By the way in Westchester County there is a law that severely restricts businesses running an open wifi.(http://arstechnica.com/news.ars/post/20060421-6647.html) In the final analysis each is to his own, but it is not prudent not withstanding ones expertise.

http://www.wired.com/politics/security/commentary/securitymatters/2008/01/securitymatters_0110

If one of the most important minds in the security business is willing to go wide open, then it can’t be all that bad, can it?

I guess there’s no easy way out of this - you can have as many logins and captive portals as you like - but unless you tie these to some kind of accountable personal information belonging to the user (such as a credit card) then you can’t really have total visability of who is using the network.

Personally I’m prepared to take the risk in order to offer a ’service’ to people. Something which I think is for the greater good. Hopefully in the UK I am not too likely to be prosecuted for the use of my network by others if I have kept reasonable logs of traffic - to demonstrate it really is a ‘public access’ network.

It’s a very interesting discussion, as I personally provide a number of free public access hotspots in public places - and I also work for a company which provides pay WiFi as part of it’s product offering.

In my mind the safe thing to do is not share my wifi and not use unknown wifi - it is like hitchhiking.

Not something that the average person can do - but maybe this should be made easier by the consumer AP manufacturers? Should we have to resort to heavy firewall and Cisco knowledge to simply share some bandwith whth others, whilst still protecting ourselves and the Internet at large?

I will not use an unknown, open wifi ap because it could be an honey pot.