Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Geolocation XSS Tracker Proof of Concept

CmdrTaco posted about 4 years ago | from the oh-thats-fine-i'm-sure dept.

Security 102

Jamie found a bit of a scary link this morning that demonstrates a router XSS getting your MAC address and using it to map your current location. Which I'm sure is totally no big deal for anyone.

Sorry! There are no comments related to the filter you selected.

This is old. (0)

Anonymous Coward | about 4 years ago | (#33785072)

this is old and has already been posted here.

feature (0)

Anonymous Coward | about 4 years ago | (#33785088)

It's not a bug, it's a feature.

doesn't work for me (0)

Anonymous Coward | about 4 years ago | (#33785112)

I'm in chilly Minneapolis, but the l33t hax says I'm located just near Santa Monica Blvd.

Re:doesn't work for me (1)

flaming error (1041742) | about 4 years ago | (#33785156)

TFA isn't very long. Author explains that the address it shows initially is:

"(Example: MAC of my previous router, 00-11-24-ec-72-cf, actually located at 7070 Flight Ave, Culver City CA for comparison)"

Comedy plot (1)

lullabud (679893) | about 4 years ago | (#33785494)

This would make for an awesome geek comedy plot in the vein of The Big Lebowski or so, where some stupid script kiddies think this is a reliable hack to rob somebody's house, and when they show up the people are still there, but it's not who they thought it was, it's somebody far more nefarious who thinks that the script kiddies are somebody else who perhaps owes them something and then the nefarious people force the script kiddies to do awful things anyway since they are now wrapped up in the whole thing.

Re:Comedy plot (2, Funny)

jbezorg (1263978) | about 4 years ago | (#33785658)

Dan Brown? Is that you?

Re:Comedy plot (1)

thedonger (1317951) | about 4 years ago | (#33786230)

Sounds more like Guy Ritchie.

Geoduping (4, Funny)

Colonel Sponsz (768423) | about 4 years ago | (#33785120)

Even worse, with some clever XSS you can make Slashdot post the same story twice [slashdot.org] !
Oh wait, that's just shitty editing. Sorry.

Re:Geoduping (0)

Anonymous Coward | about 4 years ago | (#33785160)

I saw this story before http://it.slashdot.org/story/10/10/04/164241/Geolocation-XSS-Tracker-Proof-of-Concept

Re:Geoduping (1)

maxwell demon (590494) | about 4 years ago | (#33785348)

Yeah, that's why they put it in the dupe section:
http://dupe.slashdot.org/story/10/10/04/164241/Geolocation-XSS-Tracker-Proof-of-Concept [slashdot.org]

Fail for my MAC (4, Informative)

AliasMarlowe (1042386) | about 4 years ago | (#33786048)

Well, I entered my router's MAC just for giggles, and it said "Sorry, didn't find anything". This router has been continuously connected with a fixed public IP address for over a year.
Then I entered my previous router's MAC, and got the same result. The previous router is in storage in the attic, but was in use with very few brief breaks for about 6 years. Also with a fixed public IP address.
Clearly, their MAC geolocation database has a teeny hole - or more likely loads of vast gaping chasms.

Re:Fail for my MAC (1)

Athanasius (306480) | about 4 years ago | (#33787028)

You didn't state if your routers have WiFi. That's pretty much what is necessary for this trick to work. My recently bought and implemented WAP does indeed have a geolocation (heck, I uploaded it to Wigle myself), but my nearly 8 year old DSL-only router doesn't, no surprise.

Re:Fail for my MAC (1)

AliasMarlowe (1042386) | about 4 years ago | (#33787988)

You didn't state if your routers have WiFi.

My oversight.
New/old routers have WiFi which is/was enabled, albeit with MAC filtering and WPA2 (the old one had WPA). The Google Streetview camera car has been through the area last year, so they should have harvested the router's MAC address. Hell, one of our cars is fairly distinctive and appears to be in one of the online images on Streetview.

Re:Fail for my MAC (3, Informative)

gad_zuki! (70830) | about 4 years ago | (#33788346)

Hmm, just guessing, but are you checking your wifi interface MAC and not your wired interface wifi? Also, hows the reception outside your home? If the streetview car can't see your SSID's then its not going to get that MAC. I'm not certain if google's sniffer was able to sniff pre-encrypted headers with the MAC if SSID broadcast is disabled.

Re:Fail for my MAC (1)

daveime (1253762) | about 4 years ago | (#33787060)

Pretty much everywhere that has Google Streetview I'd guess ...

It seems to default back to IP geolocation (despite claims that it doesn't), as it got the correct country and city, but at least 30km out on the position for my router / static IP address.

If your routers MAC hasn't been scanned, how could they possibly match it in a DB ? This is no more "scary" than the fact they scanned places in the first place, and now are happy to release that info to anyone who queries it.

OMG: H4CK4RS ON STEROIDS! (0, Funny)

Anonymous Coward | about 4 years ago | (#33785134)

In addition, did you know that websites you visit can find out your IP ADDRESS? Not only that, but your OPERATING SYSTEM and BROWSER VERSION? OMG OMG OMG!

Re:OMG: H4CK4RS ON STEROIDS! (1)

anUnhandledException (1900222) | about 4 years ago | (#33785162)

Which has nothing to do with this article.

Re:OMG: H4CK4RS ON STEROIDS! (-1, Troll)

Anonymous Coward | about 4 years ago | (#33785224)

That's why I customize my browser to send stupid user agent string such as this one:
Candy Browser (Graham Cracker OS 4_1) Version/2.7

And changed my IP address to 1.3.3.7

Re:OMG: H4CK4RS ON STEROIDS! (2, Insightful)

Anonymous Coward | about 4 years ago | (#33785274)

Good job, dumbass. Now you are uniquely identifiable.

Re:OMG: H4CK4RS ON STEROIDS! (0)

Anonymous Coward | about 4 years ago | (#33785328)

Now you are uniquely identifiable.

As the biggest dumbass on the internet.

Re:OMG: H4CK4RS ON STEROIDS! (1)

shentino (1139071) | about 4 years ago | (#33788046)

It could always be randomly generated.

Re:OMG: H4CK4RS ON STEROIDS! (2, Insightful)

oldspewey (1303305) | about 4 years ago | (#33785314)

Candy Browser (Graham Cracker OS 4_1) Version/2.7

Hell, it can't be any worse at rendering standard HTML/CSS than IE.

Re:OMG: H4CK4RS ON STEROIDS! (1)

daveime (1253762) | about 4 years ago | (#33787090)

Which standard ?

The one that is already 10 years out of date, or the new one that will be 10 years out of date before it's finalized ?

Just because it's October (0)

Anonymous Coward | about 4 years ago | (#33785188)

Look, just because it's October is no reason to start inundating us with tech horror stories. Save up some of the scary stuff for the end of the month!

Where am I ? (0)

Anonymous Coward | about 4 years ago | (#33785198)

    Very nice. I'm terrified if law enforcement agents, mafia goons, terrorists, or my ex wife ever get a hold of this kind of technology. It was so accurate it was scary. I had to zoom out several steps to see what it had identified, then I saw it was a 200 mile wide circle, that didn't even remotely contain me.

    Dear god, if the Russians get a hold of this, they'll know exactly where NOT to aim a nuke to hit me.

    Oh and no I wasn't dumb enough to log into the router and click the link that calls "fiospwn.js" from my own router. {sigh}

"from other data sources" (0)

Jack9 (11421) | about 4 years ago | (#33785214)

> 5. I then take the MAC address and send it along to Google Location Services. This is an HTTP-based service where router MAC addresses are mapped to approximate GPS coordinates from other data sources. There are NO special browser requirements, nor does a user need to be prompted. I determined this protocol by using Firefox's Location-Aware Browsing.

It's not supposed to be a geolocation IP lookup, but he fails to describe how it ISN'T. Sure looks like it to me.

Re:"from other data sources" (2, Insightful)

phantomcircuit (938963) | about 4 years ago | (#33785302)

MAC based geolocation of wireless routers is far more accurate than geolocation using ip alone.

Re:"from other data sources" (2, Interesting)

SoTuA (683507) | about 4 years ago | (#33785828)

Well, in my case the IP-based location is accurate to 5 miles, while this guy's thingy placed me 50 miles away...

Re:"from other data sources" (1)

phantomcircuit (938963) | about 4 years ago | (#33786092)

His XSS only works against the verizon FiOS router.

Re:"from other data sources" (1)

choongiri (840652) | about 4 years ago | (#33785350)

It's not geolocation in the traditional sense, because it's not mapping an IP address to a location. It's combining an XSS attack which gets your mac address from your router (from the inside of your network) with google's MAC to location lookup from their massive drive-by wifi sniffing done when the streetview car drives past your house. Typically a server can determine your IP address, and use that to map your approximate location. This can determine your MAC address and (in some cases) use that to determine your EXACT location.

Of course, you need to have:

a) not changed the default password on your router
b) have a wireless network google has sniffed

What I'm not sure about is if google's sniffing gathers the mac address of encrypted wireless, so possibly this only works on unencrypted wireless connections. I don't if a wireless router reveals its mac before or after encryption is established. Anyone?

Either way, standard security such as changing the default password on your router is sufficient to render this ineffective.

Of course, it also doesn't work if you move your router somewhere else after google sniffs it.

Re:"from other data sources" (1)

autocracy (192714) | about 4 years ago | (#33785616)

Google will certainly grab the MAC address of any broadcasting base station whether or not encryption is in use -- the SSID and MAC are not encrypted. I think the only question is whether they will grab the SSID of of a non-broadcasting station that is in use.

Re:"from other data sources" (1)

radish (98371) | about 4 years ago | (#33785972)

You forgot

c) Not moved the router since google came by

Re:"from other data sources" (1)

choongiri (840652) | about 4 years ago | (#33788010)

Of course, it also doesn't work if you move your router somewhere else after google sniffs it.

Re:"from other data sources" (1)

nzwasp (1826456) | about 4 years ago | (#33788726)

On his website he states that the google car got my wifi mac address, but the google car drove past 2 years ago and I wasnt living there so must be mapping mac to IP as i also changed my wifi router about 3 months ago. Unless the google car has come by again (which i doubt) and if it has then where are my updated streetview pics google!

Or, maybe it doesn't (5, Interesting)

loftwyr (36717) | about 4 years ago | (#33785222)

Apparently my router is currently sitting in the former main office of the major telco for my area. Which is across town from me.

And here I was thinking it was on my desk.

So, fail

Re:Or, maybe it doesn't (1)

MorderVonAllem (931645) | about 4 years ago | (#33785272)

Heh, mine says it's across the country. My home one says I'm in Hawaii...when I'm much closer to Hawaii's 9th island.

Re:Or, maybe it doesn't (4, Informative)

TooMuchToDo (882796) | about 4 years ago | (#33785602)

Mine was dead on, with the blue dot indicator actually on top of my townhouse (out of 5). Clearly, YMMV.

Re:Or, maybe it doesn't (1)

DerKlempner (249063) | about 4 years ago | (#33786764)

I think, perhaps, that you may be the exception instead of the rule. I checked my router's MAC address and the response was a town northwest of Seattle (I live in southeast Wisconsin). Chances are that many of the results will be the router's origin: the manufacturing site.

Re:Or, maybe it doesn't (1)

baptiste (256004) | about 4 years ago | (#33792398)

Yup - same here. I live in a relatively rural area and the location was exact. Like posters above said - matters not about encryption as the MAC address is sent clear (all my APs are WPA2 only)

Re:Or, maybe it doesn't (1)

wvmarle (1070040) | about 4 years ago | (#33785672)

Not sure what it is supposed to do but the map at the bottom of the page indicates some location somewhere in the US.

I'm at least 16 hours flight away (that's the shortest flight from here to north-west US; to get to the south-east it's more like 20 hours).

Appears like a total fail. And I can't be bothered to try and find the MAC address of my wifi router to enter it in that site. I just used the Firefox location thing.

Total fail for me too. Many times I've been located (by IP address) to at least the correct area. Still some 30, 40 km off though.

Re:Or, maybe it doesn't (0)

Anonymous Coward | about 4 years ago | (#33785716)

Mine gives a location over 1000 miles from me, so I guess I'm safe, for now.

Re:Or, maybe it doesn't (1)

flyingfsck (986395) | about 4 years ago | (#33785732)

My MAC is in Scottsdale AZ USA, but I am 11 hours away, almost exactly on the other side of the earth. Oh well, what the hell.

Re:Or, maybe it doesn't (0)

Anonymous Coward | about 4 years ago | (#33786022)

It's not telling you where you are, but where you need to be.

Security by obscurity. (0)

Anonymous Coward | about 4 years ago | (#33785316)

This story is a bit of a meh. I can go to those sites that tell you everything about your IP, and what the software on your machine tells about you. Got me narrowed down to the closest city.

Not found... (1)

Retron (577778) | about 4 years ago | (#33785318)

No location given when I entered my MAC on the test site. Pah.

Wow! (1)

schnikies79 (788746) | about 4 years ago | (#33785320)

I'm in southern Indiana. It says I'm in Chicago.

So close...

wildly off (1)

zufar (603583) | about 4 years ago | (#33785416)

I'm in Moscow, but my coordinates seem to be
"latitude":34.0919483
"longitude":-118.3462152
"country":"United States"
"country_code":"US"
"region":"California"
"county":"Los Angeles"
"city":"Los Angeles"
"street":"N Formosa Ave"
"street_number":"1140"
"postal_code":"90046"
"accuracy":36.0

Re:wildly off (2, Funny)

idontgno (624372) | about 4 years ago | (#33785624)

In Soviet Los Angeles...

Nope. That's it, that's all I've got. Damn. Seemed so promising.

Re:wildly off (1)

feepness (543479) | about 4 years ago | (#33786646)

In Soviet Los Angeles... Nope. That's it, that's all I've got. Damn. Seemed so promising.

Internet searches you!

Re:wildly off (1)

daveime (1253762) | about 4 years ago | (#33787126)

In Soviet Russia, button presses idiot ?

Re:wildly off (1)

wvmarle (1070040) | about 4 years ago | (#33785688)

I get the exact same location. Accessing this site from Hong Kong.

Re:wildly off (2, Informative)

wvmarle (1070040) | about 4 years ago | (#33785736)

To follow up on my own post:

I just tried the example MAC that is given on the web site, and that one failed as well. Also that same location in Los Angeles, USA.

Not sure what's going on here but as proof of concept it seems to fail pretty miserably for me. Oh and that's with the latest Firefox (v.3.6.10) available on Ubuntu 10.04.

Re:wildly off (2, Informative)

Ksevio (865461) | about 4 years ago | (#33786492)

That's the default for the page - you have to click one of the links on the page to change things.

In Firefox/Opera, click the link in "If you're on Firefox, you can test the Location Services by clicking here. " and the map will change.

Apparently my computer does not exist. (1)

Even on Slashdot FOE (1870208) | about 4 years ago | (#33785420)

It has no data on my MAC, but here I am posting away. I wonder what sort of app I'm using to post without a computer.

Re:Apparently my computer does not exist. (0)

Anonymous Coward | about 4 years ago | (#33785704)

Yea, I don't exist either!

Dead beef (3, Funny)

Abstrackt (609015) | about 4 years ago | (#33785444)

Apparently 00-de-ad-be-ef-00 is in downtown Toronto.

Re:Dead beef (1)

drdrgivemethenews (1525877) | about 4 years ago | (#33786040)

00-ca-fe-ba-be-00 is in Moscow, on the other hand. What does that say about Java?

Re:Dead beef (2, Funny)

Joe Snipe (224958) | about 4 years ago | (#33787656)

00-de-ad-ba-be-00 is in the Highlands.

Re:Dead beef (0)

Anonymous Coward | about 4 years ago | (#33786536)

the dead beef cafe is in Massachusetts.

eh... I'm apparently in hollywood (0)

Anonymous Coward | about 4 years ago | (#33785480)

I'm apparently in Hollywood, according to this.

I'm physically in Phoenix, AZ.

NoScript addon protects you from this (3, Informative)

plastick (1607981) | about 4 years ago | (#33785654)

NoScript will protect you from this (XSS) - even if you have it set to globally allow javascript.

Not found (2, Informative)

iONiUM (530420) | about 4 years ago | (#33785694)

Mine says not found. Probably because I don't have broadcast SSID on my wireless, judging by the procedure he's using (google locator). If this is the case, why does anyone broadcast their SSID to begin with? I never really understood that. There's no benefit for home users, since chances are 99% of the devices you use on a daily basis are not new, and so you only have to take the extra 5 seconds to manually enter the SSID once.

Re:Not found (4, Informative)

Anonymous Coward | about 4 years ago | (#33786176)

Short answer: It's easier, and more secure.

If you don't broadcast your SSID, your laptop or other devices will keep polling for it when its not around, thus you're essentially broadcasting your SSID wherever you go.

http://www.howtogeek.com/howto/28653/debunking-myths-is-hiding-your-wireless-ssid-really-more-secure/ is a good read.

On a sort of unrelated note, I was slightly disappointed that even when I hand-fed this script my mac address it still didnt have my location. Then I remembered I changed my mac address to try to fix some problems with comcast, and google had my old one. I wonder if theres anything to be gained by spoofing your mac address as one from another location, possibly to circumvent some geolocked content?

Re:Not found (1)

Synonymous Homonym (1901660) | about 4 years ago | (#33792620)

I wonder if theres anything to be gained by spoofing your mac address as one from another location, possibly to circumvent some geolocked content?

Unlikely. Such things are usually geolocated via IP address, not MAC.
You could maybe spoof your IP address, or use an appropriate proxy.

re: broadcast SSID (2, Interesting)

King_TJ (85913) | about 4 years ago | (#33786704)

I find broadcasting the SSID helps greatly in troubleshooting wireless issues for other people, if nothing else.
If I get called out to the typical home user's place to help them "fix their problems getting on the Internet", they often don't have any clue what their SSID is set to. All they know is that "It worked ever since the Geeksquad guys came out and set it all up for us!" or what-have-you.

On more than one occasion, I discovered the reason someone had issues had to do with neighbors buying new Linksys routers that had default SSID's of "linksys", matching the default of THEIR Linksys router they'd been using for months/years. Sometimes they were actually connecting to a neighbor's unsecured router for quite some time, before that neighbor made changes that booted them out -- and only THEN did they think they had things mis-configured.

Re:Not found (0)

Anonymous Coward | about 4 years ago | (#33786806)

an extra 5 second today, a life time tomorrow :P

Re:Not found (0)

Anonymous Coward | about 4 years ago | (#33788712)

Two things: some software gets confused if the SSID is not broadcast.

SSID is in no way related to this article.

That is all.

smartphone (0)

Anonymous Coward | about 4 years ago | (#33790546)

If you use your smartphone on your encrypted wifi and are using location finder then Google will grab the MAC.

Ipv6 may use the MAC in the ip address, depending on your O.S. so I'm not sure I'm happy about this.

Re:Not found (1)

pongo000 (97357) | about 4 years ago | (#33791406)

Mine says not found. Probably because I don't have broadcast SSID on my wireless, judging by the procedure he's using (google locator).

I don't broadcast my SSID, never have. Yet this script located my browser to within about a 500 ft. radius of my address.

It's dead on. (0)

Anonymous Coward | about 4 years ago | (#33785722)

It gets to my general area when I use my desktop, but, when I tried it on my iPod Touch (Safari), it asked twice that "Safari wants to use your current location", and then pinpointed me at my exact house.

nub (0)

Anonymous Coward | about 4 years ago | (#33785726)

since when has my router been over 200 miles away from me when i was messing with it afew hours ago lol

FAIL

Well mine just doesn't work at all! (1)

rrossman2 (844318) | about 4 years ago | (#33785868)

Typed in the MAC (00-23-97-20-EA-9B) and got this: Sorry, didn't find anything for 00-23-97-20-ea-9b.

Also tried the other two links.. one just brings up my router page (192.168.1.1:80) which asks for a login & password, and the firefox one (I'm using Chrome) doesn't work either. Well kind of. If I enable location services in Chrome, it will load a map, but it won't place a mark anywhere, and it's centered on a town about a 35 minute drive away.

Doesn't work 3.6.10,, noscript, flashblock, BP (1)

Maxo-Texas (864189) | about 4 years ago | (#33785938)

Allowed his page temporarily but still doesn't work.

Other than google analytics, everything else is permitted.

no script,
flashblock,
adblock,
web of trust
better privacy

This is a flaw in Westell UltraLine Series3 Router (1)

tyrr (306852) | about 4 years ago | (#33786038)

The XSS posted works only on a small class of SOHO routers, e.g. Westell UltraLine Series3 Routers.
If you have anything more sophisticated then a Westell UltraLine Series3 router, you are not affected.
The XSS uses the factory default router IP 192.168.1.1 to send HTTP requests to your router.

Obscurity for the win! (1)

Urban Garlic (447282) | about 4 years ago | (#33786174)

So it sounds like my house is immune for many obscure reasons, which is to say, I apparently have been practicing "obscurity in depth" as my security strategy.

Firstly, for slightly complicated historical reasons, I have my internal home network on 192.168.N.0/24, where N is not zero or one.

Secondly, my desktop machines are not on the wireless, they're wired to the router, and the wired port has a different MAC than the wireless, invisible to Google.

Thirdly, I don't broadcast my SSID, which might mean it's not in the Google database.

And fourthly, my router has a nondefault password. I think this is the only obstacle to the hack that is an actual, real security measure.

Where is a Fake AP install when you need it... (0)

Anonymous Coward | about 4 years ago | (#33786126)

This could be fun to abuse with Black Alchemy's "Fake AP" application...

pretty close (1)

corbettw (214229) | about 4 years ago | (#33786350)

He didn't get my address, but he did my neighbor, Mike's house across the street. Which means anyone trying to rob me will go there, instead. Which means I guess it's perfectly safe for me to leave this on, since I don't much like Mike, anyway.

This should read "WIRELESS MAC" (1)

LanMan04 (790429) | about 4 years ago | (#33786526)

Isn't this just looking at wardriving data that was submitted to various wardriving geolocation databases?

1) You broadcast your wireless MAC to the universe via wireless.
2) Dude picks it up on a wardrive scan.
3) Dude uploads his logs to http://wigle.net/ [wigle.net] or some other database.
4) Google gets data from these databases (how?) and puts it into their geolocation database

I know I've uploaded my own wireless MAC to wigle before, so no help there. Then again, I have an android phone that connects to my wireless router. Perhaps when your android device has a GPS lock and is connected to a wireless router, it uploads the wireless MAC and current lat/lon values to the Great Google Database in the Sky? That wouldn't surprise me at all.

I tried putting in my WIRED and LAN MAC addresses into the proof of concept website and it put them in locations a thousand miles away (Maryland and New York).

why not just use IP geolocation? (0)

Anonymous Coward | about 4 years ago | (#33786588)

works just fine for most IPs in the US and doesn't require router exploits.

Didn't work (0)

Anonymous Coward | about 4 years ago | (#33786612)

I fed it my MAC address. It gave me a reply (in red at the top of the page): Sorry nothing found for (then my MAC address). My Internet anonymity is thus, once again assured!
Yours Sincerely,
Anonymous Coward esq.

Broken XSS (1)

MrMacman2u (831102) | about 4 years ago | (#33786650)

I have the same router, but apparently the script is broken if you have your internal DHCP server dishing out any other IP range BESIDES 192.168.1.x

Mine is set to 192.168.25.1 and the script failed on an unprotected browser.

Could this be another win for non-standard setups... Or would this be easy enough to code around?

Didn't work and I'm at home (0)

Anonymous Coward | about 4 years ago | (#33787130)

None of this worked on my home PC.

Then again ... I don't have javascript enabled by default either.

Apparentley I live in China (0)

Anonymous Coward | about 4 years ago | (#33787192)

00-23-CD-C5-0D-0C, Hong Kong to be precise COOL! but so very wrong seeing as I'm in Europe and looking at my router right now.

Who needs XSS? (0)

darkain (749283) | about 4 years ago | (#33787208)

I cannot count the number of ISPs that I've had to deal with where if you do a reverse-dns lookup of a user's IP address, their MAC address shows up in the DNS name given by the ISP's DNS server. Moreso from this, virtually every wireless router I've worked on to date has the WAN, LAN, and Wifi MAC address in sequential order.

So, who needs XSS for this? Simply pull a reverse-dns of the IP address, and odds are that the MAC address will be +- 1 or 2 away from the WAN MAC that the ISP just handed over to you.

On a side note, I looked up my MAC address using that tool, and they have me pegged down EXACTLY to my house. That almost makes me want to switch my MAC address on my wireless now (which thankfully is quite easy on Tomato firmware)

Wierd (3, Interesting)

ichthus (72442) | about 4 years ago | (#33787378)

I have two Wireless APs -- one of which is only active occasionally for guests. Here's what I got when I entered my MACs:

Everyday (always on) router: It found my city, but the address was about two miles away.

Guest router: It pinpointed my father-in-law's address. This is strange, because my router has never been located at his house. But, HE HAS CONNECTED TO MY ROUTER. Interesting.

I checked the first address again, and this would be a friend's house, who I once connected his laptop to my network when I was fixing it.

I'm not completely familiar with 802.11, but it would appear that computers that had previously connected to my MAC are regularly pinging this MAC in such a way as to be received by the Google drive-by's and recorded as actual MACs of actual APs. Is there another explanation?

Re:Wierd (1)

KingPin27 (1290730) | about 4 years ago | (#33788710)

It's reassuring to know that there is a 1:1 relationship between devices and mac addresses and that each device in the world that requires a mac address has its own very unique mac and that there is no duplication. Heaven forbid the calamity that should arise if there was any duplication at all.

Re:Wierd (1)

wvmarle (1070040) | about 4 years ago | (#33791460)

Guest router: It pinpointed my father-in-law's address. This is strange, because my router has never been located at his house. But, HE HAS CONNECTED TO MY ROUTER. Interesting.

Possible scenario for your guest router:

- your father has likely given Google the exact location of his laptop, while at his own home. Can be very useful for personalising search results.

- also because he's done Google searches before so probably he's got a cookie uniquely identifying that laptop, if only for those personalised search results.

- he connects to your guest router: Google finds that this laptop now has a new MAC address, and uses the previously known location information to link to the new MAC address information, not realising he's not at his "own" location but at someone else's location, and for lack of more information on that MAC address they use his home location as location for your guest router.

Considering the amounts of data Google can grab from your searches and so, I don't think this is too improbable.

Re:Wierd (0)

Anonymous Coward | about 4 years ago | (#33792022)

Your father was logged intp a google account or used an android phone while using your network.

PDF Presentation (2, Interesting)

robertkeizer (1596715) | about 4 years ago | (#33787400)

It's worth noting that the presentation titled "Bad Memmories" was presented at the BlackHat conference is very similar to this. PDF available http://media.blackhat.com/bh-us-10/whitepapers/Bursztein_Gourdin_Rydstedt/BlackHat-USA-2010-Bursztein-Bad-Memories-wp.pdf [blackhat.com]

Google Street View (0)

Anonymous Coward | about 4 years ago | (#33787506)

Is it possible, this is based on google street view data? We know, they sniffed wifi data. What if they put together the mac adresses with their positions?

\Di3k (-1, Troll)

Anonymous Coward | about 4 years ago | (#33788464)

Wow it did Work! (1)

citylivin (1250770) | about 4 years ago | (#33788604)

I am amazed that this actually is tracked by the google van or whatever. It found my old address based on the mac address of my wireless adapter in that particular router. The wan and lan addresses were not found. So it appears that google has a list of many MAC addresses and their locations. Quite scary, and obviously impossible to opt out of.

I really hope some north american government looks into this. What possible non abusive use could this possibly serve? At least the router i am using allows me to change the mac addresses, which is what i am doing now.

Re:Wow it did Work! (1)

wvmarle (1070040) | about 4 years ago | (#33791470)

Obvious use: personalised search results.

E.g. you're looking for "take-away pizza" then they can look for the pizza shops closest to your location, without you having to dig through the results manually or having to enter your address yourself.

My MAC address?! (1)

Cyko_01 (1092499) | about 4 years ago | (#33789026)

Phew! good thing I use a PC

Getting more fun (1)

AHuxley (892839) | about 4 years ago | (#33789738)

With Apple devices only using wifi/telcos, maps grabbing MACS, apps grabbing gps/MAC/serial numbers. Ads tracking deep in flash/html5 databases.
Modems/wifi units selling with bar code MACS on the side of the box with online extra warranty forms.
This is all a lot of internal work to track a few ads to message you about 'free' coffee as you walk past a cafe.
Is the MAC one of the few stats of value now in any device?
Why are so many dumb devices leaking so much unique info out of the box?

works for germany (0)

Anonymous Coward | about 4 years ago | (#33793130)

just manually entered my wlan router's MAC (the page didn't work, not in firefox (got noscript), not in konqueror and not in opera - maybe ubuntu is helping me a little bit?) and it got my adress 100% accurate. the point on the map is also correct. this is scary, first because i have my SSID broadcast disabled since day one, and second, because google maps usually can't show my adress correctly (always hit our neigbors 3 streets away). this is really scary. why is google allowed to collect MACs?

cool!! (1)

hesaigo999ca (786966) | about 4 years ago | (#33793236)

need to get this to track my gf when she is out of country, so i know when she is getting back....lol

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?