Starbucks is now requiring a name and email address to use their WiFi. It’s still a captive portal. I didn’t do it, and won’t, regardless of VPN....
Let’s ignore temp/anon email for the moment. Implications for normal users?
not sure how I feel about this. #infosec Thoughts?
If you can do social media login you're not captive anymore. You have a working encrypted channel out.
-
-
Ok explain in laymens terms pls
-
The only way they could implement social media sign-on without already giving you access to visit the supported social media sites is by asking you to hand over your password for the SM site to their login system, then turning around and using it to login as you.
-
No you're wrong bc Aruba ClearPass.
-
Do you have a citation for the technical details of what they claim it can do? Just Googling gives nothing but marketing blabber.
-
It's a NAC device that authenticates ppl getting onto a network. It collects MAC addresses and makes sure devices are up to date w security patches, etc. You can set it up to collect email or login via social media... and that is meant for marketing purposes.
-
I don't know if that's enough info for you... I basically repeat marketing blather.

-
It looks like this is a product intended for enterprise networks that requires installing special software on client device, probably including MITM root certificates. This seems correct based on the capabilities advertised.
-
My guesses are based on the first technical article I was able to find about it:https://pnmackenzie.tumblr.com/post/93679405099/is-your-aruba-clearpass-onbaoarding-exposing-your …
- 5 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.