Wifi with no password, security ramifications?

Discussion in 'Mac Accessories' started by davidlv, Dec 23, 2013.

  1. davidlv macrumors 65816

    Joined:
    Apr 5, 2009
    Location:
    Kyoto, Japan
    #1
    I often visit a friend who has no password set for his WiFi (Apple base station).
    What are the security ramifications with that infrastructure?
    Sorry, I am really not well-informed about network-related issues.:eek:
     
  2. eladnova macrumors regular

    Joined:
    Aug 31, 2012
    #2
    Hi David

    I imagine anyone that is within radius and can pickup the WIFI signal can piggyback his network.

    Implications here are they might
    - max out his download allowance
    - be looking at offensive material which would look like it was being viewed by your friend
    - browse your friends networked devices ( depending on how they were setup)

    I'd urge him to put a decent password in place ASAP
     
  3. rctlr macrumors 6502a

    rctlr

    Joined:
    May 9, 2012
    #3
    There are no security implications, as there is no password, anyone/thing can connect to that network.

    There are risks however.

    Bandwidth is an issue - anyone connected to it can access the net for the most part, accessing anything unless you are using some sort of blocking, but even that could be circumvented.

    Shared resources (printers, NAS, Samba or CIFs shares) etc, could all also be accessed, although these usually have some user and password associated with it.

    For Windows, compromised computers for instance can connect. Some Trojans or Worms can seek out other machines on the same network and "do" things to them.
    It would be easy for a computer with virus to see any connected drives on the network and infect them, anyone then accessing those files and running them are subject to the virus.

    For Macs, the risks are less, but just as important - especially shared resources and bandwidth.
     
  4. paulrbeers macrumors 68040

    Joined:
    Dec 17, 2009
    #4
    It really depends though. If he has no password but he is blocking all but specified MAC addresses then having a password is less important. However, if he just has his wifi wide open with no mac address restrictions, then he could be in for a world of hurt.

    I'm not saying I did this but....

    A few years ago my in-law's neighbor had an open wifi and someone connected to their network, logged into their router, added a password to their wifi network and changed the admin password on them thus locking out all their wireless devices from connecting.

    Let's just say they had a new password on their wifi the next day.... I mean, errr, someone told me they added a new password the next day.....
     
  5. ElectronGuru macrumors 65816

    Joined:
    Sep 5, 2013
    Location:
    Oregon, USA
    #5
    The level of risk usually comes down to how many neighbors he has, how close they are, how clever they are, and how much time they have on their hands. Worst wifi admin experience ever was in a dense area surrounded by engineering students. Before leaving, I'd locked it down, hidden it, reduced antenna power, and taken out the DNS settings!

    Worst case scenario is direct hacking or they monitor traffic and capture info like credit cards. But the same can happen on a public wifi. Which you can't see until it's to late. Everything else is reduced network performance and leaving you with the bill for bandwidth and content responsibility.
     
  6. fig macrumors 6502a

    fig

    Joined:
    Jun 13, 2012
    Location:
    Austin, TX
    #6
    Not that I've ever done it either, but the realization that I could has occurred to me when on an unsecured network before. That's probably the best reason I can find to make sure I've got a password.
     
  7. glenthompson macrumors 68000

    glenthompson

    Joined:
    Apr 27, 2011
    Location:
    Virginia
    #7
    Makes it easier for someone to snoop your clear text transmissions. https connections are not an issue but http and other protocols can be read by someone else.
     
  8. old-wiz macrumors G3

    Joined:
    Mar 26, 2008
    Location:
    West Suburban Boston Ma
    #8
    Absolutely! Someone could use his connection to download movies and then the MPAA attorneys would track him down and he'd have to defend against a very expensive lawsuit. Very expensive. It would be hard to prove that the movies were downloaded by an outsider, and the MPAA could argue that the no-password was aiding in theft... Don't rule out any silly MPAA attorney allegations.

    Some places are trying to make it a crime to not have your wi-fi secured.
     
  9. Bear macrumors G3

    Joined:
    Jul 23, 2002
    Location:
    Sol III - Terra
    #9
    Actually that is better phrased as "There is no security."

    Anyway one can access the network. If they download/upload questionable content the friend would have a difficult time proving it wasn't his doing. There have been a coupe of case where people used an open WiFi to access child porn.
     
  10. mpantone macrumors 6502

    Joined:
    Mar 20, 2009
    #10
    Your friend has basically left his front door unlocked.

    How many people will walk through that front door? Unknown.

    How many of those people will rifle through his papers? Unknown.

    How many of those people will find a credit card number/SSN/whatever and use it to their benefit? Unknown.

    Maybe he has nothing to hide, maybe he has little to steal.

    That said, if someone does assume his identity for a brief period, he may end up having some rather unpleasant conversations with various creditors. Worse, he may end up being a bit upset by the sense of personal space violation, even if he ends up being absolved of personal financial liability.
     

Share This Page