On Fri, Jan 21, 2011 at 3:33 PM, Patrick Kariuki <patrick.kariuki@gmail.com> wrote:
Just noticed that a couple of hotspots in Nairobi don't offer WEP2(mostly WEP) protected access and are vulnerable to MITM attacks, and ofcourse most users are not keen to ensure that critical sites they log into use the HTTPS protocol.

*Tempted to place stickers around such hotspots reading "You do have a translucent glass on your bathroom window, don't you? then why login to critical sites without the S after the HTTP on your internet browser?"


I have heard of that term (WEP2) only today. Looks like it really never featured in my ngumabaru classes. I have read about it now though and wonder why you narrowed this down to WEP, instead of WPA/WPA2?? (I recall a post that even WPA2 is not so secure).
Every time I find a hotspot, especially the unsecured ones, I get apprehensive and never try to connect. I'd think anyone with a basic idea of security wouldn't.
Anyway, why not start something to enlighten Kenyans? The real problem is that there are so many jua kali consultants out there who install these equipments even without the understanding of the security implications.

--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
Damn!!