55
submitted 6 months ago* (last edited 6 months ago) by coffeeClean@infosec.pub to c/cybersecurity@infosec.pub

I plugged into ethernet (as wifi w/captive portal does not work for me). I think clearnet worked but I have no interest in that. Egress Tor traffic was blocked and so was VPN. I’m not interested in editing all my scripts and configs to use clearnet, so the library’s internet is useless to me (unless I bother to try a tor bridge).

I was packing my laptop and a librarian spotted me unplugging my ethernet cable and approached me with big wide open eyes and pannicked angry voice (as if to be addressing a child that did something naughty), and said “you can’t do that!”

I have a lot of reasons for favoring ethernet, like not carrying a mobile phone that can facilitate the SMS verify that the library’s captive portal imposes, not to mention I’m not eager to share my mobile number willy nilly. The reason I actually gave her was that that I run a free software based system and the wifi drivers or firmware are proprietary so my wifi card doesn’t work¹. She was also worried that I was stealing an ethernet cable and I had to explain that I carry an ethernet cable with me, which she struggled to believe for a moment. When I said it didn’t work, she was like “good, I’m not surprised”, or something like that.

¹ In reality, I have whatever proprietary garbage my wifi NIC needs, but have a principled objection to a service financed by public money forcing people to install and execute proprietary non-free software on their own hardware. But there’s little hope for getting through to a librarian in the situation at hand, whereby I might as well have been caught disassembling their PCs.

you are viewing a single comment's thread
view the rest of the comments
[-] wahming@monyet.cc 4 points 6 months ago

“Do you have ethernet or wired internet?” is actually a common library question and the response from whoever works the front desk will likely tell you everything you need to know.

Would you trust the reply somebody like the librarian in the OP gave you? Seems like the sort of person who would refuse to admit to any lack of knowledge and just bluster.

[-] EssentialCoffee@midwest.social 35 points 6 months ago

Do you trust every one-sided story to be entirely accurate of all details?

And what does trust have to do with it? Can we use Ethernet here? If the person says no, would you just walk around the building until you found a port and plugged in?

[-] wahming@monyet.cc -1 points 6 months ago* (last edited 6 months ago)

Do you trust every one-sided story to be entirely accurate of all details?

No, but for the sake of discussion in this thread, that is the scenario we're all going by. We're not rendering a legal judgement here, we're discussing the situation as described.

In a public library, I would fully expect public-facing ethernet ports, especially in sitting / working areas, to be available for public use. I'm not sure why they would be there otherwise. And if they're no longer meant for public use, it would be on the library IT staff to have disabled those ports.

what does trust have to do with it?

Because I don't trust non-IT-savvy people to even properly understand the question. I've met way too many people with no technical clue who refuse to admit to any sort of lack of knowledge when it's extremely obvious.

[-] Album@lemmy.ca 17 points 6 months ago

If the LIBRARIAN doesn't understand this as a service the library offers - then they don't offer it - or if you think they're wrong you need to have an adult conversation that they do and that it should be ok. It's weird to just assume you can go around sticking your cat5e into other peoples ethernet ports like that.

[-] acastcandream@beehaw.org 4 points 6 months ago* (last edited 5 months ago)
[-] wahming@monyet.cc 0 points 6 months ago

We could discuss all sorts of hypotheticals, including where there's a secret supervillain base under the library and they're about to assassinate OP for jacking into their network. It's pointless because we're not discussing an event we have any way of obtaining any other information about other than what OP has provided.

[-] acastcandream@beehaw.org 3 points 6 months ago* (last edited 5 months ago)

spoilerasdfasdfsadfasfasdf

[-] CyberSeeker@discuss.tchncs.de 13 points 6 months ago

As far as people I’d trust to not just make shit up, I’d say Librarian, aka, professional fucking researcher is high on the list.

[-] wahming@monyet.cc 1 points 6 months ago

That pretty much depends on where in the world you are, FYI. Librarian == professional fucking researcher is not a thing in Asia.

[-] PM_Your_Nudes_Please@lemmy.world 11 points 6 months ago

Would you trust the reply somebody like the librarian in the OP gave you?

I mean, if the answer is “no” would you just go around plugging into random Ethernet ports until you found one that works? Just because you don’t “trust” the librarian who gave you the answer? That sounds like a fast track to getting trespassed (or at least banned from using their public internet altogether) for abuse of services.

The library isn’t required to provide free Ethernet. They aren’t even required to provide free wifi. But they choose to do so because they recognize that wifi is a big reason people will come to a library to spend time. Which is sort of the whole point of the library. So providing free wifi goes hand-in-hand with the library’s ultimate mission.

But that wifi is provided on an as-is basis, because they can’t guarantee things like 100% uptime, good speeds, or any kind of troubleshooting. And any potential ethernet connection would also be as-is. And in this case, “as-is” could easily translate to “not available to the public at all.” Because again, the library isn’t required to provide any of it.

[-] Album@lemmy.ca 8 points 6 months ago

It's kind of all that matters though. We don't need to trust her - we need her acceptance of the act for which she is the gatekeeper of. If we don't have it - trust over what she said is irrelevant since we don't even have the basic trust over the act.

[-] jeeva@lemmy.world 6 points 6 months ago* (last edited 6 months ago)

Yes, because it seems in this instance the answer to the question is "no, please don't plug into the ports you find."

If it's a supported thing, the librarian may have been less blustery.

this post was submitted on 29 Apr 2024
55 points (63.8% liked)

cybersecurity

3249 readers
6 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Enjoy!

founded 1 year ago
MODERATORS