Re: [nycwireless] Bug Labs - http://deancollinsblog.blogspot.com/2007/09/bug-labs-opensource-hardware.html

[Jon Baer]

Yeah ... if they can get that "Teleporter" module working in Q1 2008,  
Im buying 2 of them for my wife ;-)


Very cool idea for wifi-enabled robotics I think.

- Jon

On Sep 17, 2007, at 9:28 PM, Dean Collins wrote:


I just posted this to my www.collins.net.pr/blog and thought it may
interest a few people on this list...wifi router module anyone?



Cheers,
Dean











I had a really interesting conference call today about a new startup
called http://www.buglabs.net 

They are looking to introduce a modular set of 'devices' that fit
together and along with supporting software will allow you to creat  
your

own 'opensource hardware mashups'.

So the core 'base unit' is a fully programmable and "hackable" Linux
computer, equipped with a fast CPU, 128MB RAM, built-in WiFi,
rechargeable battery, USB, Ethernet, and a small LCD with button
controls.


From there 4 additional modules can be added, gps, video camera, lcd

display, accelerometer/motion sesor being the first 4 for release
(though 81 have been mocked up so far).

The long term concept is if you want a 'weather station with live  
video

feeds and gps location control you can add various modules together to
deliver what you are looking to achieve.

I have high hopes for the concepts, and wish the guys well as it seems
their hearts are in the right place.though it's going to be a long
(but interesting) road to travel.



















--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Slurpr - the future of the wireless bandwidth pig

[Jon Baer]

http://www.slurpr.com

-snip-
At this moment I can see 8 different signals. Some are closed  
networks but most are open and available. I can only connect to one  
at a time so I tend to just pick the one with the best signal. But  
what if I could connect to all the networks at the same time and  
combine their bandwidth?

-snip-

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] WeFi

[Jon Baer]

Well I think the aspect is that you get to know *where* someone is  
(and approx. distance to them) when they are signed on via IM (or  
that is my guess) via each external IP used.


My best guess.  Thought there was an Adium plugin to contact  
Wigle.net but was wrong, would be same thing I think.


- Jon

On May 26, 2007, at 3:24 AM, michel memeteau wrote:


2007/5/26, aMay <[EMAIL PROTECTED]>:


Hi Jon, Hi all,

Can anyone introduce something about WeFi?

I come from China, I havn't heard about WeFi before.



I think it is just another wisher with another proprietary maps client
interface .  better try to expand Wigle.net and filter for open  
hotspots



Did you try in NY to build an offline map ? Our only tool right now is
google earth + KML + preload the cities you want to go

--
%<--->%
Michel memeteau

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] WeFi client

[Jon Baer]

Hi,

Anyone here currently using this service + care to comment on it?

http://www.wefi.com/

- Jon

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Breaking WEP in < 60 seconds

[Jon Baer]

<http://www.churchofwifi.org/default.asp?PageLink=Project_Display.asp? 
PID=95>


There is a 7GB table there.

Have you ever seen SPA (Single Packet Authentication)?  Im a huge fan  
of it and Im sure there can be a way to adapt it for WiFi NAC use.   
In fact new article came out today ...


<http://www.cipherdyne.org/blog/2007/04/linux-journal-article-posted- 
single-packet-authorization-part-ii.html>


I should be able to make the 25th, will know soon.  Im interested in  
checking out a/ny WiFi VoIP phone if someone can bring along.


- Jon

On Apr 6, 2007, at 9:36 AM, Ben R. Serebin wrote:


Hello John,

This URL doesn't work (ODBC error) and a demo of a WPA/2 attack
would be great (April 25th is next meeting - confirm?). I'm sure  
someone

will still streamline the attack to reduce the need for rainbow tables
(even w/ this is valid against corporate networks).

Anything in the works for .n to support something more secure? I
know we are draft, but I'm curious. Or is 802.1x still the only  
approach

to secure.

-Ben

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jon  
Baer

Sent: Thursday, April 05, 2007 6:45 PM
To: nycwireless@lists.nycwireless.net
Subject: Re: [nycwireless] Breaking WEP in < 60 seconds

Well I guess if you consider WEP = Worthless right off the bat + it  
now

takes a minute for what took a few hours to do rehashed :-)

I think you don't have to look further on WPA/2 attacks than cowpatty
and rainbow tables, kinda primitive but still effective ...

http://www.churchofwifi.org/default.asp?PageLink=Project_Display.asp?
PID=95

Maybe a demo of both @ the next meetup?

- Jon


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Breaking WEP in < 60 seconds

[Jon Baer]

Well I guess if you consider WEP = Worthless right off the bat + it  
now takes a minute for what took a few hours to do rehashed :-)


I think you don't have to look further on WPA/2 attacks than cowpatty  
and rainbow tables, kinda primitive but still effective ...


http://www.churchofwifi.org/default.asp?PageLink=Project_Display.asp? 
PID=95


Maybe a demo of both @ the next meetup?

- Jon

On Apr 5, 2007, at 6:25 PM, Ben R. Serebin wrote:


Hello Jon,

A good re-hash of old news. I'd like to see how attacks are
progressing against WPA and WPA2.

-Ben

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jon  
Baer

Sent: Thursday, April 05, 2007 5:17 PM
To: nycwireless@lists.nycwireless.net
Subject: [nycwireless] Breaking WEP in < 60 seconds

http://eprint.iacr.org/2007/120.pdf

Abstract
We demonstrate an active attack on the WEP protocol that is able to
recover a 104-bit WEP key using less than 40.000 frames with a success
probability of 50%. In order to succeed in 95% of all cases, 85.000
packets are needed. The IV of these packets can be randomly chosen.  
This
is an improvement in the number of required frames by more than an  
order
of magnitude over the best known key-recovery attacks for WEP. On a  
IEEE

802.11g network, the number of frames required can be obtained by
re-injection in less than a minute. The required computational  
effort is

approximately 2^20 RC4 key setups, which on current desktop and laptop
CPUs in negligible.

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Breaking WEP in < 60 seconds

[Jon Baer]

http://eprint.iacr.org/2007/120.pdf

Abstract
We demonstrate an active attack on the WEP protocol that is able to  
recover a 104-bit WEP key using less than 40.000 frames with a  
success probability of 50%. In order to succeed in 95% of all cases,  
85.000 packets are needed. The IV of these packets can be randomly  
chosen. This is an improvement in the number of required frames by  
more than an order of magnitude over the best known key-recovery  
attacks for WEP. On a IEEE 802.11g network, the number of frames  
required can be obtained by re-injection in less than a minute. The  
required computational effort is approximately 2^20 RC4 key setups,  
which on current desktop and laptop CPUs in negligible.


- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Airport Extreme 802.11n feedback?

[Jon Baer]

Was thinking of picking it up due to the NAS but wanted to see if  
anyone here has tried it out yet + have any feedback/review/pros/cons?


http://www.ifixit.com/Guide/Mac/Airport-Extreme-802-11n/Disassembly- 
Page-1-Disassembly


- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Wi-Fi Faces New Patent Woes

[Jon Baer]

Just in time for Christmas shopping season .. these seem to pop up  
now and then w/o any legs to stand on ...


http://www.sda-asia.com/sda/features/psecom,id,764,srn,2,nodeid, 
4,_language,Singapore.html


-snip-
A federal judge in Tyler, Texas, ruled last week that an Australian  
government agency holds the rights to patents on the underlying  
technology used in two Wi-Fi standards and a third proposed standard.  
The decision could have a wide-ranging impact on wireless equipment  
makers and consumer electronics manufacturers.

-snip-
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Broadcom Wireless Driver Probe Response SSID Overflow

[Jon Baer]

Looks like some laptops have become sitting ducks in the past week :-)

http://isotf.org/advisories/zert-01-06.htm

-snip-
The Broadcom BCMWL5.SYS wireless device driver is vulnerable to a  
stack-based buffer overflow that can lead to arbitrary kernel-mode  
code execution. This particular vulnerability is caused by improper  
handling of 802.11 probe responses containing a long SSID field. The  
BCMWL5.SYS driver is bundled with new PCs from HP, Dell, Gateway,  
eMachines, and other computer manufacturers.

-snip-

More info ...

http://blog.washingtonpost.com/securityfix/2006/11/ 
exploit_targets_widely_deploye.html


If anyone has a vulnerable laptop/card and would like to attempt to  
demo/guinea pig the Framework exploit @ next meeting let me know.


- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] OpenDNS?

[Jon Baer]

Apologies if this service has already been discussed on this list ...

http://www.opendns.com

Has anyone tried this service on their routers?

-snip-
OpenDNS makes money by offering clearly labeled advertisements  
alongside organic search results when the domain entered is not valid  
and not a typo we can fix. OpenDNS will provide additional services  
on top of its enhanced DNS service, and some of them may cost money.  
Speedy, reliable DNS will always be free.

-snip-

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] MTA/Siemens vaporware ...

[Jon Baer]

My guess ...

There are probably a few items beyond physics that Id have a tough  
time figuring out but if someone can look @ a board w/ blinking  
lights of some type and see the B train is arriving at Broadway/ 
Lafayette and physically pick up a mic and announce it that taking  
out the man-in-the-middle is probably not so union friendly @ this  
moment in time :-)


- Jon

On Oct 23, 2006, at 9:25 AM, Dustin Goodwin wrote:


Now this is funny. I had the privilege to see the new all digital
dispacth center the MTA built. When I got a peek it looked operational
from technology perspective but was not yet staffed. Every single  
car on

ever single train on the covered lines  was tracked down to the track
segment (point and click switching, signal status, train  
communication,

etc). I am not sure how hard it is to go from knowing exactly where a
train is to displaying an estimated arrival time on a sign board.  
But my

informed guess is, not that hard.

- Dustin -

Jon Baer wrote:
Saw this in the NYPost this morning ... I find it really hard to  
believe that between RFID, WiFi, WiMax, etc that no technology can  
tell me simply when the next train is arriving.  The question is  
what the real problem is?  Since Siemens has been in the rail  
business for a long time ... makes me wonder if there will ever be  
wide area signal coverage underground.


http://www.railway-technology.com/contractors/signal/siemens/

- Jon

http://www.nypost.com/seven/10202006/news/regionalnews/ 
no_eta__firm_flubs_160m_subway_tech_regionalnews_jeremy_olshan__trans 
it_reporter.htm


NO ETA: FIRM FLUBS $160M SUBWAY TECH
By JEREMY OLSHAN Transit Reporter

October 20, 2006 -- When is the next train coming? Don't ask the MTA.

The $160 million digital message boards that transit officials  
have long promised will take the guesswork out of the platform  
waiting game do not work, The Post has learned.


MTA leaders are furious at German technology powerhouse Siemens,  
which has already been paid $45.2 million since getting the  
contract in 2003.


Siemens has been unable to deliver on promises to fix its  
software, forcing the MTA to consider looking for another company  
to finish the job.


There has not been "any tangible evidence that the fixes we have  
been promised are in fact fixes and can work going forward," New  
York City Transit spokesman Paul Fleuranges said. "We have begun  
the process to explore whether we should pursue a different course  
of action with other parties."


Despite several delays, a separate system using a different  
technology has been installed on the L train. That system does  
work and will be up and running by "year's end," Fleuranges said.


Subway systems in cities such as Paris and London have been able  
to provide passengers arrival information for years, note transit  
advocates, who say the MTA has a lousy track record when it comes  
to bringing in new technology.


"It's really disappointing. With the exception of the MetroCard,  
they have a terrible history with anything that needs software,"  
said Beverly Dolinksy, director of the Permanent Citizens Advisory  
Council to the MTA.


In 2000, the MTA scrapped a contract with Orbital to provide a  
satellite bus-location system, which failed to work around  
Manhattan's skyscrapers. "That contract is 10 years old, and we  
still don't have that system," Dolinsky said.


Since May, the MTA has stopped paying any invoices for work  
related to the Siemens software, according to a report by the  
agency's independent consulting firm, Carter Burgess.


"Payments to the contractor for software-related work are being  
held pending resolution of which direction the software  
development will proceed," the report said.


Though the contractor may have failed to deliver, Gene Russianoff,  
of the Straphangers Campaign, contends the MTA has only itself to  
blame.


"The buck stops with transit officials, because they are the ones  
who drew up the specs," he said. "They spend tens of millions of  
dollars and promise their customers real-time information. Their  
own studies and polls show riders crave knowing what is going on -  
even more so in a 9/11 world."


Siemens contends it will resolve the problems.

"Siemens is confident that we have the solution," spokeswoman  
Paula Davis said. The project will be completed to "the  
satisfaction of the New York City Transit and New York City  
commuters."


In the meantime, riders can still employ the more low-tech method  
of staring into the void for signs of that telltale light at the  
end of the tunnel.

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/





--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] List of VPN providers

[Jon Baer]

Another ...

http://www.hamachi.cc/

There is also a good quick comparison PDF located @ http:// 
www.infosecwriters.com/texts.php?op=display&id=450 which does include  
the drawbacks on the Iopus client.


- Jon

On Oct 20, 2006, at 1:19 PM, Dustin Goodwin wrote:

I assume your saying that all shell servers are also VPN providers  
by assuming that SSH redirection is acceptable. IMHO SSH based port  
redirect or socks proxy is not really a VPN. By my definition a VPN  
consists of client software that provides a network driver shim  
that encrypts all traffic leaving you computer.  There is a small  
group of VPN to Internet to providers that just provide specialized  
service that provide VPN services from and to the Internet. So that  
list would be pretty short.


The list so far:
http://www.hotspotvpn.com/
http://wifi.google.com/gsa/faq.html (Free google VPN if your using  
a Google hotspot)

http://www.jiwire.com/hotspot-helper.htm

- Dustin -

Robin-David Hammond %KB3IEN wrote:



Most ISPs provide this via thier shell servers.

I know from experience that nando.net and bestweb.net had/have a  
shell servers avail at no additional cost for thier ISP customers.  
I think this is an essential service for all ISPs to offer, take  
heed!


No need for an isp? google "unix shell servers".

Most of these vendors will setup whatever proxy you need for a fee.

I think the proposed list would be too huge and basicaly  
redundant, its not realy worth anyone compiling one. It would be  
like having a list of 'residential light bulb installers' under  
'electricians' in the phone book. Not everyone can install a light  
bulb true, but all electricians can (i hope).


Maybe we can encourage accesspoint providers to offer such service  
localy and freely, by standardising this offering we can make it  
more accessable:


I would suggest providing a standard FQDN for this service perhaps  
$(AP_HW_ADDR).freeproxy.nycwireless.net. , and a standardised  
username "proxy:proxy" for ssh logins. The colons would have to be  
removed from the hardware address, to prevent the parser thinking  
it a malformed ip6 addy.


This o/c protect's the user from the fellow user, but the AP admin  
can still see all, but then again, some one some where, always can.





On Thu, 19 Oct 2006, Dustin Goodwin wrote:


Date: Thu, 19 Oct 2006 10:24:24 -0400
From: Dustin Goodwin <[EMAIL PROTECTED]>
Cc: nycwireless@lists.nycwireless.net
Subject: [nycwireless]  List of VPN providers (was:  Secure your  
Public Wi-Fi

Connections)

Does someone have a list of all the VPN to Internet providers?

- Dustin -

[EMAIL PROTECTED] wrote:

Wow, great resource!

http://wifidefense.cuzuco.com/

Quoting [EMAIL PROTECTED]:

There was a nycwirless presentation given two years ago on some
ways to secure connections. Mainly it describes how to
create ssh tunnels, but has other information as well.
PDF of the slides are at http://wifidefense.cuzuco.com/




--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/




Robin-David Hammond KB3IEN
+1 347 350 34 00



--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] MTA/Siemens vaporware ...

[Jon Baer]

Saw this in the NYPost this morning ... I find it really hard to  
believe that between RFID, WiFi, WiMax, etc that no technology can  
tell me simply when the next train is arriving.  The question is what  
the real problem is?  Since Siemens has been in the rail business for  
a long time ... makes me wonder if there will ever be wide area  
signal coverage underground.


http://www.railway-technology.com/contractors/signal/siemens/

- Jon

http://www.nypost.com/seven/10202006/news/regionalnews/ 
no_eta__firm_flubs_160m_subway_tech_regionalnews_jeremy_olshan__transit_ 
reporter.htm


NO ETA: FIRM FLUBS $160M SUBWAY TECH
By JEREMY OLSHAN Transit Reporter

October 20, 2006 -- When is the next train coming? Don't ask the MTA.

The $160 million digital message boards that transit officials have  
long promised will take the guesswork out of the platform waiting  
game do not work, The Post has learned.


MTA leaders are furious at German technology powerhouse Siemens,  
which has already been paid $45.2 million since getting the contract  
in 2003.


Siemens has been unable to deliver on promises to fix its software,  
forcing the MTA to consider looking for another company to finish the  
job.


There has not been "any tangible evidence that the fixes we have been  
promised are in fact fixes and can work going forward," New York City  
Transit spokesman Paul Fleuranges said. "We have begun the process to  
explore whether we should pursue a different course of action with  
other parties."


Despite several delays, a separate system using a different  
technology has been installed on the L train. That system does work  
and will be up and running by "year's end," Fleuranges said.


Subway systems in cities such as Paris and London have been able to  
provide passengers arrival information for years, note transit  
advocates, who say the MTA has a lousy track record when it comes to  
bringing in new technology.


"It's really disappointing. With the exception of the MetroCard, they  
have a terrible history with anything that needs software," said  
Beverly Dolinksy, director of the Permanent Citizens Advisory Council  
to the MTA.


In 2000, the MTA scrapped a contract with Orbital to provide a  
satellite bus-location system, which failed to work around  
Manhattan's skyscrapers. "That contract is 10 years old, and we still  
don't have that system," Dolinsky said.


Since May, the MTA has stopped paying any invoices for work related  
to the Siemens software, according to a report by the agency's  
independent consulting firm, Carter Burgess.


"Payments to the contractor for software-related work are being held  
pending resolution of which direction the software development will  
proceed," the report said.


Though the contractor may have failed to deliver, Gene Russianoff, of  
the Straphangers Campaign, contends the MTA has only itself to blame.


"The buck stops with transit officials, because they are the ones who  
drew up the specs," he said. "They spend tens of millions of dollars  
and promise their customers real-time information. Their own studies  
and polls show riders crave knowing what is going on - even more so  
in a 9/11 world."


Siemens contends it will resolve the problems.

"Siemens is confident that we have the solution," spokeswoman Paula  
Davis said. The project will be completed to "the satisfaction of the  
New York City Transit and New York City commuters."


In the meantime, riders can still employ the more low-tech method of  
staring into the void for signs of that telltale light at the end of  
the tunnel.

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] RE: Secure your Public Wi-Fi Connections

[Jon Baer]

On a side note I shot a short segment @ a cafe w/ David Pogue show  
this week for Discovery/NYTimes channel.  It should be on sometime in  
January I was told.  It was showing basic HTTP/POP/IMAP traffic w/ a  
Mac OS X tool called Eavesdrop.  Will post any further broadcast info  
when I get it.


It would be nice to have a small show w/ more advanced stuff + throw  
some clips onto iTunes/YouTube.  Would anybody be interested in this  
stuff?


- Jon

On Oct 19, 2006, at 9:49 AM, [EMAIL PROTECTED] wrote:


Wow, great resource!

http://wifidefense.cuzuco.com/

Quoting [EMAIL PROTECTED]:

There was a nycwirless presentation given two years ago on some
ways to secure connections. Mainly it describes how to
create ssh tunnels, but has other information as well.
PDF of the slides are at http://wifidefense.cuzuco.com/




--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] RE: Secure your Public Wi-Fi Connections with FREE iPig BETA download

[Jon Baer]

Ok here's the question ...

(Not to knock the product, just a personal question)

Do people actually *trust* 3rd party VPNs?  Would you trust the  
"iOpus' secure connection servers deep in the Internet."?  I fully  
agree w/ the CTO's comment but would you download + trust the app  
after the zero config installation?


- Jon

On Oct 17, 2006, at 12:40 PM, Alison Minaglia wrote:

FREE iPig BETA Secures Wi-Fi Connections During Digital Life  
October 12,

2006

First and only zero-configuration Wifi-security VPN solution with  
Free VPN

Server

New York, NY --  (October 12, 2006) --  iOpus, a provider of cost  
effective,
cutting edge technology utilities that are both powerful and easy  
to use,
announced the iOpus Private Internet Gateway (iPig) as a free beta  
product

to consumers or end users worldwide.   iPig is downloadable from the
company's website at http://www.iopus.com/ipig/download

The new offering, aimed at consumers and small businesses seeking  
to secure
their laptop connections at public hotspots, offers powerful 256- 
bit AES
encryption technology.  The iOpus Private Internet Gateway (iPIG)  
creates a

secure "tunnel" that protects your inbound and outbound communications
(Email, Web, IM, VOIP, calls, FTP, etc.) at any Wi-Fi hotspot or wired
network.  The internet connection may be a free or commercial Wi-Fi  
hotspot,
an Ethernet network jack in your hotel room, or a network drop in  
the office

you're visiting.



iPig is the only zero-configuration VPN solution that offers a free  
VPN

Server. Instead of having the Pig client send all data to our secure
connection servers, you can set up your own secure connection  
server. Just
like the iPig client, the iPig Server is extremely easy to install.  
All you
need is a PC or Server with a permanent Internet connection. With  
your own

iPig Server, no data passes through our server, thus 100% privacy is
ensured.



iPIG shields your data from even the most sophisticated methods of  
online

spying and snooping like the "Evil twin attacks". In addition, your
sensitive information is not only protected between your computer  
and the
  
wireless access
point you're using, but all the way to iOpus' secure connection  
servers deep

in the Internet. This ensures that your data can't be easily hijacked
through the air and at the point it transitions to a "wired" Ethernet
connection. Unlike other
  
technologies,

iPig works with any kind of Internet connection (Wifi, WLAN,
 wired  
ethernet)
and requires NO configuration of any kind. You just start your  
favorite web
browser, email client or chat software and switch the iPig  
encryption on:
iPig grabs all  
Internet traffic before it leaves your PC and encrypts it securely!  
iPig has

the option to block all traffic if the encryption is not switched on
correctly.  iPig also works with all major
 firewall
software like Zonealarm or Norton Internet Security. The software  
runs on

Windows 2000, XP and 2003.



"People need to remember that everyone around you has access to  
your data
when you are connected to a public hotspot.  All of the data you  
send can be
intercepted easily and quickly by persons unknown, without your  
knowledge.
Your data may be your email usernames and passwords, your emails,  
Instant
Messages, web passwords, and all the web pages you visit,"  
commented Mathias

Roth, CTO of iOpus.

About iOpus Software:
Founded in 1998, with offices in New York, Washington, D.C.,  
Germany and

Taiwan, iOpus builds cost-effective software utilitities that are both
powerful and easy to use. Its flagship products, iMacros PRO and  
iMacros
Scripting Edition (see  

http://www.iopus.com/press/releases/2006-8-14.htm), are used by web
developers, webmasters, Internet Service Providers (ISPs) and other IT
professionals worldwide. The iMacros Image Recognition Plugin is a  
powerful

add-on that uses machine vision technology for web testing sites that
contain non-HTML elements. The Plugin supports Flash applets, Java  
applets,
Movie Player Applets, ActiveX, and all other controls. Trial  
versions of
these business products can be downloaded from  www.iopus.com/>

http://www.iOpus.com.

###

For more information, please contact:  Alison Minaglia,  
TechnologyPR for

iOpus Software  [EMAIL PROTECTED]

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.n

[nycwireless] QuickerTek Mac Antennas

[Jon Baer]

http://www.quickertek.com/

Has anyone tried any of these products?  Any feedback?

Thanks.

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] The WiFi Wars?

[Jon Baer]

Has there really been alot of backlash?  Face it someone has to come  
up w/ a way to stick/print the password keys to the network at the  
bottom of the coffee cup then ;-)  WiFi / RFID coffee cups or a true  
$10 latte.


http://arstechnica.com/news.ars/post/20060710-7226.html

-snip-
Raise your hand: who here has ever booth-squatted for hours in a  
Panera, nursing that bottomless cup of coffee, using the restaurant's  
free WiFi connection the entire time? It's a common enough scenario  
that cafe and coffee shop owners, long used to offering free WiFi as  
a way to get customers in the door, are fighting back.

-snip-

I just don't see a war breaking out between freeloaders + cafes :-\

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Getting the right Linksys for Supernode (WRT54GL) (MBP)

[Jon Baer]

Has anyone here w/ a MacBook experienced any connection issues  
pertaining to the router?  Ive seen tons of postings about it ... ie:


http://discussions.apple.com/thread.jspa?threadID=374652&tstart=120

Ive had a PowerBook G4 on OpenWRT for a long time and have had no  
issues whatsoever, but my wifes MacBook can't stay up for too long  
before having to reconnect.  I have not had a chance to interchange  
the router yet but anyone else w/ MB(P) have issues?


- Jon

On Jun 1, 2006, at 7:49 PM, Rob Kelley wrote:


Hi Ming:

  Good to hear your opinion.

  We're running half a dozen of these right now with no such  
problem.  Maybe it's because we're ditching Linksys's default  
firmware for openwrt and wifidog


  http://openwrt.org
  http://wifidog.org

  Rob

Ming Lim <[EMAIL PROTECTED]> wrote:
  Actually the Linkysis product you referenced really sucks! It  
stalls on you
every 2 weeks and then you have to reset it again. It's not worth  
the money

-- Netgear is a better product!
m


On 6/1/06, Rob Kelley wrote:


I'm following up some requests from last night.

If you're interested in flashing your own SuperNode, you can get  
your own

base GL at Amazon and Newegg:
http://www.amazon.com/gp/product/B000BTL0OA/002-0864115-2816861
http://www.newegg.com/Product/Product.asp?Item=N82E16833124190

Both are pretty cheap ($50-$60 after rebate).

Retail stores usually sell the non-L version. Mail order is safer!

Rob


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/





--
Ming Lim
Ph: 858.395.8478
Email 1: [EMAIL PROTECTED]
Email 2: [EMAIL PROTECTED]
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/




--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Skype for FREE ('til 2007)

[Jon Baer]

Free pay phones :-)

Here is some more breaking (and disruptive) news ...

http://share.skype.com/sites/en/2006/05/ 
free_calls_to_all_landlines_an.html


Time to throttle those calls on all your free public open WiFi  
routers ;-)


- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Article: The right way to run a Wi-Fi cafe

[Jon Baer]

7. Good music

It would be pretty nice to have something like the NYCWireless Cafe  
of the Month/Year or some type of award (or spotlight) that  
recognizes a coffee shop for it's excellence in making the WiFi  
junkie feel most @ home.  Id personally nominate the Tea Lounge on  
Union in Brooklyn.


- Jon

On May 11, 2006, at 4:13 PM, Rob Kelley wrote:

[http://business.newsforge.com/business/06/05/02/1951202.shtml? 
tid=39&tid=92 ]


Some of this article was obvious but most of it wasn't, especially  
to Joe Coffeeshop owner.


My big thing is power outlets.   I like places where they're  
pentiful and easy to get to.


In fact, I always thought it'd be cool to carry these not-so- 
obvious  facts about a hotspot like:


1. Indoor? Outdoor?
2. Shade?
3. Comfy chairs?
4. Power outlets?
5. Blocked ports?
6. # Available seats (I go to places where there are a lot of seats).

What makes a good wi-fi cafe?






--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/ 
nycwireless/

Archives: http://lists.nycwireless.net/pipermail/nycwireless/



--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Off the Hook discusses WiFi

[Jon Baer]

The latest show discusses the liabilities / options for WiFi security  
@ public spots + mentions self governing public groups (NYCwireless)  
as good education ...


http://www.2600.com/offthehook/mp3files/broadband/ 
off_the_hook__20060426-64.mp3


I seriously hope there are not public spots which require CC auth for  
us over non-SSL channels existing anywhere :-\


- Jon



--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Iomega 1TB Wireless NAS

[Jon Baer]

Ok, who is buying me one??? ;-)

http://www.iomega.com/direct/products/detail.jsp?prd_id=36890125

-snip-
The Iomega StorCenter Wireless Network Storage 1TB is the only  
network hard drive that combines maximum storage capacity with the  
ease of wireless networking for a powerful data storage solution that  
is essential for digital enthusiasts or small office networks. Secure  
your data with RAID 5 built-in and WEP and WPA wireless security!  
RAID level 5 data protection secures even your most data-intensive  
projects and allows for reliable recovery in case of a failure. Dual  
antennas ensure a rapid data transmission stream. Plus, two USB 2.0  
ports allow for expanded network storage or backup by connecting  
additional external hard drives. And with print server capability,  
simply attach a USB printer for shared access.

-snip-

Its most likely still cheaper to buy a (WRT + NSLU + 2 x 500gb)  
drives but its good to see more WiFi NAS options.  (And ones which  
are PnP AV compliant)


- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] NY Press: NEW YORK: NOT-SO-WIRED CITY

[Jon Baer]

On Apr 5, 2006, at 11:46 PM, Dana Spiegel wrote:


http://www.nypress.com/19/14/news&columns/feature.cfm

For around $5,000, a tech-savvy apartment resident can attach a  
"router" to a physical Internet connection in the building, and  
plug in two or three access points at electrical points on each  
floor of a typical six-storey building, according to NYCwireless  
Executive Director


Does the apartment also come *with* the router for the $5k? ;-)

- Jon



--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Sprint To Introduce EV-DO/Wi-Fi Router

[Jon Baer]

http://www.pcmag.com/article2/0,1895,1946355,00.asp

LAS VEGAS -- Sprint is making high-speed wireless more accessible and  
more flexible with an EV-DO-to-Wi-Fi router and USB EV-DO dongle,  
carrier representatives said today at the CTIA wireless trade show.


Sprint will start selling a Linksys router during the second half of  
this year which can turn any Sprint EV-DO card connection into an  
802.11g local-area network, according to business marketing program  
manager Larry Sherrard. The router, which doesn't yet have a model  
number, will cost "slightly under $200" and won't require any changes  
in subscribers' service plans, which currently cost $59.99/month for  
unlimited high-speed access, or $79.99/month for people without a  
Sprint voice phone.

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] WRT54GL model

[Jon Baer]

Greetings ...

I recently installed White Russian RC5 on my WRT54G @ home to test  
our some wifi port knocking software and want to get another box to  
just play around with and was trying to figure out what would make  
the GL model more efficient if I could get another G model at a lower  
price (w/ the correct needed version).  Anyone have one of these that  
can tell me what is installed on it that would make it worthwhile to  
pay extra for?  (Or if anyone was selling one).


Thanks.

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] Mobility SIG - Update

[Jon Baer]

Jose -

Are there any J2ME-based SIGs going on in the city?  

Im looking for groups working on applications for the next gen Nokias and
K700/S700 SE phones .. Im interested mainly in streaming 3GP/RTSP video /
Wireless Messaging APIs (SMS backchannels) / and Bluetooth midlets but very
hard to find peeps working on stuff in that area.

- Jon




--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] Mobility SIG

[Jon Baer]

Id be interested in this and helping out (if possible) .. I think this is a
great idea because it's obvious that more and more devices are becoming
WiFi/EDGE/3G enabled and it would be cool to show off what some phones can
and can't do in a SIG. (Although I sometimes hate those meetings that turn
into the constant sales pitch which tend to happen a lot, ehh then again if
anyone needs a VPN salesman look me up! :-))

Im also personally interested in the J2ME movement (items like using SMS for
backchannel stuff), also security stuff like Bluesnarfing from AI Digital
needs to be demoed for sure.

Can we start an nycwireless-mobile list? (seems like a lot of people from
the meeting are trying all different vendor services that would be cool to
hear about)

- Jon

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jose Marinez
Sent: Thursday, October 28, 2004 8:13 PM
To: Ben N.Serebin
Cc: [EMAIL PROTECTED]
Subject: [nycwireless] Mobility SIG


Hi Ben, NYCWireless members:

   I would like to know what the procedure will be to make the Mobility 
SIG I spoke about yesterday in the meeting "official" within the 
NYCWireless organization and website?  The purpose of the SIG will be 
to introduce the members to the current advances in mobility 
(specifically smartphones) and how these technologies are complementary 
to WLAN technologies in place today.

   I would like to be able to present on some of topics and to be able 
to bring to the meetings individuals from the main smartphone 
manufacturers that I have relationships with (Nokia, Samsung, PalmOne) 
as well as some developers, like the guys from Dodgeball.com.

   Like I said yesterday, I believe this SIG will create a lot of 
content (conversations, comments, questions, etc.) and I'm not sure if 
you want to host it at NYCWireless.net.  I may be able to get a TypePad 
account from the guys at Six Apart specifically for the SIG and maybe 
have a link to it from NYCWireless.net similar to what you have on the 
Social Impact group.

   To those interested to know what some people do with these 
smartphones take a look at http://www.bodamer.com/albert/ and to get an 
idea of the social effect that some of these devices are having go to 
http://www.thenewatlantis.com/archive/6/rosen.htm

Regards,

Jose Marinez
www.jmarinez.blogspot.com

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] Re: NYCwireless Monthly Meeting - Wed 10/27

[Jon Baer]

If that is the case, im wearing a ski-mask :-) 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Michael
Stearne
Sent: Tuesday, October 26, 2004 6:58 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: [nycwireless] Re: NYCwireless Monthly Meeting - Wed 10/27

If I go (I will try) I might be able to tape it and make it available for
download and/or stream it.

Michael

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] NYCwireless Monthly Meeting - Wed 10/27

[Jon Baer]

Bring your laptop/card so you can interactively participate in the
hi-jacking :-)

It's pretty non technical, 5 slides and the demo.

- Jon 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ben N.
Serebin
Sent: Tuesday, October 26, 2004 12:59 PM
To: [EMAIL PROTECTED]
Subject: [nycwireless] NYCwireless Monthly Meeting - Wed 10/27

Hello Everyone,

  We are having a great monthly meeting this Wednesday. Both are
excellent speakers, so you'll learn a lot from this meeting.

Monthly General Meeting Wed. Oct 27, 7:15pm.
*** Speaker Topics ***
- hijacking and injecting bad data into wireless sessions (by Jon Baer)
- defending against hijacking and injecting bad data into wireless sessions
(by Brian Walden)

Location Details:
Bway.net, 459 Broadway, 2nd Floor, 2 block north of Canal St.

If you have any topic suggestions for meetings, let me know.

Thanks,
-Ben
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Fwd: [Wi-Fi Net News] New Yorkers Get Friendly with the Neighbors]

[Jon Baer]

By Nancy Gohring
Special to Wi-Fi Networking News
Permanently archived item 
[1] Some New York City residents are taking advantage of a project 
offered by NYCWireless that teaches them how to set up a hotspot to 
share with their neighbors: Neighbornode is a project offered by 
NYCWireless that includes a package of open-source software that helps 
interested folks get started. NYCWireless is also offering workshops. 
People who set up the hotspots are encouraged to set up electronic 
bulletin boards that allow users to communicate with each other. So far, 
some of the hotspots are getting people together, for social reasons as 
well as neighborhood watch concerns.

No mention here of whether NYCWireless offers advice on avoiding the 
wrath of broadband providers like Time Warner, which sent out letters to 
people in New York City a while back warning customers against sharing 
their Internet connections.

URLs referenced:
[1] 


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] wrt54g help

[Jon Baer]

Im sure you have already but did you try operating it without puting it 
in the middle.  (ie a normal client/ap situation - what was the 
outcome?)  A few other items to check -

* try running each on its own channel, 1,6, or 11 vs. both on the same.
* have you checked signal strength?  you may want to consider 
alternative firmware (like sveasoft) to boost the antenna output.
* WDS is used normally here when trying to boost a signal through the 
same channel.  the linksys firmware doesnt do this (not yet i dont 
beleive). i think they try to get around it by selling "boosting stations".

- jon
William Estrada wrote:
Marco,
 I am tring to connect from Duck to Donald wirelessly.  In other word,
Donald is an AP Server and Duck is an AP Client.  I have this setup using
a WAP54g(Router_2) to a D-Link 713P(AP_1).  That work fine.  The Router_2
is hardwired to a WRT54G(Route_3) that is pointing down to the house.  At
the house I have another WRT54G(Route_5) pointing to Router_3(Donald).
 The problem is that Route_5(Duck) will not come out of AP Server mode.
I have verified this with my Laptop by connectly to Router_3.
 AP_1 <-Wireless-> Route_2 <-Hardwire-> Router_3 <-Wireless-> Router_5
 This one is not working --
 I have Route_5 configured as 'Router' in Setup-->Advanced Routing-->
Operating Mode.  I have tried SSID the same and 'any'.  I have upgraded
the firmware to '2.04.4'.  I'm am missing something but I don't know what
it is.
 The bottom line question is 'How to put a WRT54G into AP CLient mode'.
 Thanks for your time.
 William Estrada
[EMAIL PROTECTED] wrote:
Maybe I'm not understanding your question but...
take one, call it "donald"
take other, call it "duck"
stop donald dhcp server
start donald wifi
set desired wifi parameter on donald
connect no wan to donald
connect no lan to donald
connect donald to duck via tp cable
stop wifi on duck
connect wan to duck
set wan parameter on duck
start dhcp server on duck
connect other lan trunks to duck
wifi workstation connected via donald
lan worksstation connected via duck
This answer the question?
HTH.   Marco
On Sat, 2004-10-02 at 19:48, William Estrada wrote:
Hello list,
 This is a technical question about the linksys wrt45g.  I have two 
of them
and am trying to connect one to the other as gateway and router.  I 
think
I have them setup correctly but the 'router' will not come out of 
gateway
mode.  I go to setup --> advanced routing and select router in 
'operating
mode' box.  I have the SSID the same for both.  What else do I need 
to do?
Frimware is the same for both, v2.02.7.

Any help??

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] SMS Text -> Show FREE Hotspots?

[Jon Baer]

If im not mistaken what I was looking for is what the "relay" would be 
from the SMS message .. example when you do WAP, the UP browser reports 
a special header .. something like HTTP_X_UP_SUBNO from the handset 
(this is ur mobile #) .. apparently in location based services through 
OpenWave there is another header which gives the location of the first 
tower you passed through ..

They actually list a # of methods they use in their Location Studio SDK 
.. pretty interesting ..

One thing Ive always wanted to do was examine the raw headers from 
multiple cells to see what location based (mobile station ID) info there 
was or might be .. has anyone experimented with anything like that in 
the city?

- Jon
Rob Kelley wrote:
The app would need to translate the cross streets into something like
lat/long before doing location comparisons.  You'd also want your
database to have both street address and lat/long--or again, a way for
the app to derive one from the other.
It seems the smart system would be to add an SMS gateway to an internet
database. 

BTW, A quick look at sourceforge for SMS utilities brings up PlaySMS:
https://sourceforge.net/projects/playsms/
and
http://playsms.sourceforge.net/web/
(Beta, but looks promising (PHP, PEAR, SQL integration, and GPL)
  
There's also http://kannel.org/ .  It claims to be both a WAP and SMS
gateway; it requires a C Compiler.
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] SMS Text -> Show FREE Hotspots?

[Jon Baer]

Dammit ..
I just had the link to a story about how they use SMS in the UK to 
ping/trace the tower info from a SMS message and send back hotspots in 
the area .. I didnt think it was feasible here since some of that info 
is hidden (last time I programmed WTAI/WAP it wasn't) ..

Any thoughts on that technique?
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] bluetooth phones?

[Jon Baer]

Well .. it seems that from reading a review 
(http://www.esato.com/reviews/sonyericsson_k700/) it seems that the 
tabbed pane menu's (moving left to right) were in older Sony Ericsson 
phones (my first was a T68i - so I missed out) ..

So I think they actually went back + reapplied it in the K700.  What I 
like best is the fact I could go right on the directional and hop right 
into the video camera .. pretty nice.

Probably the *best* thing Ive notice is that I threw up some 3pg video 
on my site, set the MIME type, and was able to download the clip :-)  Is 
that so cool or so yesterday?

- Jon
Jose Marinez wrote:
Hi John,
  I find your comment on the K700i UI redesign very interesting, 
specially coming from a Nokia Series 60 user.  Nokia is known for their 
usability.  Can you expand a bit more on the SE UI redesign and how it 
compares to Nokia's Series 60 or Series 40.

Anthony,
  The models that are available from Tmobile that are bluetooth enabled 
are:

SE t610
Nokia N-Gage QD
Nokia 3660
Motorola V600
Nokia 6600
iPaq h6315
Thanks,
Jose Marinez
On Sep 15, 2004, at 7:13 AM, Jon Baer wrote:
Well I have to say the fact that SE is dropping Bluetooth is a bit of 
a shock (although the other day I saw a complete non technie newbie to 
it try to pair up + she had a pretty tough time :-\)

The best part of the K700i I think isn't everything that comes with 
it, is the UI redesign ..

Pro of Nokia 6620 -> MMC card expandability vs. 40Mb w/ SE K700i.
- Jon
Jim Thompson wrote:
Oh please.  Every time I've used a Sony/Ericsson phone, I've 
regretted it.
Nokia 6620.  Hands down.
On Sep 14, 2004, at 3:43 PM, Jon Baer wrote:

Hands down best phone to date -> Sony Ericsson K700i ..
Anthony Townsend wrote:
anyone know which tmobile phones have bluetooth?
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: 
http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: 
http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] bluetooth phones?

[Jon Baer]

Well I have to say the fact that SE is dropping Bluetooth is a bit of a 
shock (although the other day I saw a complete non technie newbie to it 
try to pair up + she had a pretty tough time :-\)

The best part of the K700i I think isn't everything that comes with it, 
is the UI redesign ..

Pro of Nokia 6620 -> MMC card expandability vs. 40Mb w/ SE K700i.
- Jon
Jim Thompson wrote:
Oh please.  Every time I've used a Sony/Ericsson phone, I've regretted it.
Nokia 6620.  Hands down.
On Sep 14, 2004, at 3:43 PM, Jon Baer wrote:
Hands down best phone to date -> Sony Ericsson K700i ..
Anthony Townsend wrote:
anyone know which tmobile phones have bluetooth?
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] bluetooth phones?

[Jon Baer]

Hands down best phone to date -> Sony Ericsson K700i ..
Anthony Townsend wrote:
anyone know which tmobile phones have bluetooth?
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[Fwd: Re: [nycwireless] non wifi wireless experiences?]

[Jon Baer]

actually its the best .. if you IR/Bluetooth to the phone as your modem
you can get online pretty quick these days .. however setting up isnt
always a straight path.
- Jon
[EMAIL PROTECTED] wrote:
Do you have a cell phone? Most have data services - not as fast as 
Wi-Fi, but it works.

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] non wifi wireless experiences?

[Jon Baer]

Last time I looked there was a Starbucks @ the end of every corner :-)

I think without a GPRS/EDGE card you are out of luck.

- Jon 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, September 10, 2004 3:26 PM
To: [EMAIL PROTECTED]
Subject: [nycwireless] non wifi wireless experiences?


I'm at an onsite gig in Long Island City and can't seem to get a wifi
connection here. Anyone have any epxeriences with wireless alternatives,
like the thing from Verizon wireless? I know I'll pay through the nose, but
I need to be able to connect.

Josh
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Multimodal applications?

[Jon Baer]

By Nancy Gohring
Special to Wi-Fi Networking News
Permanently archived item 
[1] As expected, the Wi-Fi Alliance is now certifying products to an 
interim standard called Wi-Fi Multimedia, or WMM: The standard, which is 
a precursor to 802.11e, is meant to improve audio, video, and voice 
applications over Wi-Fi. A handful of products from vendors including 
Atheros, Cisco, Broadcom, and Intel have already been certified for WMM. 
The 802.11e standard will include quality of service mechanisms, which 
will allow network administrators to give priority to traffic such as 
voice that suffers from delays.

URLs referenced:
[1] 
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] RFID Presentation

[Jon Baer]

Just passing along from NYLUG list .
The NYSIA Wireless Application SIG will be hosting a presentation on RFID:
RFID: A - Z
This session will provide an introduction to Radio Frequency Identification
(RFID) based solutions, and will include real world examples of RFID
implementations for both retail and supply chain environments.
The session will cover the following:
The benefits of using RFID.
An overview of different kinds of RFID technologies
- capabilities and limitations.
RFID related standards and what it means to be compliant.
How to get started with RFID.
An overview on architecting RFID based solutions.
Overcoming technology constraints.
For details, and to register ($20 if you are not a member):
http://www.nysia.org/events/calendar.cfm?year=2004&month=9a#349
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] RNC/DNC WiFi ...

[Jon Baer]

http://www.techdirt.com/news/wireless/article/4436
http://www.techweb.com/wire/mobile/showArticle.jhtml?articleID=46200809
Ok .. so let me get this right ..
If you are a security company (that has not been asked to) and roam 
around the convention with a honeypot AP it's ok (you are doing the 
world a favor) .. but if you do it on your own you'll end up in jail and 
get labeled?  Ehh I dunno ..

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] "Free" citywide networks ...

[Jon Baer]

I would but Id rather let someone who was @ the meeting explain what 
they saw during the demo .. hopefully they will allow me to present a 
more complete presentation @ the next meeting.

- Jon
Jim Henry wrote:
Could you share that with this Phila. area person who doesn't know about
your demo and meeting? Thanks.
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] "Free" citywide networks ...

[Jon Baer]

Am I missing something here?
Saw the Philly mayor on CNBC earlier .. what in the world can they *not* 
learn from the demo I gave @ the meeting?

Now Im reading about more and more cities that will follow suit if 
Philly goes through .. you really have to wonder ..

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] article: New York set for citywide wireless (18,000 new lamp post-based antennas)

[Jon Baer]

Louis wrote:
Timeline:
"He said that barring unforeseen obstacles, the enhanced wireless 
coverage should be operational by January at the latest."

I think I might have actually seen a repeater the other day near 53rd 
street, I was in too much of a rush to whip out the laptop but Im 
wondering how they will roll out the technical setup details, probably 
on nyc.gov somewhere (or with Downtown Alliance?) ..

It would be *nice* to see them open it up on other areas of NYC (like 
Brooklyn) on a per request basis for those who would like it in their 
area.  I also wonder if they will be able to resell that backend for 
folks who wouldn't mind going door-to-door :-) 

*This* is what Verizon should really be afraid of ...
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] [Another App Idea] Wireless Port

[Jon Baer]

>>> Authentication is Authentication. You either make certain resources
available anonymously, or you don't. If you don't, then even "port knocking"
is just a delivery mechanism (vector) for username/password, public key,
whatever. And an unreliable one at that.

Possession of an iPod and varied collection is also irrelevant. <<<

I think the post to a "free wireless groups" mailing list was irrelevant :-)

I mean I posted a method to completely hide an AP while this group is @ the
other end of the rainbow.  I still believe that port knocking in terms of a
basic "im out all day, no one use my AP" idea is still good.  The point at
which it's a one time encrypted sequence is still far from off, I think if
you cut the beacons and probe responses off you can @ least give ideas on
how maybe another authentication concept might work.

However I think as long as you can always MITM, you have problems.  Good
feedback.

- Jon

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Another App Idea] Wireless Port Knocking

[Jon Baer]

Im including a short readme from something Ive been tearing apart from 
different projects and trying to glue together.  Feedback always good :-)

-snip-
WKNOCK 0.1 alpha "Knock, knock" "Who's there?"
Wireless Port Knocking
+ Proof of Concept
+ Jon Baer ([EMAIL PROTECTED])
What is wknock?
Wknock is a port knocking scheme for wireless networks.  A daemon listens
for a sequence in monitor mode and when the right sequence is established
it will place itself into master mode and act as the AP.  Once the
disassociation occurs or the session (DHCP) has timed out, the link is
closed and must be established with a new knock sequence.
This is a proof of concept and is not intended to be used in a production
environment or even deployed.  It is just an idea I had when reading about
portknocking for TCP/UDP sequences and thought it could be also used for
802.11 management.
It allows you to "hide" an AP which broadcasts no beacons or probe
responses until the correct packet sequence is heard by the AP. 

Usage:
On the AP:
wknockd -c wknockd.conf
On the client STA:
wknock -essid [essid] (or -bssid [mac]) (-f binary file) (-s hex sequence)
This currently only works with HostAP drivers on Linux.
For more info on port knocking in general see http://www.portknocking.org
This primary testbed for this project was a Thinkpad T20 running RedHat 9
with HostAP drivers and a WRT54G access point.
-snip-
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] [App Idea] "Here I Am" - WiFi User Position Reporting

[Jon Baer]

I think this was the idea of the Sociable Design chat app (which did 
reverse DNS w/ XML) ...

Have you seen it?
http://www.sociabledesign.com/wireless.php
http://www.sociabledesign.com/sociableCHAT.php
Its a little tricky to get around NAT .. and when u do you tend to need 
to do a bit more than grabbing the IP.

What would be nice to see is getting that app done in C so you can stick 
it in firmware. 

- Jon
Rob Kelley wrote:
Hi.  Here's a short idea for an app that's been bugging me for awhile.
FYI for review, sharing, and comments.  

---
WIFI-BASED POSITION REPORTING
A user submits a simple little form that sends the IP address of the
local network to a system hosting a database of wireless nodes.  If the
IP or corresponding FQDN address matches a node in the database, the
system publishes an update that says the user is at that node. 
 

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Bluetooth dental implants (Blueteeth?)

[Jon Baer]

Well .. suits the protocol name perfectly :-)
http://www.blueserker.com/html/modules.php?op=modload&name=News&file=article&sid=201&mode=thread&order=0&thold=0
-snip-
The industrial design firm Creganna  has 
submitted a prototype to the IDSA  "Untethered 
Body" design contest that ends Nov 12, 2004. The device, called the 
dDrive, is a Bluetooth  enabled 512mb hardrive 
that can be implanted as a tooth.

"The Bluetooth enabled hardrive allows an individual to store critical 
personal information that can be accessed by any other Bluetooth enabled 
device. We believe the dDrive will revolutionize medical records, 
security, and other personal information."
-snip-

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] wireless bike and solar powered access point

[Jon Baer]

A few notes about the solar powered AP (very cool) ...
+ do you think he could have saved money using different configs (like a 
wrt54g vs. soekris?)
+ what about a solar power repeater *or* im assuming a second pcmcia 
card can go towards gprs/edge
+ where can you get the solar panel used in the 2nd beta?
+ yury save up some money and make a MagicBlimp already ...

- Jon
Yury G wrote:
http://www.dailywireless.org/index.php
wireless bike and solar powered access point
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] NYC to get cell/wifi on 18,000 lamp posts ..

[Jon Baer]

To be honest if the *last* .50 hike could have included WiFi *inside* of the
tube and on the trains themselves I would have say "hey .. Here's an extra
$1 for the ride" .. The lampposts don't really help much of us on our
commutes .. I still don't think they get it.  They need to fork over $ and
get Yury + the rest of us to design a MagicTrain. :-)

- Jon

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jacob Farkas
Sent: Thursday, July 29, 2004 4:50 PM
To: [EMAIL PROTECTED]
Subject: Re: [nycwireless] NYC to get cell/wifi on 18,000 lamp posts ..

Jon,

The MTA is proposing a fare hike on unlimited ride cards, taxes always seem
to rise, and this proposal is a commercial effort by companies seeking to
extend their own coverage area, and probably provide for pay wi-fi service.

Other municipalities deemed it worthy to invest in a free wireless
infrastructure in an effort to encourage and attract businesses.

What never ceases to amaze me is the seemingly persistent effort by
businesses looking to make a buck off of wi-fi services.

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

RE: [nycwireless] NYC to get cell/wifi on 18,000 lamp posts ..

[Jon Baer]

I wonder if anyone can call the city and get more details yet?  Hope they
don't start raising taxes + bus fares for free wi-fi :-)

- Jon

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Louis
Sent: Thursday, July 29, 2004 10:42 AM
To: [EMAIL PROTECTED]
Subject: [nycwireless] NYC to get cell/wifi on 18,000 lamp posts ..


"July 29, 2004 --  City lampposts soon will light up cellphones and laptops
as well as street corners. Six telecommunications

companies plan to fit about 18,000 lampposts around the city with cellular
and high-speed Internet antennas as part of a franchise agreement worth up
to $25 million a year to the city."

Read about it this morning in the NYPOST:
http://www.nypost.com/news/regionalnews/18259.htm

Louis


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] MNN + NYCwireless

[Jon Baer]

http://wifinetnews.com/archives/004027.html
-snip-
We established a wireless connection through a local, public WiFi 
network maintained by the non-profit NYC Wireless, and broadcast from 
that spot to a computer at MNN studios. The video and audio was captured 
by the camcorder and fed into the laptop, where it was encoded as 
MPEG4/AAC streams, then sent out as a unicast stream via the WiFi 
connection. At MNN they played the stream through a scan converter — 
which converts the stream on a computer into a video signal — then 
broadcast it live on the air.
-snip-

very cool.
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Sveasoft no longer free :-(

[Jon Baer]

That is the thing I can't seem to figure out per GPL, the idea is if you 
pay $ for software it *must* include the source, thus if the source is 
passed on to everyone else .. there is nothing to say its "against the 
law" since no company license is allowed to pass.

Is it really two years?
Daniel Thor Kristjansson wrote:
If you downloaded a copy of their firmware they must provide you with
the source if you ask within a reasonable time. I believe it's two
years, but you can look at the GPL for the particulars. I'm sure if you
point this out to them they will let you download the source, and then
I'll host the binary and source if you want me to.
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Sveasoft no longer free :-(

[Jon Baer]

well as ./'ed today, the sveasoft firmware i talked about @ last meeting 
is no longer "free" .. costs about $50 to get it on CD ...

http://slashdot.org/articles/04/07/21/2255239.shtml?tid=193&tid=1
looks like another nasty GPL issue.
- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] 10 Best wireless nodes in NYC

[Jon Baer]

as disappointing as it sounds all my favorites so far ended up being 
for-pay nodes simply because of their reliability to be there + on. 

when i went around warbiking like a nut i found more than a dozen times 
cases where nodes had been published in the node db but not around when 
i got there.  (or extremley saturated in the area w/ other nodes on the 
same channel).

places like starbucks + b&n have been the more cozier spots as well. 

the best spot in NYC that *should* have wireless access is the tea 
lounge in park slope.  unfortunatley the guy is never around when i want 
to talk to him about wifi.

- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Linksys Boosts Signal--Legally

[Jon Baer]

interesting approach ... either a) dump the idea of wimax as vaporware + pay the fcc 
to create wider coverage or b) wait for wimax.
now we just need to get 200mw+ compact flash cards working :-)
- jon
By Glenn Fleishman
Special to Wi-Fi Networking News
Permanently archived item 
[1] Linksys releases legal antenna add-ons for several of its Wi-Fi gateways: We've 
said it in this space before, and we'll say it again: in the U.S., you cannot legally 
mix and match antennas with Wi-Fi gateways. The FCC's Part 15 rules require that you 
only use antennas that were certified with the gateway that they were designed for. In 
response to a recent query made by a colleague of mine, the FCC wrote back a very 
clear response:
When using Part 15 (2.4GHz) devices, mixing and matching components is a violation of 
the rules. Only systems can be certified. Please see [2] 
http://wireless.fcc.gov/outreach/2004broadbandforum/comments/ YDI_externalamps.pdf.
There you go. Oddly, it is perfectly legal to sell antennas separately from gateways 
without violating any laws. It's only deploying them that is technically illegal. We 
haven't heard of any letters or prosecutions, however.
Linksys isn't getting around this, but has rather taken several antennas and several 
gateways and paid the fees to get each of the combinations certified in a matrix. This 
cost them at least a few hundred thousand dollars in fees and associated expenses 
entirely separate from the development costs of the antennas themselves.
Linksys has two kinds of antennas and matching stands for each. One add-on, the TNC Connector Antenna, is designed for two-antenna systems: WRT54GS, WRT54G, WAP54G, BEFW11S4, and WAP11. The one-antenna device, the SMA Connector Antenna, works with more specialized equipment: WRV54G, WMP54GS, WMP54G, and WET54G. 

Both antenna types cost $60 each (suggested retail), while the respective antenna 
stands are another $30. The stands allow mounting the antennas to a wall or ceiling.
URLs referenced:
[1] 
[2] 
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Monitor mode on Windows (maybe) ...

[Jon Baer]

http://www.oxid.it/
Well I couldn't really get it to work w/ any of my cards, maybe someone 
else would have better luck ... The application "Prisma" seems to 
control the card through PacketRequest API for WinPCap.  I shut down 
Zero Wireless service before testing.

The Cain&Abel cracker now has Netstumbler capabilities so it will be 
worth watching.

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Cisco sued over products?

[Jon Baer]

just saw this ...
http://www.wi-fiplanet.com/news/article.php/3372611
it pertains to a/g ODFM ... a rather disappointing story ... anyone have 
more info or care to speculate on what this would mean for everyone? is 
it hoopla?

- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [ot] linux expertise sought ...

[Jon Baer]

ug ...
redhat hell i think ... i have no idea but my /initrd folder suddenly 
disappeared and apparently this is taboo on RH9 ... it causes a kernel 
panic and i could not boot, so i went over to XP and used LTOOLS to 
simply create this empty directory and now ... all i have left is

/proc
/dev
/tmp
am i screwed?  (considering my cd-rom cant seem to work), do i have any 
alternatives?  i knew sticking with redhat was bad news ... any advise 
*extremely* appreciated.

- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Radiuz Combines WPA-Enterprise with Free Access

[Jon Baer]

By Glenn Fleishman
Special to Wi-Fi Networking News
Permanently archived item 

[1] Radiuz offers WPA-Enterprise logins to free networks at no charge: Radiuz is a 
grand experiment in providing enterprise-scale security and encryption to free 
networks. Any network that wants to use Radiuz's authentication has to have an access 
point that handles pass-through 802.1X authentication, which most consumer units do. 
The access point is configured to talk to Radiuz's server, and that's it.

Radiuz is using WPA-Enterprise, as the Wi-Fi Alliance terms it, which is 802.1X 
port-based authentication coupled with WPA encryption keys. Radiuz further layers PEAP 
(Protected EAP) on top to provide a secure exchange of credentials with their server.

Radiuz tries to solve four interconnected problems with home and small-business 
networking.

First, security isn't tight enough: most home users leave encryption off because it's 
annoying to manage.

Second, even users who want to share their network connection are slightly leery of 
letting anonymous folks onboard. The development of [2] NoCatAuth and [3] 
LessNetworks's adaptation of that software are both attempts to provide 
accountability--in the former case, through a click-through terms of service; and 
adding user accounts in the latter case, although the accounts are free.

Third, WPA-Personal uses a static key for all users, making it possible for one user 
with a WPA key to sniff the traffic of any other user. Distributing a WPA-Personal key 
to "protect" a network doesn't help protect it in that way. (A WPA key that's kept 
private among a home or workgroup does, however.)

Fourth, WPA-Enterprise is beyond affordable for most smaller businesses, although 
products like Interlink Network's [4] LucidLink and Wireless Security Corporation's 
[5] Wireless Security Guard are steps in that direction.

John Leibovitz is one of the founders of Radiuz, and we spoke recently about the 
organization's goals. Leibovitz describes Radiuz as a "cross between Wi-Fi and 
Friendster in a very kind of loose way." He and his co-founder Stephen Robinson want 
to build a community of registered users first and then see how to connect them. "The 
goal is really to build up that network, and to think creatively beyond that about how 
to make that economically sustaining," he said. Authentication will always remain 
free, however.

People who want to join the Radiuz network sign up and receive information on how to 
configure their access point to use Radiuz's servers. Users who want access to Radiuz 
authenticated networks need to sign up out of band: you can't connect to the free 
network you need credentials. When you sign up, you have to confirm via an email 
message to ensure that you have at least some valid footprint on the Internet that's 
trackable for a moment.

Leibovitz said that the time was right to launch Radiuz because native supplicants 
that support PEAP are available for all major platforms, including Linux ([6] Open1x), 
Mac OS X (version 10.3 in Internet Connect), and Windows XP. (A [7] Windows 2000 WPA 
client is free from Wireless Security Corporation.) "Any time you have installable 
clients, you impose costs and configuration issues on a user," he noted.

The operators of access points will have the ability to add and remove users who can 
access their particular network via Web site. The general idea is that all Radiuz 
users would be able to access all Radiuz networks, but Leibovitz said they're 
providing user restriction as an option.

We discussed some of the current limitations to Radiuz's system that might cause users 
with less technical expertise to have some pause before switching their access point 
over. Because Radiuz requires a live Internet connection for users to authenticate, a 
loss of service at the access point's source--a DSL line going down--or anywhere 
between the user and Radiuz would disable all Wi-Fi access to the network. A user 
would have to connect via a wired port and turn off RADIUS authentication to regain 
access.

Wireless Security Corporation avoids this problem by having their own client which 
manages the distribution of a back-end WPA key, and supplying a server that can run 
locally to handle failover to provide continuous protected access during an Internet 
disruption.

A secondary problem is that even with each local Wi-Fi user having a unique key and 
thus protected from other users, the Ethernet segment of the network, even just 
linking the access point to a broadband modem, allows network sniffing. A feature 
available in newer Linksys firmware allows you to turn off the LAN segment for Wi-Fi 
users: they can only "see" and "hear" the Internet feed on the WAN.

Radiuz represents part of an interesting trend towards increased options for WPA 
authentication. It's worth watching how this develops for both free and fee networks, 
and for home and business networks. An IS

Re: [nycwireless] Help installing and configuring SMC card for Red Hat 8!

[Jon Baer]

Not sure what kind of AP you have or the driver, but Id highly recommend 
this book to help you + anyone else out:

http://www.linuxunwired.com

A few commands to maybe help you get going (much better to learn 
without RedHat GUI):

# iwconfig eth0 essid "MY ACCESS POINT" enc s:MYWEPKEY mode managed
# dhclient eth0

You have to make sure the drivers are loaded first (lsmod), if you insert 
the card + here the 2 beeps of joy then you should be good.  Typing "iwconfig" by 
itself will show you your interfaces.

- Jon

On Tue, Jun 15, 2004 at 05:44:33PM -0700, Rudy Milanes wrote:
> Hi guys, I'm trying to install a SMC card model
> SMC2635W.  I downloaded the driver for it and
> installed but I have no experience with Red Hat and
> wireless.
> 
-- 
pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Re: [Wi-Fi Net News] Community Wireless Summit Announced

[Jon Baer]

> By Glenn Fleishman
> Special to Wi-Fi Networking News
> Permanently archived item 
> 
> [1] The University of Illinois at Urbana-Champaign will host the 2004 National 
> Summit for Community Wireless Aug. 20-22: The event is organized by CUWiN (C-U 
> Community Wireless Network) which is working on an open-source mesh project, and 
> Prairienet, with the help of other groups and individuals. Their goal is 100 
> attendees from across the U.S., and they're attempting to raise funds for travel 
> stipends for groups that would otherwise be unable to afford to send a 
> representative. 
> 
> The mission is statement is that the conference will focus on grassroots action, 
> impacting national regulations and policies, and building a coalition of local 
> groups, researchers, policy leaders, decision-makers, and community activists.
> 
> The cost is low: $30 for students and low-income; $75 for all others. They're 
> encouraging press to attend, as well.
> 
> URLs referenced:
> [1] 

-- 
pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Expect 802.11 to Double Speed with MIMO Technology

[Jon Baer]

Not just that I just read about TI's announcement for "DSL Video Technology" aka 
Uni-DSL (UDSL) for 200Mbps, 
does anyone know more info about it?  The article of course states the US will lag 
behind in this technology 
first ...

- Jon

On Tue, Jun 15, 2004 at 02:33:49PM -0400, [EMAIL PROTECTED] wrote:
> 
> Expect 802.11 to Double Speed with MIMO Technology
> 

-- 
pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] wrt54g -> $59 @ staples

[Jon Baer]

just thought id pass along a deal ...
staples has the wrt54 for $79 - $10 in store - $10 rebate ...
ive had it running w/ sveasoft firmware for a few weeks now w/ 
snort/kismet_drone and cross compiled some apps for mips, its pretty 
impressive stuff ... is anyone else playing around w/ it?

- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Airport Express...Pretty Cool Form Factor...

[Jon Baer]

I wonder if it beats out the Asus as the actual smallest ...
http://usa.asus.com/products/communication/wireless/wl-330/overview.HTM
I think they run ~$50.
- Jon
Michael Stearne wrote:
Apple just released Airport Express 
(http://www.apple.com/airportexpress/).  The sharing of music is cool 
but what is also very cool is the small size of it.  If generic versions 
were about $40 this could potentially be a great way to spread a network 
with WDS.

Michael
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] NYT - "Where Entrepreneurs Go and the InternetIs Free"

[Jon Baer]

[EMAIL PROTECTED] wrote:
How so?
I could be wrong but wasn't the deal re: vonage + minnesota and other 
states pushing the tax on voip.  (Havent been following up on it) ...

I can't see J&R/CompUSA/Staples promoting a FREE service.
I dont see it either but just sitting around there on a weekday/weekend 
+ poking ur ear into the questions people ask on the 2nd floor tends to 
be pretty interesting ...

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] NYT - "Where Entrepreneurs Go and the Internet Is Free"

[Jon Baer]

Jacob Farkas wrote:
As for what can be 'next' for NYCwireless? The logical successor to the 
building of a free network infrastructure would be free content. The 
Internet as a commercial entity is half content and half ads. Try 
getting useful information, free e-mail, etc. without encountering heavy 
advertising. I support the rights of website operators to earn money, 
but I decry the diminishing number of quality free useful information.
Its still a shame that doing anything w/ voice will subject you to 
regulation now, that would have been a big push ...

I still think education (either free or extremely low cost) is the next 
push, as well as better relationships with retailers in the city, for 
example just having more info/flyer/whatever @ counters in 
J&R/CompUSA/Staples, etc on a guide to offering free/sharing nodes would 
help get to the root of purchases for APs, @ least getting the 
nycwireless idea out there to those who are diving into WiFi.

I also think the SafeMail was a big push in the right direction.
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Hijacking demo?

[Jon Baer]

Is anyone interested in a DOS/hijacking demo for next meeting?
Its a rather short, slideshow/presentation/interactive demo, etc ... 
using airjack/file2air,w/ laptop/pda.

I read the Wired article on XP today 
(http://www.wired.com/news/technology/0,1282,63705,00.html?tw=wn_tophead_1)

Pretty interesting how XP won't tell you *what* AP your connecting to 
but yet users will find it frustrating that they cant connect and leave 
it up to the OS to blame.  Kinda reminds me of when exploits go bad and 
users crashing would think rebooting would solve the problem.

- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] WiFi Planet (Baltimore) - Anyone going?

[Jon Baer]

Is anyone else going to WiFi Planet next week down in Baltimore?
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Fwd: Re: LinkSys WRT54G administration page availble to WAN]

[Jon Baer]

Just some more FYI below for those who have it (or planning to buy) ...
- Jon
 Original Message 
Subject: Re: LinkSys WRT54G administration page availble to WAN
Date: Tue, 1 Jun 2004 08:28:30 -0500
From: Matthew Gillespie <[EMAIL PROTECTED]>
To: Alan W. Rateliff, II <[EMAIL PROTECTED]>
CC: <[EMAIL PROTECTED]>
References: <[EMAIL PROTECTED]>
Alan,
 I have personally contacted Linksys in regards to this problem (it appears
that a glitch in WRT54G and in BEFSR41v3 cause this problem). Both pieces of
equipment were running current firmware (I don't have my notes with me at
the moment, but the firmware was current). And in both instances remote
admin was available via port 80 on the WAN side.
 Initially I spoke with an outsourced group of individuals that recommended
I forward port 80 inquiries to a null ip. This DOES work, however is very
sloppy. Later I asked for the source code to BEFSR41v3, to modify the bug
myself but was denied as it is propietary.
 After repeated problems with remote admin STAYING on (keep in mind, it was
disabled, along with various other settings) I again contacted linksys where
a friendly individual informed me, "If you continue to have the problem you
could just buy a new router".
 All of this is documented in emails I have sent to Linksys. I have spoken
to Jason Hardy throughout April (Linksys Product Support Case#: 2423404 and
RE: Linksys Product Support Case#: 242340) however the issue has yet to be
resolved.
 So I'd suggest forwarding port 80 inquries to a null ip in the meantime,
good work Linksys.
- Original Message -
From: "Alan W. Rateliff, II" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, May 31, 2004 11:51 AM
Subject: LinkSys WRT54G administration page availble to WAN

Manufacturer: LinkSys (a division of Cisco)
Product: Wireless-G Broadband Router
Model: WRT54G
Product Page:
http://www.linksys.com/products/product.asp?grid=33&scid=35&prid=601
Firmware tested: v2.02.7
In a recent client installation I discovered that even if the remote
administration function is turned off, the WRT54G provides the
administration web page to ports 80 and 443 on the WAN.  The implications
are obvious: out of the box the unit gives full access to its
administration
from the WAN using the default or, if the user even bothered to change it,
an easily guessed password.
I reported this to LinkSys (along with a number of other non-security
related issues) on April 28.  I received no reponse addressing this, and
no
updated firmware has yet appeared on their firmware page
http://www.linksys.com/download/firmware.asp?fwid=201
To work around this, you can use the port forwarding (irritatingly renamed
to Games and whatever) to send ports 80 and 443 to non-existant hosts.
Note
that forwarding the ports to any hosts -- inluding listening ones if you
are
actually running servers -- will override the default behavior.
On a personal note, there are a number of reasons for which I am
thoroughly
disappointed with LinkSys since the acquisition by Cisco.  For the sake of
what was once a rock-solid product and great brand name, I hope things
change soon.
--
   Alan W. Rateliff, II:   RATELIFF.NET
 Independent Technology Consultant :[EMAIL PROTECTED]
  (Office) 850/350-0260:  (Mobile) 850/559-0100
-
[System Administration][IT Consulting][Computer Sales/Repair]




--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Fwd: LinkSys WRT54G administration page availble to WAN]

[Jon Baer]

 Original Message 
Subject: LinkSys WRT54G administration page availble to WAN
Date: Mon, 31 May 2004 12:51:41 -0400
From: Alan W. Rateliff, II <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Manufacturer: LinkSys (a division of Cisco)
Product: Wireless-G Broadband Router
Model: WRT54G
Product Page:
http://www.linksys.com/products/product.asp?grid=33&scid=35&prid=601
Firmware tested: v2.02.7
In a recent client installation I discovered that even if the remote
administration function is turned off, the WRT54G provides the
administration web page to ports 80 and 443 on the WAN.  The implications
are obvious: out of the box the unit gives full access to its administration
from the WAN using the default or, if the user even bothered to change it,
an easily guessed password.
I reported this to LinkSys (along with a number of other non-security
related issues) on April 28.  I received no reponse addressing this, and no
updated firmware has yet appeared on their firmware page
http://www.linksys.com/download/firmware.asp?fwid=201
To work around this, you can use the port forwarding (irritatingly renamed
to Games and whatever) to send ports 80 and 443 to non-existant hosts.  Note
that forwarding the ports to any hosts -- inluding listening ones if you are
actually running servers -- will override the default behavior.
On a personal note, there are a number of reasons for which I am thoroughly
disappointed with LinkSys since the acquisition by Cisco.  For the sake of
what was once a rock-solid product and great brand name, I hope things
change soon.
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] PBS Article on WRT54G ...

[Jon Baer]

http://www.pbs.org/cringely/pulpit/pulpit20040527.html
while not new info, found this article on embedded linux pretty 
interesting ...

-snip-
One of the cheapest Linux computers you can buy brand new (not at a 
garage sale) is the Linksys WRT54G, an 802.11g wireless access point and 
router that includes a four-port 10/100 Ethernet switch and can be 
bought for as little as $69.99 according to Froogle. That's a heck of a 
deal for a little box that performs all those functions, but a look 
inside is even more amazing. There you'll find a 200 MHz MIPS processor 
and either 16 or 32 megs of DRAM and four or eight megs of flash RAM -- 
more computing power than I needed 10 years ago to run a local Internet 
Service Provider with several hundred customers. But since the operating 
system is Linux and since Linksys has respected the Linux GPL by 
publishing all the source code for anyone to download for free, the 
WRT54G is a lot more than just a wireless router. It is a disruptive 
technology.
-snip-

- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] New Linksys products from SOCALWUG meeting

[Jon Baer]

http://wireless.weblogsinc.com/entry/2375938737214683/
the NAS items look pretty interesting, im taking a guess that you can 
chain a bunch of USB drives and plug it directly into the lan (which is 
great for wireless) - does anyone know how the security on the stuff 
works?

also * Wireless repeater works in a store-and-forward mode on same channel *
- jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] TowerStream ...

[Jon Baer]

Well while Im not sure their current technology is "WiMax-based" this 
would be a non suprising place to see it making sense ...

Shouldn't they donate some of their backhaul as a nice donation to the 
group :-) :-) :-)

Has anyone had experience w/ them?
- Jon
By Glenn Fleishman
Special to Wi-Fi Networking News
Permanently archived item 
[1] Business broadband wireless firm TowerStream adds antennas to Empire 
State Building: Steve Stroh reports that TowerStream now says it has 
nearly 100 percent availability in New York City for its service 
guarantee backed broadband wireless service. TowerStream has made a name 
for itself as a T-1 or faster replacement with fast rollout. In New 
York, this is an especially appealing offering, where aging facilities 
and other factors can produce long delays for high-speed business-grade 
data lines. TowerStream is not a Wi-Fi company, as Steve notes; they're 
using technology designed for this task, but are often bringing backhaul 
to Wi-Fi hotspots.

URLs referenced:
[1] 
http://www.towerstream.com/products.asp
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Re: Knocking Out Wireless Networks with a PDA

[Jon Baer]

[EMAIL PROTECTED] wrote:
Looi's message just reiterates what we in wireless have know for
years..
The big difference is that we can tell the difference between things 
like CSMA/CA, RTS/CTS, DCF, PCF, EDCF, NAVs, CF-ACKS, etc ... to some 
implementing it or just buying for the home its alphabet soup.  I dunno 
is the bigger fear that more cheaper legacy gear in the wild will = more 
problems?  Im also skeptical (from what ive seen playing w/ 
airjack/void11) that a low powered PDA carrier sense attack will cause 
any widespread panic.  It should just be left @ "if I wanted to knock 
you off the network, i can with multiple techniques" but stop short of 
anything that reinit'ing your card can simply fix.

Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Sony WiFi LCDs ...

[Jon Baer]

http://story.news.yahoo.com/news?tmpl=story&u=/pcworld/20040521/tc_pcworld/116218
-snip-
The 802.11g standard offers high speed (up to 54 megabits per second) 
and has good range, but is also subject to interference from other 
traffic on the 2.4-GHz band that 802.11g uses--microwaves and cordless 
phones, for example. The 802.11a standard offers similar high speed 
rates and is less likely to run into interference, but its range is 
poor. Sony says in most cases the TV will choose whichever of these 
Wi-Fi technologies produces the best-quality image.
-snip-

First article Ive seen which mentions 802.11e (QoS/WiFi) ...
- Jon
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] [Fwd: DefCon 12 WarDriving Contest Registration Now Open]

[Jon Baer]

 Original Message 
Subject: [Full-Disclosure] DefCon 12 WarDriving Contest Registration Now
Open
Date: Sun, 16 May 2004 16:45:02 -0400 (EDT)
From: chris <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Registration for the DefCon 12 WarDriving Contest is now open.
For the first time ever the Def Con WarDriving contest will be divided
into two parts. A "Main Drive" that will run for the entire three days and
four "Mini-Games" that allow contestants that would like to participate
but do not want to invest the entire Con in WarDriving.
Registration takes place in the WarDriving Contest Section of the DefCon
Forums (http://forum.defcon.org/forumdisplay.php?f=42).
Registration for the DefCon 12 WarDriving Contest requires forum
registration.
For more information about the DefCon 12 WarDriving Contest (Main Drive
and/or Mini-Games) please visit the official contest page at
http://www.worldwidewardrive.org/dc12wd/DC12WD.html
The DefCon 12 WarDriving Contest is sponsored by:
FAB-Corp (www.fab-corp.com)
NetStumbler (www.netstumbler.org)
Blackthorn Systems (www.blackthornsystems.com)
Michigan Wireless (www.michiganwireless.org)
Good luck and have fun.
Chris
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] IDE to CF Adapter

[Jon Baer]

I have one from a Via/Pebble project that never got off the ground, if 
you are interested in just 1 let me know.  Im trying to remember where I 
got them from but drawing a blank, sorry.

- Jon

Does anyone know where I can purchase one (or more) of these  
http://www.acscontrol.com/Index_ACS.asp?Page=/Pages/Products/ 
CompactFlash/IDE_To_CF_Adapter.htm in New York City (area) without mail  
ordering them?

Thanks,
Michael
--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] China drops Wi-Fi challenge

[jon baer]

http://news.com.com/2100-7351_3-5197087.html?tag=nefd.top

-snip-
The Chinese government is expected to announce Wednesday that it is backing
down from efforts to establish its own Wi-Fi security standard, according to
sources.
Government officials had set June 1 as a deadline for gear makers to include
its Wireless Authentication and Privacy Infrastructure (WAPI) standard into
products sold in China. The specification would allow the government to
decrypt any communications by its citizens over wireless networks.
WAPI is not compatible with current Wi-Fi security standards. Enforcing the
inclusion of WAPI into gear would have limited the number of manufacturers
that could sell products in the Asian country, setting the stage for a
high-profile technology battle between China and the United States.
-snip-

- jon

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Fw: [Full-Disclosure] NetStumbler 0.4.0 Released (fwd)

[jon baer]

- Original Message -
From: "chris" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, April 21, 2004 8:05 AM
Subject: [Full-Disclosure] NetStumbler 0.4.0 Released (fwd)


> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> The new versions of NetStumbler and MiniStumbler have been released.  They
> are available for
> download at http://www.stumbler.net
>
> Thank you Marius for your hard work on NetStumbler and MiniStumbler.
>
> Chris
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.2.3 (GNU/Linux)
>
> iD8DBQFAhmOnOyWtx0MtxawRApp4AJ9P4iXMBj5/u2zfHbeL+Y0YQNgmzgCaAsVE
> wRkonoyBZZg6Yb6tvS+2sk8=
> =NFlC
> -END PGP SIGNATURE-
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Status of WDS?

[jon baer]

The bridging/repeating among using different vendors was a little sketchy
(with the same vendor it seems fine) and the encryption was lax so Im just
trying to get updated on how/where it stands in the community/specs.

- Jon

- Original Message -
From: "Al Grantier" <[EMAIL PROTECTED]>
To: "'jon baer'" <[EMAIL PROTECTED]>
Sent: Monday, April 19, 2004 3:31 PM
Subject: RE: [nycwireless] Status of WDS?


> Jon be a little more specific.  We currently use WDS in upstate but also
> use backhauls

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Status of WDS?

[jon baer]

does anyone know what the current status is of WDS is (in terms of
interoperatability)?

- jon

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] More from the "Network Dectection" department ...

[jon baer]

http://hotspotter.scottcressman.com/
http://hotspotter.scottcressman.com/image/system.jpg

I guess thats the smallest you can get w/ it being informative @ the same
time ...

- Jon

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Fw: Backdoor in X-Micro WLAN 11b Broadband Router

[jon baer]

This is a little nuts if you think about it ... I wonder if other APs are
backdoored like this (could this be other countries attempts @ espionage?)
.. :-\

- Jon

- Original Message -
From: "Mariano Firpo" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 16, 2004 10:35 AM
Subject: Re: Backdoor in X-Micro WLAN 11b Broadband Router


> In-Reply-To: <[EMAIL PROTECTED]>
>
> X-Micro Support Team:
>
> 1-   The backdoor has been solved with the latest Firmware 1.601.
>
> 2-   Please do not upgrade the Firmware with unofficial releases
because this will void the warranty.
>
> 3-   Thanks for posting this security issue.
>
> Warm Regards,
>
> X-Micro Support Dep.
> Tel: 886-2-8226-2727
> Fax: 886-2-8226-2828
> ==
> X-Micro Technology Corp.
> Plug & Fly
>
> Web site: http://www.x-micro.com
> Email: [EMAIL PROTECTED]
> Address: 13F-4, No.738, Chung Cheng Road,
> Chung Ho City, Taipei Hsien, Taiwan 235, R.O.C
>
> 
>
> >Received: (qmail 18194 invoked from network); 10 Apr 2004 19:22:18 -
> >Received: from outgoing2.securityfocus.com (205.206.231.26)
> >  by mail.securityfocus.com with SMTP; 10 Apr 2004 19:22:18 -
> >Received: from lists2.securityfocus.com (lists2.securityfocus.com
[205.206.231.20])
> > by outgoing2.securityfocus.com (Postfix) with QMQP
> > id B5BF58FD7D; Sat, 10 Apr 2004 07:07:30 -0600 (MDT)
> >Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm
> >Precedence: bulk
> >List-Id: 
> >List-Post: 
> >List-Help: 
> >List-Unsubscribe: 
> >List-Subscribe: 
> >Delivered-To: mailing list [EMAIL PROTECTED]
> >Delivered-To: moderator for [EMAIL PROTECTED]
> >Received: (qmail 15203 invoked from network); 10 Apr 2004 09:53:09 -
> >X-Injected-Via-Gmane: http://gmane.org/
> >To: [EMAIL PROTECTED]
> >From: RISKO Gergely <[EMAIL PROTECTED]>
> >Subject: Backdoor in X-Micro WLAN 11b Broadband Router
> >Date: Sat, 10 Apr 2004 17:57:28 +0200
> >Lines: 44
> >Message-ID: <[EMAIL PROTECTED]>
> >Mime-Version: 1.0
> >Content-Type: text/plain; charset=us-ascii
> >X-Complaints-To: [EMAIL PROTECTED]
> >X-Gmane-NNTP-Posting-Host: jenson.atom.hu
> >User-Agent: Gnus/5.1002 (Gnus v5.10.2) Emacs/21.2 (gnu/linux)
> >Cancel-Lock: sha1:4AtmZs1UPAU7ehxwci26psrCyRM=
> >Sender: news <[EMAIL PROTECTED]>
> >
> >Backdoor in the X-Micro WLAN 11b Broadband Router
> >
> >FCC ID: RAFXWL-11BRRG
> >Firmware Version: 1.2.2, 1.2.2.3 (probably others too)
> >Remote: yes, easily expoitable
> >Type: administration password, which always works
> >
> >The following username and password works in every case, even if you
> >set an other password on the web interface:
> >Username: super
> >Password: super
> >
> >By default the builtin webserver is listening on all network
> >interfaces (if connected to the internet, then it is accessible from
> >the internet too). Using the webinterface one can install new
> >firmware, download the old, view your password, etc., so he can:
> > - make your board totally unusable, beyond repair
> > - install viruses, trojans, sniffers, etc. in your router
> > - get your password for your provider and maybe for your emails.
> >
> >Possible fixes:
> >1. Set up portforwarding, and forward port 80, this way from the WAN
> >   interface an attack is impossible. But be aware, that anyone in your
> >   local LAN (possible over a wireless connection) can login to your
> >   router.
> >
> >2. Upload a fixed firmware. I've made an unofficial (but fixed)
> >   one. You can download it from
> >   http://xmicro.risko.hu/own-firmwares/xm-11brrg-0.1/xm-11brrg-0.1.bin
> >   This firmware is unofficial. NO WARRANTY.
> >   This firmware also fix other bugs, for a list see:
> >   http://xmicro.risko.hu/own-firmwares/xm-11brrg-0.1/Changes
> >   The tool, which used to create the image also released under the
> >   GPL: http://xmicro.risko.hu/US8181-20040410.tar.gz
> >   DOCS: http://xmicro.risko.hu/
> >
> >I don't know that the folks at X-Micro (who built this so nasty
> >backdoor in this device) when will reply, I bcc'ed this mail to them.
> >I've chosen not contact with them earlier, because they violated the
> >GPL seriously, the open source community tried to communicate with
> >them, but without any positive results. And I'm sure that they know
> >about this remote backdoor.
> >
> >Gergely Risko
> >
> >
>

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] wi-fi nic with input for antenna VS built-in nic+antenna

[jon baer]

This really depends on how you intend to use your laptop, if you are doing
to find yourself alot in places where signal coverage might be inadequate
(random areas) then you are better off getting something that will help you
(external antenna) vs. places where there will almost always be decent
coverage (starbucks, your house, cafes, airports, etc) ... however I notice
the prices for laptops w/ builtin wifi have the included marketing costs
with them :-)  So it might also be cheaper to get a Seneo card w/ ant + 2nd
generation laptop.

- Jon

- Original Message -
From: "Rodolfo Nunez" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 16, 2004 11:00 AM
Subject: [nycwireless] wi-fi nic with input for antenna VS built-in
nic+antenna


> Hi,
> I am about to buy a new laptop and I am wondering if I should go with a
> built-in wi-fi card (the antenna is built-in as well) OR a pcmcia wi-fi
> card?
> What will give me better recepction? I've sen some cards that you can
attach
> an antenna to them, Should I but it just in case?

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Antennas Boost Wireless Signal for Home Users

[jon baer]

Excellent explaination, thank you ... btw I didn't mean "move" in the
physical sense either :-)  That is the last thing I need on my laptop ...
moving mini yagis along my display to make me look suave ...

- Original Message -
From: <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, April 15, 2004 4:53 PM
Subject: Re: [nycwireless] Antennas Boost Wireless Signal for Home Users


>
> The antennas don't move they employ an antenna selection algorithm. The
> receiver is equipped with two antennas:
> antenna A and antenna B. During signal detection the receiver switches
back and


--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] Antennas Boost Wireless Signal for Home Users

[jon baer]

> cans, users can increase signals from three to 20 times.  Users can also
> expect to soon see "smart" antennas that use software to aim and focus
> signals. (Source: New York Times)

I read somewhere that this is what is happening (or going to happen) to the
new Thinkpads and Centrino based laptops ... cards w/ multiple moving
antennas that adjust to SNR around them ...

- Jon

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] So has anyone been "hacked" yet? Bad experiences?

[jon baer]

Its been a while since the great boom of 802.11b eh? :-)

Was just wondering if anyone has had any *bad* experiences with it (either
from the client side or AP side of things) ... is everyone still using it as
much or more than what they have been?  Everyone using -g- equipment?

- Jon

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Boingo/Linksys Hotspot announcement

[jon baer]

Boingo Wireless and Linksys announced a joint hotspot in a box program which
will make commercial WiFi hotspot business opportunities available to small
businesses such as coffee shops, restaurants, doctor's offices, gas
stations, independent hotels, retail outlets, and office lobbies where high
speed wireless Internet access is available. The Hot Spot in a Box feature
is available on the Linksys Wireless-G VPN Broadband Router (WRV54G), the
company's small business WiFi router solution. Current Linksys WRV54G
customers may also upgrade their router with the Boingo Hot Spot in a Box
feature at no additional charge by downloading new firmware from the Linksys
website.

-snip-
Every time a commercial user connects to the hot spot, the hot spot owner
would receive a connect fee of currently either $4 for a daily user or $1
for a Boingo Roaming System subscriber. And if a new subscriber signs up for
a monthly hot spot subscription for the first time, the venue owner would
currently earn a $20 "bounty". All related marketing, billing, 1-800
technical support and other back-office services are handled by Boingo and
its Platform Services partners. To attract users, the venue will be listed
in online hot spot directories sponsored by Boingo and Intel Corp. and the
business will receive a Boingo/Intel(R) marketing kit including table tents,
posters, Centrino(TM) window stickers and other materials. Both the business
owner and Wi-Fi users have access to Boingo's customer support.
-snip-
http://www.unstrung.com/document.asp?doc_id=50962

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] RSN (Robust Secure Network)

[jon baer]

someone emailed about what RSN was, so i thought id post this tidbit:

- Jon

*** Wi-Fi Protected Access ***

The first task is to plug security holes in legacy devices, typically
through firmware or driver upgrades. The Wi-Fi Alliance has taken a subset
of the draft 802.11i standard, calling it WPA, and now certifies devices
that meet the requirements.

WPA uses Temporal Key Integrity Protocol (TKIP) as the protocol and
algorithm to improve security of keys used with WEP. It changes the way keys
are derived and rotates keys more often for security. It also adds a
message-integrity-check function to prevent packet forgeries.

While WPA goes a long way toward addressing the shortcomings of WEP, not all
users will be able to take advantage of it. That's because WPA might not be
backward-compatible with some legacy devices and operating systems.
Moreover, not all users can share the same security infrastructure. Some
users will have a PDA and lack the processing resources of a PC.

What's more, TKIP/WPA will degrade performance unless a WLAN system has
hardware that will run and accelerate the WPA protocol. For most WLANs,
there's currently a trade-off between security and performance without the
presence of hardware acceleration in the access point.

*** Robust Security Network ***

RSN uses dynamic negotiation of authentication and encryption algorithms
between access points and mobile devices. The authentication schemes
proposed in the draft standard are based on 802.1X and Extensible
Authentication Protocol (EAP). The encryption algorithm is Advanced
Encryption Standard (AES).

Dynamic negotiation of authentication and encryption algorithms lets RSN
evolve with the state of the art in security, adding algorithms to address
new threats and continuing to provide the security necessary to protect
information that WLANs carry.

Using dynamic negotiation, 802.1X, EAP and AES, RSN is significantly
stronger than WEP and WPA. However, RSN will run very poorly on legacy
devices. Only the latest devices have the hardware required to accelerate
the algorithms in clients and access points, providing the performance
expected of today's WLAN products.

WPA will improve security of legacy devices to a minimally acceptable level,
but RSN is the future of over-the-air security for 802.11.

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] The "multiple SSID" option/feature ...

[jon baer]

Has any "consumer" model implemented this yet?  Can bandwidth be allocated?
Is anyone here using this approach to half public (NOCAT/PAYPAL) / half
private (WEP/WPA/RSN/VPN) setups?


> Per SSID you can configure a different or same VLAN and a different
> authentication type.

- Jon

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] The "multiple SSID" option/feature ...

[jon baer]

Does anyone know what APs are currently carrying the feature?

>From what Ive read you can take one SSID ("public"), hook it into one VLAN
and another ("private"), and place it into another segment ... does HostAP
have the option?  I know it was something that was talked about alot but
people complained not too practical + would never be adopted but its being
done ... albeit either with multiple and same security set or very
configurable ...

- Jon

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

Re: [nycwireless] has anyone tried skype yet?

[jon baer]

ive noticed its kinda like an AIM app (just playing off the audio with a
"phone call"), trying to figure out whats different ...

it currently shows 250,000+ online @ the moment ... does that make AOL the
biggest VoIP network? :-)

- Original Message -
From: "Jeremy Levy" <[EMAIL PROTECTED]>
To: "'jon baer'" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Friday, April 09, 2004 3:43 PM
Subject: RE: [nycwireless] has anyone tried skype yet?


> I have used the windows version and it is fantastic.. Even supports
> conference calling.. I used it from NY to New Delhi.. Worked perfectly.
>

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Cisco WLAN SE alert (again)

[jon baer]

http://www.cnn.com/2004/TECH/biztech/04/09/cisco.security.ap/index.html

-snip-
The flaws affect Cisco's Wireless LAN Solution Engine, which is used for
managing wireless access points, and the company's Hosting Solution Engine
software, which is used in corporate data centers.
-snip-

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] has anyone tried skype yet?

[jon baer]

http://www.windowsfordevices.com/news/NS5852125301.html

-snip-
Skype Technologies has launched a free beta release of peer-to-peer voice
calling software for WiFi-enabled handheld devices running Microsoft's
Pocket PC software platform. PocketSkype is a "thin" version of Skype, the
company's original peer-to-peer voice-calling for Windows PCs which was
released in August 2003. Like Skype, PocketSkype can be used to make free,
unlimited, and unmetered calls anywhere in the world.
-snip-

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Fw: [WIRESEC] Release of Cisco LEAP attack tool Asleap

[jon baer]

- Original Message - 
From: "Joshua Wright" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, April 06, 2004 11:25 PM
Subject: [WIRESEC] Release of Cisco LEAP attack tool Asleap


> I've posted the source code and a partial-functionality Windows binary 
> for my LEAP attack tool Asleap at http://asleap.sourceforge.net/.
> 
> I've not had a lot of feedback from people testing, so I'm interested to 
> hear what people think.  Thanks.
> 
> -Josh
> -- 
> -Joshua Wright
> [EMAIL PROTECTED]
> http://home.jwu.edu/jwright/
> 
> pgpkey: http://home.jwu.edu/jwright/pgpkey.htm
> fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73
> 

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] DSL costs going up ...

[jon baer]

http://news.com.com/2100-1034_3-5185215.html?tag=nefd.lede

-snip-
Local phone companies advertising steep discounts for high-speed Internet
access are beginning to assess new "regulatory" fees that would effectively
increase monthly costs by 10 percent or more for some customers.
-snip-

pgp key: http://www.jonbaer.net/jonbaer.asc
fingerprint: F438 A47E C45E 8B27 F68C 1F9B 41DB DB8B 9A0C AF47

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Fw: Automated wireless client penetration tool "hotspotter" released.

[jon baer]

- Original Message - 
From: "Max Moser" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, April 04, 2004 7:25 PM
Subject: Automated wireless client penetration tool "hotspotter" released.


> I would like to announce the availability of a proof of concept tool 
> release. Hotspotter automates a method of penetration against wireless 
> clients, independent of the encryption mechanism used. Get it at 
> http://www.remote-exploit.org now.
> 
> Feel free to provide feedback, below you will find some further 
> information copied from the README file.
> 
> Greetings
> 
> Max Moser
> 
> 
> Background:
> ---
> During a wireless assessment for a customer some time ago, I discovered 
> a
> strange characteristic of the Microsoft Windows XP wireless client. It 
> was
> possible to bring the client from a secure EAP/TLS network to an 
> insecure one
> without any warnings from the operating system.  I discovered this was 
> due to
> the configuration of multiple wireless profiles. One profile was 
> established
> for the EAP/TLS network, and a second for the "ANY" network, using an 
> empty
> network name (SSID).
> 
> To evaluate this configuration, I established my own access point using 
> the
> same SSID as the EAP/TLS network, without the privacy bit set (no 
> encryption).
> Due to the configuration of the Windows XP client, I was able to force 
> the
> client to switch to my network with a single deauthenticate frame; at 
> which
> point the client reconnected to my "rogue" access point. The victim 
> station did
> not receive a warning from the operating system to indicate they left 
> their
> production network, only a small indicator for temporary wireless 
> signal.
> 
> With this attack, I was able to force a client to leave their secure 
> wireless
> network and reconnect to my rogue network, albeit at a loss of network
> connectivity.  This allowed me to evaluate the host-based security of 
> the
> victim host, without the protection of the EAP/TLS network.
> 
> This behaviour seems to be fixed in Windows XP Service Pack 1.  I was 
> unable to
> locate any documentation in the Microsoft Knowledge Base that indicated 
> the
> resolution of this flaw, but there is a remaining vulnerability that 
> can also
> be exploited based configured wireless profiles.
> 
> A Windows XP client will probe for all the preferred network names 
> listed in
> the wireless client configuration during startup, powersave-wakeup and 
> when the
> driver reports signal loss for the current network name.  Many coporate
> wireless users configure Windows XP with a business profile (secure 
> network
> profile) and several other network names including commercial hotspots 
> and home
> networks (insecure network profiles).  Due to this configuration, it is
> possible to force a client to disclose the list of configured profiles, 
> and
> then establish a connection to a rogue network using one of the 
> preferred
> network names.  Depending on the configuration of the wireless client, 
> the
> client will display a bubble message indicating it has joined a 
> different
> wireless network name.
> 
> Once the associates to the rogue network, it is possible to interact 
> with the
> client directly.  This may include port scanning the victim, exploiting
> Windows-based vulnerabilities or simulating an otherwise "real" network 
> using
> faked services and intercepted DNS queries.
> 
> Note that the Apple OS X client exhibits similar behaviour, although it 
> has not
> been thoroughly tested at this time.
> 
> 
> Automated penetration using Hotspotter
> --
> Hotspotter was written to exploit this weakness in the Windows XP Wlan 
> client
> system.  Hotspotter passively monitors the network for probe request 
> frames to
> identify the preferred networks of Windows XP clients, and will compare 
> it to a
> supplied list of common hotspot network names.  If the probed network 
> name
> matches a common hotspot name, Hotspotter will act as an access point 
> to allow
> the client to authenticate and associate.  Once associated, Hotspotter 
> can be
> configured to run a command, possibly a script to kick off a DHCP 
> daemon and
> other scanning against the new victim.
> 
> 

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/

[nycwireless] Fw: Pikachu -Turn on WEP !

[jon baer]

- Original Message -
From: "Himanshu Singh" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, April 01, 2004 5:56 AM
Subject: Pikachu -Turn on WEP !


>
>
> Hi,
>
> I have just released a little toy program called Pikachu to sniff JPEG
images from wireless/wired ethernet networks.
>
> Pikachu can be used to  sniff JPEG images from wireless/wired Ethernet
networks. This will help you give a general idea of traffic flowing through
your network.
>
> Run it on your local wireless networks to check out the security
implemented by your WISP. It will give you an idea of how secure your
wireless network is.
>
> Pikachu will not be able to sniff images from secure networks traffic, i.e
SSL, or over VPN.However, most people do not enable any kind of security on
there network. They will not use any kind of VPN, and will not turn on WEP
on there APs.
>
> Pikachu has arrived people. Turn on WEP !
>
> Features yet to be implemented (if i get the time) :
>
> 1. GUI
> 2. Decode GIF
> 3. Sniff URL
> 4. Sniff incoming and outgoing mail
>
> Pikachu is a free program.You can download it from here:
>
> http://ntkernelhacker.tripod.com/wireless/Pikachu.html
>

--
NYCwireless - http://www.nycwireless.net/
Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/
Archives: http://lists.nycwireless.net/pipermail/nycwireless/