Starbucks is now requiring a name and email address to use their WiFi. It’s still a captive portal. I didn’t do it, and won’t, regardless of VPN....
Let’s ignore temp/anon email for the moment. Implications for normal users?
not sure how I feel about this. #infosec Thoughts?
Do you have a citation for the technical details of what they claim it can do? Just Googling gives nothing but marketing blabber.
-
-
It's a NAC device that authenticates ppl getting onto a network. It collects MAC addresses and makes sure devices are up to date w security patches, etc. You can set it up to collect email or login via social media... and that is meant for marketing purposes.
-
I don't know if that's enough info for you... I basically repeat marketing blather.

-
It looks like this is a product intended for enterprise networks that requires installing special software on client device, probably including MITM root certificates. This seems correct based on the capabilities advertised.
-
My guesses are based on the first technical article I was able to find about it:https://pnmackenzie.tumblr.com/post/93679405099/is-your-aruba-clearpass-onbaoarding-exposing-your …
-
Thanks! Good blog. It does say it requires a download. I wonder if the vulnerabilities were fixed, also.
-
This video also shows downloading an executable and running it, bypassing the warning about doing so.https://youtube.com/watch?v=ClEWaEsCjFw …
-
It's not clear to me if you *can* use it without installing backdoors into the client, but lots of the claims seem implausible without control of the client device.
-
Ok here's a cool video that shows how they set up the splash page that captures your info. They use a RADIUS server and the guest just needs to set up their account:https://youtu.be/jXyd_q7T7aE
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.