RE: Telling prospective wi-fi customers they are open to hacking

["Andrew Shore" <andrew.shore () holistecs com>]

You could find a company with an open Access point then offer to do a
free scan, then show then its open. Or even blanket market to companies
in an area and offer free checks.

This way you're not telling them before hand you know they have an
issue, its just a service you offer.

Then offer to fix the problem.

?

HTH Andy

-----Original Message-----
From: Kinnell [mailto:kinnell.t () gmail com] 
Sent: 11 March 2005 14:21
To: Greg
Cc: security-basics () securityfocus com
Subject: Re: Telling prospective wi-fi customers they are open to
hacking

How about making up fliers?  I'm not sure but if you gave one to each
house on a block where you found an "open" house then it might be like
you are advertising your services to a greater base, and not
approaching just the one house.

I wouldn't however just start going up to people and show them how you
can get into their network and view their tax papers; then you would
get into that extortion realm.

just my $.02
-K


On Thu, 10 Mar 2005 19:58:40 +0000, Bennett Todd <bet () rahul net> wrote:
> You can warn them --- which is a good thing to do, recommended civic
> behavior.
>
> You can try and sell the services of security auditing and repair.
>
> Do NOT attempt to do both at the same time, or at different times to
> the same customer: the "friend, this place looks really flammable,
> you need some insurance, just so happens I sell the stuff" approach
> has gotten a bad name for some reason.
>
> Approaching people and telling them they have computer security
> vulnerabilities and offering to fix them is widely taken, both by
> potential customers and the police they call, to be a style of
> extortion.
>
> -Bennett