Wireless anonymity
 

I did a search and found nothing substantial so here goes: How anonymous am i on my wireless computer? How traceable am i on a p2p network? I should mention that i only access from coffeeshop hotspots. I guess what i'm asking is there some sort of viable means of identifying my computer and by extension me other than tracing an i.p. and a service provider and an account name.

Also along the same lines: When registering my computer i was asked to put in my name and did so thinking nothing of it. It turns out that the name i entered is now appears in the directory on the path "C:\Documents and Settings\MYNAMEHERE. As a reasonably paranoid person this is something i do not want. Unfortunately, since it is apparently a system file i can't change it simply through the right-click rename. Is there any way to alter the filename without reinstalling?

I cant really think of a way they could trace back the different IPs at the various hotspots unless the hotspot was keeping a log of what MAC addresses were using what IP at what time (which wouldnt be much use, anyways), or, if it is a pay spot, keeping logs of who had what IP at what time.

So really, theres probably not much way. At least not that I can think of.

To change the directory path, you will need to create a new profile and start using that profile for surfing. The problem with moving to a new profile is that your personalized settings aren't in the new profile, and some software may need to be reinstalled under the new profile. Other people may have an easier way of moving settings from profile to profile, but I only know about redoing everything manually. (for more detailed instructions stating what OS you are using would help).

As sailor said, unless they track you by your MAC address, you are probably safe.

Thanks for the replies.

I already made the new profile. I just dragged and dropped everything past my name in the directory into the new profile. I've only had to reinstall one program so far. Seems to be working ok. I can't believe i forgot to mention my OS, that's like forgetting to carry the one. For the record it's windows xp pro.

edit: The only place i know of where the wifi isn't free is THE place to go if you're in high school and from the suburbs. Consequently i choose to never go anywhere near there. All the coffeeshops in my immediate area are free.

Well, If it was a pay spot then the owners might have some information on you(ie credit card info), but you can be traced by mac addess when you surf the net. More and more ISPs are keeping their access logs for long periods of time. Be careful.

The biggest threat to your anonymity is the fact that the APs are probably set up to log the MAC addresses of computers that connect. Now, while they may not be able to precisely figure out who you are from that, your MAC address will tell "the man" some information:

What brand of network card you use. If they do decide to run a sting operation against you, they could always set up a triangulation network and wait for you to show up and your MAC address to appear, and then verify that it's you using it.

Of course, that would probably have the pre-requisite of you doing something highly illegal. If your IP address did get busted for P2P sharing, the worst that would probably happen is life would get bad for the coffee shop owner and he'd shut down the AP, or at least make people pay to use it.

This thread has an interesting mixture of some valid facts, and some FUD (Fear, Uncertainty, Doubt).

Having recently architected a global guest wireless networking solution, I can tell you that security and auditability are major concerns, for enterprise or commercial deployments. In these circumstances, the hotspot likely has a HTTP redirect that presents you with a welcome splash page, with a link or display of the terms and conditions of use. There is likely also a legal disclaimer. By clicking on the <OK> button, you are effectively accepting those conditions and proceeding on that basis. In "pay to play" hotspots, you will either enter a credit card number, or perhaps a UserID if you already have an account.

Commercial/enterprise hotspots will likely maintain a log of assigned IP addresses. By definition, these IP addresses will probably be associated with a userID, account or guest name. No one will maintain a list of MAC addresses, unless by default this information is captured. It's just too much hassle and not really worth that much as they can be spoofed in anycase.

"Free" hotspots will probably log very little or no information at all. You people have to remember that everything has a cost associated with it. Even configuring an Access Point takes some time and, as the old saying goes, "time means money". Why would a hotspot provider waste time and effort in setting up complex and robust logging and security settings for something they're giving away for free? It's most likely a "take it or leave it model". You assume the risks, they provide the amenity.

Unless you are sending threatening emails to the Whitehouse, sharing information on anthrax or dirty bombs (simply writing those words has probably marked this post as "interesting" by NSA Echelon freaks anyway...) or are sending/receiving emails to Osama, then no one is going to setup a "sting" to catch you. People have better things to do. And there are plenty of easier to catchfile-sharers out there.

My final advice? Just don't do anything illegal. That's one sure fire way of not getting caught...


Mr Mephisto

Thanks for the info fellas