Courses:

Offensive Countermeasures: The Art Of Active Defense: SANSFIRE June 15-16, Blackhat USA July 27-28 & 29-30


Defensive Countermeasures: Foundations for Becoming A Devious Defender: Blackhat USA July 27-28 & 29-30


Conferences:

Check out the entire PaulDotCom crew at BsidesRI June 14-15th!



Subscribe:

Blog:
Videos:
Podcast:


PaulDotCom EspaƱol


Hack Naked TV


Hack Naked At Night


Stogie Geeks


Sponsored By:


www.coresecurity.com


www.tenablesecurity.com


www.sans.org



Follow Us On:


twitter.com/pauldotcom

PaulDotCom YouTube Channel


Global WiFi Hotspot: FON

By
Paul Asadoorian
on February 7, 2006 2:36 PM |

No, the SSID for this one is not "linksys", its a new company called FON who just got some major investment from Google & Skype.

So here's the deal, you take DD-WRT and hack it up so that they any Linksys WRT54G/GS/GL series 2-4 router running it can be part of the global hotspot network. Anyone who has an account can associate to one of the access points and gain access to the Internet. Cool huh? There are even different types of setups. You can be a Linus, a Bill, or an Alien:


A Linus is any user who shares his/her WiFi in exchange for free access throughout the Community wherever there is coverage. A Bill is a user who, instead of roaming for free, prefers to receive 50% of the fees that FON charges to Aliens. And Aliens are those users who do not share their WiFi access and therefore must pay FON a modest fee every time they connect through a Fonero access point.

I think this is a great idea, however it is severely flawed at the moment in my opinion because while they offer identification (username/password) they do not use encryption by default. It would be most excellent if they could implement this system using WPA(2) enterprise for encryption/authentication. Of course, they would then have to choose and EAP type (like PEAP or TTLS) which would be more difficult to configure and/or require a third party client. For example, you can get a free EAP-TTLS client for Windows called SecureW2, and OS X comes with an EAP-TTLS client, and is my recommendation for enterprise WPA at this time.

.com

Categories: