Sophos Researcher Suggests Password 'Free' to Spur Wi-Fi Encryption 332
An anonymous reader writes "In the wake of concerns about FireSheep sniffing credentials from people using unencrypted public WiFi hotspots, a security researcher has proposed that the problem does not just lie with big websites like Facebook, but also with those who provide free wireless internet access. Chet Wisniewski, a researcher at security firm Sophos, proposes that all free WiFi hotspots should be encrypted — with the password 'free.' ''I propose standard adoption of WPA2 and a default password of "free." Whenever you wish to connect to complimentary WiFi, you select "Courtyard Marriott" or "Starbucks" like you always have, but you are then prompted for a password. Just type "free". It's not hard. In fact, operating system vendors could even program your PC to automatically try the password "free" before prompting you for a password on the assumption that you might be selecting a free service.'"
Re:'Free' or 'free'? (Score:5, Funny)
FreeWiFi (8 characters, combines lower and upper case to make it more secure ;)
Re:WPA2 minimum passphrase length... (Score:5, Funny)
freeeeee?
I tried it (Score:2, Funny)
Watch out! I tried typed in "Free" instead of of "free" like the Sophos Dude recommends and it wiped out all my time machine backups.
Well, at least that's what happened after I hard crashed my computer in the middle of a back up. But I'm sure it was sophos to blame.
Free (Score:4, Funny)
That's amazing! I've got the same password on my luggage!
-
Re:Before everyone says that's idiotic... (Score:4, Funny)
Well, given that it takes a tool of some sort to do it in the cleartext situation, and a much more complex tool in the encrypted situation -
I'd say it's more like you used to have a door that could be opened with a crowbar, now the door's reinforced and you need a number 3 lockpick, possibly a number 4 as well.
Actually I'm still not happy. Trying to find a simple analogy to a situation where the information is thrown around in the clear but it requires some knowledge and a special tool to access it... It's like you need a screwdriver to open the already unlocked door, and now you... Hmmm. How about -
Or two people shouting in the street, except they're shouting in french.... no this one isn't going anywhere either. Damn!
Re:WPA2 minimum passphrase length... (Score:3, Funny)
freeeeee?
...dooommmmmm!!!!!!!
Re:I tried it (Score:3, Funny)
Watch out! I tried typed in "Free" instead of of "free" like the Sophos Dude recommends and it wiped out all my time machine backups.
Well, at least that's what happened after I hard crashed my computer in the middle of a back up. But I'm sure it was sophos to blame.
"Free" doesn't seem a very secure password. They should put some numbers and symbols in it.
Re:Standards conflate encryption and authenticatio (Score:4, Funny)