White hat hacker
And education is something Shipley and Peterson believe in. Shipley, 35 years old, is a security consultant who is well known in "white hat" hacker circles; Peterson, 19, is a wireless buff who wants the technology to be used with appropriate security. The men have been driving around the San Francisco Bay Area logging the networks they find as part of a research undertaking. "People don't believe they have a problem until you prove it to them," Shipley says.
When they find an unprotected network, the men only look at the technical data the network is passing around, and not the actual contents of the files or the emails being transmitted. While any number of computer programs that circulate widely in the hacker community could actually read the messages and files, doing so is a felony. Already, there are reports of sealed court suits in Silicon Valley involving wireless theft of trade secrets.
One of the men's research outings begins in a Sunnyvale parking lot, where they set up their gear. While Peterson favours a big plastic "boom" antenna, Shipley relies on a much smaller one, the sort used in everyday offices.
Two seconds after driving off, they get their first hit. A network called "tutsys" appears on the men's computer screen; a building belonging to computer-network supplier Tut Systems is located across the street. "Wow, we are already seeing stuff," says Peterson. (A Tut spokeswoman said later that network was used by engineers, and that it would quickly be making it more secure.)
Every block or so, another network name pops up on the two men's computers, which are running special monitoring software. But because all wireless networks operate on the same frequency and with the same equipment, anyone with a Windows notebook and a US$100 wireless networking card could do much the same thing. The two men see more than 40 networks in all, usually without stopping the car. One network is spotted while the men are taking a freeway off ramp. Most of the networks appear to be completely insecure.
On one network, Peterson notices that a printer is broadcasting its availability, something network printers do whenever they are turned on. He notes that had he wanted to, he could have sent the printer something to print out from his laptop computer, even while driving by.
Shipley says that when he misses a network on a quick drive-by of a company, he often finds one later prowling around the back sides of its parking lot. He says these "rogue networks," are often set up by a few employees without the knowledge of a company's computer department, typically to connect a few computers to a printer. But even the smallest network can be deadly, he says, since they give a hacker a way to bypass the sturdiest corporate firewall.
At Sun Microsystems, a network is detected right in front of the building. There is a lot of traffic, most of it coming from PCs running Microsoft's Windows. "Wow, we're really drinking from the fire hose," Shipley says.
(A Sun spokeswoman said later that any network heard that day was part of a Sun test, though she didn't know what was being tested, and added that the network was no longer operational. Shipley was skeptical, saying that if the network was a test, it was an extremely insecure one, since it appeared to have made much of Sun's larger corporate network vulnerable in the process.)
A mile or so away from Sun, the men find a small network at a building belonging to Nortel Networks, which, among other things, sells VPN software. They can spot the network from the street; when they pull into the Nortel parking lot, Peterson was able to sit in the car and surf the Web, courtesy of Nortel's network. (Nortel wouldn't comment.)
Shipley and Peterson say it isn't necessary to be close to a network to listen in. For a coming project, they plan to head for the hills above San Francisco, where they will use a special amplifier to pick up networks in downtown office buildings, many miles away. Says Peterson: "That ought to really scare people."
