[OpenWireless Tech] Open Wireless encryption

Todd Freeman todd at chiwifi.net
Tue Aug 13 10:12:45 PDT 2013 

I think that is a very good point to bring up, first, we need to be a lot more clear on what people think these national security letters can ask them to do. I am fairly certain they operate very much in the same was as subpoenas normally do, in that they are requests for information, the only difference is, you cannot refuse the security letter and keep operating your business, and you cannot tell anyone why. The reasons most telcos et al comply is because they would comply with a subpoena anyway, while some pro privacy rights providers can fight it out in court. the latter option is taken away with a security letter. If you do not have the data, you do not have the data, the NSA may pressure someone to tap their lines, the specific methods I will go through next, but they cannot force you to build something for them. The reason you all should be outraged is because the way the NSA compelled providers was simple, they just let providers charge them exorbitant fees for the customer data, once the request volume became so large it was more profitable to let the nsa tap in directly and feign some procedure, it was the easiest money they ever made and allowed the telco monopolies rake in record profits despite bulk bandwidth pricing being cheaper then ever. This was not some hostile takeover by the NSA, everyone was sold out for the greed of corporations. It still stand that you cannot give them data that you don't have especially if you do not place logging options and offloading in the first place, by using hardware that does not support it, I think the problem is that not very many people on this list have access cards to the equinix facilities and thus are not as familiar with the specifics of how the backbone of the internet actually works.

----- Original Message -----
From: michi1 at michaelblizek.twilightparadox.com
To: "Todd Freeman" <todd at chiwifi.net>
Cc: "Christian Huitema" <huitema at huitema.net>, "Björn Smedman" <bs at anyfi.net>, Tech at srv1.openwireless.org
Sent: Tuesday, August 13, 2013 10:23:54 AM
Subject: Re: [OpenWireless Tech] Open Wireless encryption

Hi!

On 00:25 Tue 13 Aug     , Todd Freeman wrote:
>...
> That being said there are a few things I want to point out. To start I don't think it is fair to call the setup proposed as free wifi, it's community subsidized. As far as I can tell, most participants still need to be paying for service from the traditional internet provider,

Where has he said anything anything about "free wifi"? Also, I think that your
definition of free is very narrow.

> correct me if I am wrong here, anyfi seems to be more like an open-access TOR, but with terrible security.

I do not see how anyfi compares to TOR at all. Why do you think that?

> ...
> The way we at the Chicago WiFi Project have been dealing with this is by using centralized enterprise security (openldap/radius) for the logins/connection security, logins are never tied to any hardware identifier and are obtained anonymously. On top of that we do not keep connection logs for longer then 48hrs (only to mitigate network abuse originating from inside the network) this means we are unable to comply with information requests from law agencies that take longer then 48hrs to process, for reference the DMCA allows us to take upto 7days to respond.
> ...

And what do you intend to do when you receive a national security letter?

	-Michi
-- 
programing a layer 3+4 network protocol for mesh networks
see http://michaelblizek.twilightparadox.com

More information about the Tech mailing list