On Fri, 18 Sep 2015, Per Jessen wrote:
James Knott wrote:
On 09/18/2015 02:16 AM, Per Jessen wrote:
visiting friends, and also to the guests of the room I rent. It would be very (too much) complicated to add the mac address each time... Alternatively, you could make the SSID invisible, your friends would
Yes, I've seen that. Problem is that I want to offer my WiFi to then need to type it in once.
That's another thing that doesn't provide much security.
Well, he's not looking for a lot of securitys, so it's fits the bill. Unless there is an easy way of determining unadvertised SSIDs ?
I once read of a tool that could download/offload lists of previously used SSIDs from mobile devices themselves. Never seen it, never heard it, never used it, so can't be sure. But apparently it was very well possible and this information was just leaked by devices (not even by APs). Once you know the name of an SSID/ap you can pretend to be it and usually the mobile device will hand you over its password, so now you have the password to the router/ap. Then you can just offer each SSID in turn and take every password that is offered to you. There is no security in this, no verification at all. But still I would take security by obscurity over no security any time. Any time at all. Obscurity is a good measure and you can complement it with whatever measure you have in place (security by access token). -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org