Improving YOUR Online Security
The Market Ticker - Commentary on The Capital Markets
Login or register to improve your experience
Main Navigation
Sarah's Resources You Should See
Full-Text Search & Archives
Leverage, the book
Legal Disclaimer

The content on this site is provided without any warranty, express or implied. All opinions expressed on this site are those of the author and may contain errors or omissions. For investment, legal or other professional advice specific to your situation contact a licensed professional in your jurisdiction.

NO MATERIAL HERE CONSTITUTES "INVESTMENT ADVICE" NOR IS IT A RECOMMENDATION TO BUY OR SELL ANY FINANCIAL INSTRUMENT, INCLUDING BUT NOT LIMITED TO STOCKS, OPTIONS, BONDS OR FUTURES.

Actions you undertake as a consequence of any analysis, opinion or advertisement on this site are your sole responsibility; author(s) may have positions in securities or firms mentioned and have no duty to disclose same.

The Market Ticker content may be sent unmodified to lawmakers via print or electronic means or excerpted online for non-commercial purposes provided full attribution is given and the original article source is linked to. Please contact Karl Denninger for reprint permission in other media, to republish full articles, or for any commercial use (which includes any site where advertising is displayed.)

Submissions or tips on matters of economic or political interest may be sent "over the transom" to The Editor at any time. To be considered for publication your submission must be complete (NOT a "pitch"; those get you blocked as a spammer), include full and correct contact information and be related to an economic or political matter of the day. All submissions become the property of The Market Ticker.

Considering sending spam? Read this first.

2024-08-22 07:00 by Karl Denninger
in Consumer , 323 references Ignore this thread
Improving YOUR Online Security
[Comments enabled]

Its a small difference, but a real one.

Go into your operating system and for all WiFi connections set MAC address randomization.

For Windows 11 it is under Network & Internet -> WiFi right at the bottom -- "Random hardware addresses."

For Android it is on by default for WiFi connections -- check all of them you use, and it should be on.

I suspect IOS on Macs has a similar feature.

Unfortunately for most systems there is no similar setting for hardware connections (e.g. cabled.)

This didn't used to matter much in the world of IPv4 because MAC addresses do not travel beyond the local network.  They have to be unique within the local network domain (e.g. your WiFi access point or similar) because that's how the network builds the mapping table so it knows what IP address (for example) goes to what machine.  Since they never leave the local domain the only real value in the IPv4 universe was preventing some local actor from mapping recurring device presence in a given place.  It would take a great deal of effort to put together any sort of "coalition" between such locations to develop any sort of effective "profiling" capability.

Unfortunately in the IPv6 world this is no longer true. SLACC, which is what most IPv6 networks use for local devicesresults in a globally-unique address that is specifically tied to your hardware and is visible anywhere on the Internet you connect to!

So now when you connect to any site on the Internet and are using IPv6 the other end has a globally-unique identifier for your specific device, and unless you can randomize the MAC address it uses you now have dropped a "breadcrumb" that identifies your specific machine.  You did not have to sign on, your browser didn't have to send a cookie or do anything else for this to occur.  The mere connection attempt is enough as that address always winds up in the other end's log data.

Of course with a mobile (e.g. phone) the carrier controls the assignment and can link it to your radio, your SIM card or whatever else they wish.  Again this becomes a globally-unique identifier and in that case there's no way for you to get around it.

Mobile providers can and some do also inject what amount to "super cookies" you neither see or can control into all data streams that use the HTTP-style protocol stack, which is most of them incidentally.

In addition your mobile devices (including wearables - yes, that includes wireless headphones) have a Bluetooth MAC address that is globally unique and typically cannot be randomized.  If bluetooth is enabled that MAC address is visible to any device within 30' or so whenever the power to that device is on.  You have to balance the potential value of this being tracked by third parties to the value of whatever it provides to you.  The good news with regard to Bluetooth is that it is severely range-limited.

Do not kid yourself as to the lack of value in this information.  It is how many entities "geotrack" people and yes, its not only are all these MAC addresses unique they are tied to you and on mobile devices in particular it is essentially impossible in an IPv6 world to avoid being tracked this way because you have no control over addressing on the cellular network.

But when it comes to WiFi connections you can avoid it -- and should.  It has absolutely no value to you but may well have plenty of value to others, most of whom you'd probably rather it not.

Go to responses (registration required to post)
 



 
No Comments Yet.....
Login Register Top Blog Top Blog Topics FAQ
Page 1 of 51  First123456789Last
Login Register Top Blog Top Blog Topics FAQ
Page 1 of 51  First123456789Last