unwanted visitors I'm not too thrilled about.

A big concern about open Wi-Fi is always that some creep sitting outside your house will use your network to commit a crime (they always say child porn) and then that crime will be pinned on you. But such crimes are largely theoretical, says Schneier: Who would really go to such an effort to do such a thing? And what better defense is there, asks Schneier, than to say he has an open network and that anyone could have done it?

I'd respond in two ways: One, that was Jammie Thomas's defense in her landmark file sharing trial. And though there were a lot of problems with her case (including the possibility that she didn't have a wireless network at all), the jury didn't buy her excuse. Second, it's not the casual interlopers that bother me, it's the neighbors. I imagine Schneier lives in a traditional suburban neighborhood with a little bit of distance between houses. I live in dense San Francisco. On a good day I can see 12 Wi-Fi networks from my living room; up to 100 people could probably hop on my signal right now if it was open. Do I trust all of them to do the right thing and not abuse my hospitality? No way.

Schneier has other arguments, but they mainly come down to a) it's polite to share and b) the risk of sharing is limited if you secure your PCs at the source. But Schneier is probably better at computer security than most people, and, you know, my rude neighbors can get their own dang internet service.

LINK: Steal This Wi-Fi 

Comments on Security Expert: I Leave My Wi-Fi Wide Open

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 6 Posted by afxsloth on Thu Sep 3, 2009 2:46PM EDT Report Abuse

    WPA encryption using a pre-shared key is not secure. Even if you white list connections allowed using MAC address filtering. MAC addresses can easily be spoofed with the click of a button. But there's tens of millions of MAC addresses right? The correct MAC address can be obtained because it is broadcasted whenever your computer authenticates with the router. That is not something you can hide. Using YOUR MAC address, a deauthenication packet is sent to the router which kicks YOU offline. When your computer automatically reconnects, the 4-way hand shake of the WPA is then captured. Then using a Playstation 3 it can be cracked in just a few days tops.

  • 7 Posted by d.tfish95 on Thu Sep 3, 2009 3:33PM EDT Report Abuse

    I use FON also, I signed up for a free router when Chris Blogged about it. It really is awesome. I have that and a regular Router.

  • 9 Posted by salettarocks on Thu Sep 3, 2009 9:01PM EDT Report Abuse

    Security is important, but being nice is also good. Security can always be broken so the idea might be to secure your data 'as if your network was open' and then don't worry about if it is actually open or not. Don't fall in to the false belief that if your network is closed that it can not be accessed.

  • 10 Posted by dcsoccer25 on Thu Sep 3, 2009 3:39PM EDT Report Abuse

    I don't fall into the belief that if my network is closed, it can't be hacked. I believe more along the lines that rather than screw with my system, someone would most likely prefer to tap into one of the other three networks I can pick up from my house.

  • 11 Posted by pcofmind1 on Thu Sep 3, 2009 8:04PM EDT Report Abuse

    Hey Null -- I appreciate this column of yours for the primary reasons that I'm on board with everything you said AND now I can use it as a cut-and-save post to send to my parents. Although we live in the suburbs of San Francisco down the peninsula from you (less densely populated) I've been baffled at my folks indifference to having their network unsecured. We're talking a retired M.D. & college professor in their mid-70's who just shrug when I tell them to at least add a WEP password key! I'm off now to copy and paste this link, hopefully helping them to revisit this issue.

  • 12 Posted by yellvillebeth on Thu Sep 3, 2009 10:56PM EDT Report Abuse

    why should i pay for my service and just "be nice and polite"and let everyone piggyback off of me. i work to hardto do that.if you have a computer and want internet access. three words for you"GET A JOB" pay for your own.

  • 13 Posted by jayvoit on Thu Sep 3, 2009 4:29PM EDT Report Abuse

    For those of you that don't want to leave their networks open, in addition to adding encryption, take a look at the HomeNet Manager software. It has a nice "Intruder Blocking" feature that prevents just this kind of thing, with or without encryption: http://www.homenetmanager.com

  • 14 Posted by camarobronco on Thu Sep 3, 2009 3:17PM EDT Report Abuse

    I had our network passworded using WEP and simple key, well, It was easy enough for a lot of my neighbors to hop onto my connection and slow everything down. One computer logged onto the network was blatantly labeled as a machine to store porn. I then locked it everything up tight and used WPA2 and much longer password sentence. No one has since accessed my network that I don't want to and my speed has greatly increased. A great program to monitor who has been on your network is Network Magic.

  • 15 Posted by w_ahern on Thu Sep 3, 2009 10:51PM EDT Report Abuse

    I wouldn't dream of leaving my wireless network open. I've got locked up about as tight as I can get it (firewall, WEP encryption, MAC whitelist, and occasionally a VPN). I live 1 block from a state college and I'm more concerned with a man in the middle attack. Imagine someone collecting everything sent between your router and computer: websites, passwords, emails, chat messages, etc. It would be like a portable keylogger that you couldn't detect. Nope, high security for me, call me paranoid.

  • 16 Posted by jortiz00@swbell.net on Thu Sep 3, 2009 4:41PM EDT Report Abuse

    If i do not broadcast an SSID (closed network) and leave the security open, can it still be easily accessed?

  • 17 Posted by tugger_dog on Thu Sep 3, 2009 10:23PM EDT Report Abuse

    My wireless has open access. How do I secure this linksys wireless G ?

More Posts: First Prev 1 2 Next Last

Post a Comment

Sign In to Post a Comment

My Tech

Please enable your browser's cookies to activate the My Tech column.

Also on Yahoo! Tech

Computers Home Office Wi-Fi & Networking Phones & PDAs Cameras & Camcorders TV & Home Theater Portable Audio
 

Site Map | Tour | Subscribe to Yahoo! Tech

Question and Answer content at Yahoo! Tech is written by Yahoo! users at Yahoo! Answers. Yahoo! does not evaluate or guarantee the accuracy of any Yahoo! Answers content. For more information, read the Full Disclaimer.

Opinions expressed by the Advisors are their own and do not necessarily reflect the views of Yahoo! Inc. Yahoo! receives no compensation from any manufacturer or distributor nor does it compensate any Advisor for the coverage of any product or service in any Advisor's content.