Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
BDFL - Memuneh
60004 posts

Uber Geek
+1 received by user: 11104

Administrator
Trusted
Geekzone
Lifetime subscriber

Reply # 744602 14-Jan-2013 15:21
Send private message

nate: 
mattwnz: Not a fan of free wifi myself, and the free provider could be potentially liable for anything that anyone does on it.


We mitigate this as much as possible by having a data limit up/down on known protocols like browsing, email etc, and rating limiting all and everything else to 0 (so pretty much unusable)


I can imagine some crazy conspiracy theorist "everyone should get everything for free" thinking "how dare this cafe offer free WiFi but limit what I can do on the Internet"...




20883 posts

Uber Geek
+1 received by user: 4094

Trusted
Subscriber

  Reply # 744933 15-Jan-2013 11:07
Send private message

I dont get why people are happy to have their stuff running over the air encrypted into some random cafe owners network, but freak out that its over the air in the clear. Surely if they cared about the stuff they would be using SSL so it would be a non issue mainly?




Richard rich.ms

 
 
 
 


Try Wrike: fast, easy, and efficient project collaboration software
602 posts

Ultimate Geek
+1 received by user: 65

Trusted

  Reply # 744961 15-Jan-2013 11:35
Send private message

richms: I dont get why people are happy to have their stuff running over the air encrypted into some random cafe owners network, but freak out that its over the air in the clear. Surely if they cared about the stuff they would be using SSL so it would be a non issue mainly?


SSL tends to be per-app (ala client setup within browser, mail-app, etc) and unless you know 100% the behavior of any app you run, there's always a risk.  Also much web stuff is still non encrypted.  So unless you have an SSL VPN, use of SSL alone (Layer 4+) is still not as elegant as knowing that your Layer 1/2 is secure.

For this reason I will use encrypted wifi where I know every other person with the encryption key is trustworthy, or I will use 3G (Unicast).  And I use Layer4+ SSL encryption on top of that.

And when I have to use (unencrypted) FTP to maintain a third party website i'm involved with, I won't be on insecure network access methods.  Because the credentials are passed to the wire in the clear, and it's nothing I can change.






6305 posts

Uber Geek
+1 received by user: 378

Moderator
Trusted
Lifetime subscriber

  Reply # 803584 22-Apr-2013 11:02
Send private message

Had this article sent to me by the same customer - comments?

Awesome
4786 posts

Uber Geek
+1 received by user: 1059

Trusted
Subscriber

  Reply # 803597 22-Apr-2013 11:15
Send private message

Could the other option to be fire up an additional SSID with WPA turned on, and have the password 'available on request' to those who want it - and others can just use the open one?

Or perhaps, is your POS capable to talking to a box that can generate a unique time limited password and then print it on the bottom of the till receipt?




Twitter: ajobbins


621 posts

Ultimate Geek
+1 received by user: 121


  Reply # 803604 22-Apr-2013 11:22
Send private message

ajobbins: Could the other option to be fire up an additional SSID with WPA turned on, and have the password 'available on request' to those who want it - and others can just use the open one?

Or perhaps, is your POS capable to talking to a box that can generate a unique time limited password and then print it on the bottom of the till receipt?


The twin SSID's is a good idea. I use Mikrotik for that and rate limit my open SSID one.

Awesome
4786 posts

Uber Geek
+1 received by user: 1059

Trusted
Subscriber

  Reply # 803631 22-Apr-2013 11:55
Send private message

Another option I like is to have a "VIP" SSID, which you could secured by both WPA2 and MAC address.

For your regulars who you know and trust, you could add their MAC addresses to the trusted list and give them the key. Then they can skip the icky captive portal (which are a pet hate of mine).

For any fussy customers like the one who has brought this up, you could offer to put them on the 'VIP' network.




Twitter: ajobbins




6305 posts

Uber Geek
+1 received by user: 378

Moderator
Trusted
Lifetime subscriber

  Reply # 803643 22-Apr-2013 12:32
Send private message

ajobbins: Or perhaps, is your POS capable to talking to a box that can generate a unique time limited password and then print it on the bottom of the till receipt?


Too hard for our staff to do, plus if someone forgets their receipt and sits down, they have to requeue to get the password.

kiwirock: The twin SSID's is a good idea. I use Mikrotik for that and rate limit my open SSID one.


This is what we have at the moment.  A staff and public SSID.

ajobbins: For any fussy customers like the one who has brought this up, you could offer to put them on the 'VIP' network.


I like this one.  Will chat to my network tech (aka fail) about implementing.

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Amazon launches the International Shopping Experience in the Amazon Shopping App
Posted 19-Apr-2018 08:38


Spark New Zealand and TVNZ to bring coverage of Rugby World Cup 2019
Posted 16-Apr-2018 06:55


How Google can seize Microsoft Office crown
Posted 14-Apr-2018 11:08


How back office transformation drives IRD efficiency
Posted 12-Apr-2018 21:15


iPod laws in a smartphone world: will we ever get copyright right?
Posted 12-Apr-2018 21:13


Lightbox service using big data and analytics to learn more about customers
Posted 9-Apr-2018 12:11


111 mobile caller location extended to iOS
Posted 6-Apr-2018 13:50


Huawei announces the HUAWEI P20 series
Posted 29-Mar-2018 11:41


Symantec Internet Security Threat Report shows increased endpoint technology risks
Posted 26-Mar-2018 18:29


Spark switches on long-range IoT network across New Zealand
Posted 26-Mar-2018 18:22


Stuff Pix enters streaming video market
Posted 21-Mar-2018 09:18


Windows no longer Microsoft’s main focus
Posted 13-Mar-2018 07:47


Why phone makers are obsessed with cameras
Posted 11-Mar-2018 12:25


New Zealand Adopts International Open Data Charter
Posted 3-Mar-2018 12:48


Shipments tumble as NZ phone upgrades slow
Posted 2-Mar-2018 11:48



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.