• Brad (unregistered)
    Wayport Engineer:
    While I can already feel the sarcastic comments coming, this sort of attack would not accomplish anything on a Wayport network. The usual answer, of course, is that I can't tell you how.

    I've never heard of wayport before posting, so you'll have to forgive my ignorance of your company and their network. I'd be interested to learn how you'd thwart such a man in the middle attack (especially since enterprise grade wireless security isn't something I know much about), but alas we're all caught in our respective company's NDAs aren't we?

  • ehird (unregistered)

    Signing up for wireless access (C) requires you to enter your credit card over a wireless connection (A). <-- No it doesn't

  • Nigel Wadgebottham (unregistered)

    OK, looks to me like it's this way:

    They tell you after you sign up, because if they told you before, you wouldn't sign up. Then they wouldn't get your money.

    The disclaimer is nothing more than some butt-covering fluff without any real effect. You're supposedly responsible for your information, passwords, card numbers, etc. If you hand them out carelessly, you're liable, even without a warning.

    You're not really much more vulnerable than using a card in person, if that card ever leaves your sight (and even if it doesn't). The merchant or other crook gets your number. He can copy it, photograph the card (and signature), do all kinds of things with it, all within seconds. Someone behind you, supposedly using their cell phone, could be taking a photo of your card.

    Really, you're not all that much at risk, even using wireless - not more so than using a physical card.

  • Doug Rosbury (unregistered)

    This only points to the fact that most of us dwell in a realm of unconscious obedience to impulses from those whos ambition it is to exercise control over us. Even the warning to WAKE UP(!!!) is typically ignored because the unconscious programming that we are subject to that we are supposed to desire to have everything that we are told we should have prevents us from recognizing the fact that we are indeed being controlled by self serving individuals whos ambition it is to keep us under their spell. Your presentation is a brilliant insight into the catch 22 which infects our lives.Doug Rosbury And yes, I am not a robot.

  • [email protected] (unregistered)

    I'm especially tickled by this one because I used to work Tech Support for Wayport out of a call center. Ironically, that same call center supported one not less than two of Wayport's contemporaries/competitors at the time. If I still had access I could show you some things about their systems that could boggle your mind. Though to generalize, they have absolutely no sort of standardization throughout their locations, which are mainly hotels and restaurants. They have upwards of 6 different types of DSL modems, 4 different brands of Ethernet systems and at least two different types of wireless systems that they would use. Completely ridiculous. by the way, I love the CAPTCHA test image that I got for this post, the word is "muhahaha" A phrase I use semi frequently.

  • Bob the Builder (unregistered)

    What if getting online required no payment and did not rely on any monetary transaction? Therefore financial risk was obviously minimised. What if, once online, the terms just stated that you're a fool if you send information you believe to be sensitive over an unencrypted internet connection - like everybody already knows, and was more realistic and plain "english" (please feel free to choose the language of your choice). Therefore personal info was at least as insecure as it is in the real world? Why state wireless anyway in T&Cs? Theres an argument that says WiFi pushed security over the physical layer forward more than anything over the last few years! Next visit to an office, in a meeting room, plug into a spare port on the wall - hey presto - your on their corp network - free internet. No sniffing/cracking/waiting around necessary! Plus the opportunity to screw someone over or carry out illegal activities. So much for Lawful Intercept legislation then! How ridiculous to assume that just because its a "public network" that the people on there may want to do bad stuff! As a corp IT manager in a previous life, I know that to be untrue - check the staff out, the people you trust are the ones that catch you out! :-) Dont take this too seriously by the way!

  • major9874 (unregistered)

    I had a similar one a while ago... i was setting up a new computer with XP Pro, and had only a MSBBnet adapter. after installing the drivers, i became aware that though my network had WPA security, the application couldnt do WPA, and neither could windows. SP2 fixes that, but to get SP2, i had to be on the internet. do.loop()

Leave a comment on “The Wireless Catch-22”

Log In or post as a guest

Replying to comment #:

Log Out

« Return to Article