Tried a couple of those. OpenWRT and now Tomato (better IMO) but have no better luck with either than I did with the linksys firmware :-(.

I'll probably try other things, but it would be just jolly if it would give out the right gateway, that is the only problem I have with them / it all :-(.

As we are charged by the megabyte in Oz, securing makes financial sense.

I have enough megabytage that I could handle another bod or two, but if I end up footing a big bill because of a rude leecher I'd not be impressed.

So I secure both WiFi setups.

I sometimes let it open to do big brother on people and play play ping pong with their connections. I have fun If they want to play, let's play.
p0f (and a couple of others..) is an interesting passive monitoring tool


Just found this when reading bruce shneier news:

http://www.ex-parrot.com/~pete/upside-down-ternet.html

No, my home WiFI is encrypted, stealth SSID and full MAC validation.

My son thinks I'm a bit paranoid, but I live near some low-rent apartments/townhouses and I'd rather not have anyone leeching off my net or getting me into trouble with my ISP's TOS.

If you use WPA then there's just extra bother to hide the SSID (doesn't keep out anyone that wants in) or MAC validation (ditto). It's like adding chewing gum to hold a door that's already locked with a padlock: The chewing gum is more in the way for yourself than anyone else.

or for people who have no clue how to remove a chewing gum

Especially if applied to hair...

Sorry, complete off topic but couldn't resist...

your absolutely correct in that the encryption trumps all other means/methods of securing your wifi AP. but when WEP was your only choice, the other measures added layer of insulation to the AP. casual users were unable to get both the SSID (when hidden) and the MAC (when filtered), in order to connect.

nowadays, its really nothing more than explicit allow ACL type entries, and enforces the notion of security in layers and depth.

I don't have my own AP per se, I use Karel's.

Nah, mine's WEP. I have so many things online that I don't bother with MAC authentication. (770, Wii, work laptop, my desktop, gf's desktop, eventually the xbox/xbox360, my eeePC, peoples' devices that are over, etc.)

I also live in a 20+ storey building in downtown toronto so the sheer number of hotspots is huge. (Most are encrypted but the odds of someone singling me out to hack...)

I did scan a few networks when walking around with my 770 once and found all the machines on their network, their operating systems, etc. Didn't go so far as to look for shares.

What I *would* like to do is leave my AP open and use squidproxy/imagemagick to fuzz all their images or flip them upside down... or goatse them.

http://www.ex-parrot.com/~pete/upside-down-ternet.html

I have the feeling I've seen this link before Move your eyes a bit up a few posts

Unfortunatly, goatse is not what it used to be

http://evilscheme.org/defcon/

The good thing with open AP is that people help you discover some very mmhh how should I say.. particular websites. You get to know more your neighbours. Humm..