* Posts by john__doe

2 publicly visible posts • joined 26 Apr 2010

Google Street View logs WiFi networks, Mac addresses

john__doe
Linux

War driving made simple

Say given Linksys 12345 has said exploit in its firmware. Rather than the traditional driving around and putting dots on your map for locations, now all you need is a Google search and Google maps.

Now to take it a step further. Thanks to sites like pipl.com, doing a search on your name has a good chance of returning your address. Take that with google advanced search features, I can then cross check your address with exploitable routers found near you. Now all I need is my laptop loaded with backtrack, a determination, and I'm one step closer to gaining access to your network and your data. In the age of spear phishing, google is working hard, to make it easier.

After google getting their development servers compromised by the Chinese, for them to tout "Well if you have nothing to hide" is an asinine PR approach.

john__doe
Linux

Know thy WiFi router

Turn off SSID broadcasting in your router. It's because peoples router by default, are set to advertise their information. (Like a radio, all google has to do is tune in)

While we're on Wifi security. Make sure your router is set to use WPA2 (WEP, Wireless encryption Protocol can be cracked in less than 5 seconds). Also make sure your WPA-TKIP key is longer than twenty characters, up to sixteen has been cracked so far.

Next, set up an ACL (Access Control List) to only allow connections from mac address you have listed.

With the above said, I wounder how google is going to feel when they (or there employees) are cut by their own double edged sword. It's not about hiding anything, it's about protecting what we have, starting with our identities.

GFY Google...