Being in the public wifi business, when we go out to eat for lunch I always like to check and see if they have wifi. And if they do, I generally take notes about who is providing it, how is it set up and other things. One of the things that we see over and over again is a franchise owner who has simply turned on the wifi in their cable or dsl modem. This is such a huge security risk for them as I now have full access to the local LAN. This is of course the same local LAN with POS systems, security systems, managers computer and more present. And most of you will know this, but NAT is not a firewall!
Whenever we come across this situation we always inform the franchise owner of the issue immediately so it can get resolved (and of course we would like to offer our assistance as well). What baffles me sometimes is that if we bring this up to local management in the store, we often times get an oh well sort of response. Security is no joke and even if you do not consider our solution, close the hole or just turn it off until a solution is at hand.
Once last thing that strikes me as odd is the belief that if I turn on encryption on the SSID and then tell anyone who asks what the password is that all is well. If you tell everyone the password whats the point?
OK, enough said for today. Enjoy your weekend!