Marian <marianjones@helpfulpeople.com> posted both:
...Longitude: -93.81759643000001
Longitude: -93.81759643000001
and:
Does anyone have any idea why the highly insecure Apple WPS database
contains GPS entries to this illogically numerous set of decimal places?
Probably just the result of a 64-bit (double) floating point calculation
that they didn't bother to round off.
-WBE
Marian wrote:
-a BSSID: 8c:85:80:d1:be:37
-a Latitude: 32.45985031
-a Longitude: -93.81759643000001
-a -a BSSID: 8e:76:3f:f8:5d:cd
-a Latitude: 32.4594841
-a Longitude: -93.8175888
-a -a BSSID: 92:76:3f:f8:5d:cd
-a Latitude: 32.4594841
-a Longitude: -93.81756591
-a -a BSSID: 92:95:51:b5:b6:ae
-a Latitude: 32.45910644
-a Longitude: -93.81759643000001
Does anyone have any idea why the highly insecure Apple WPS database
contains GPS entries to this illogically numerous set of decimal places?
BSSID: 8c:85:80:d1:be:37 <https://wavedigger.networksurvey.app/?tab=bssid&bssid=8c-85-80-d1-be-37>
BSSID: 8e:76:3f:f8:5d:cd <https://wavedigger.networksurvey.app/?tab=bssid&bssid=8e-76-3f-f8-5d-cd>
BSSID: 92:76:3f:f8:5d:cd <https://wavedigger.networksurvey.app/?tab=bssid&bssid=92-76-3f-f8-5d-cd>
BSSID: 92:95:51:b5:b6:ae <https://wavedigger.networksurvey.app/?tab=bssid&bssid=92-95-51-b5-b6-ae>
this tutorial is only useful if you want to control the query
of Apple's highly insecure WPS database, which has no privacy controls.
How could anyone discover that AA:BB:CC:11:22:33 belongs to Arlen?
It's sloppy workmanship :-)
We knew that much before investigating.
Marian wrote:
this tutorial is only useful if you want to control the query
of Apple's highly insecure WPS database, which has no privacy controls.
I've not followed this thread in detail, I could understand the outrage
*if* apple were storing SSID/GPS pairs, such as ssid:Arlens_house_nomap=latitude:40.12345678,longitude:-120.12345678
But how is it compromising to store BSSID/GPS pairs such as bssid:AA:BB:CC:11:22:33=latitude:40.12345678,longitude:-120.12345678
How could anyone discover that AA:BB:CC:11:22:33 belongs to Arlen?
Paul wrote:
It's sloppy workmanship :-)
We knew that much before investigating.
Thanks Paul and Winston for taking a look at the precision of the GPS data >stored in the Apple WPS database.
I thought I had responded to this where I will always openly admit when I >don't understand anything, so I will say I have no idea WHY Apple stores
the integer GPS values to the number of integer precision that they do.
I can only add the value that I modified the FOSS scripts so that they
report both the original machine-readable GPS coordinates and my >human-readable conversion since decimal GPS coordinates are what we use.
These are actual values output when I input the first BSSID below:
column 1 = the BSSID
column 2 = the integer latitude stored in the Apple WPS database
column 3 = the integer longitude stored in the Apple WPS database
columns 4 & 5 = a conversion of integer to decimal for GPS display tools
00:18:f8:c1:4a:65 3245990371 -9381384277 32.459904 -93.813843
02:aa:a0:e3:5f:38 3245890808 -9381494903 32.458908 -93.814949
44:1c:12:99:23:58 3245909881 -9381492614 32.459099 -93.814926
44:1c:12:99:23:5b 3245910644 -9381491088 32.459106 -93.814911
44:1c:12:99:23:5d 3245910644 -9381491851 32.459106 -93.814919
44:1c:12:99:23:5e 3245911026 -9381491088 32.459110 -93.814911
06:aa:a0:e3:5f:38 3245891952 -9381494903 32.458920 -93.814949
72:13:01:01:99:9a 3245920944 -9381445312 32.459209 -93.814453
72:13:01:01:99:9d 3245919036 -9381446838 32.459190 -93.814468
ec:aa:a0:e3:5f:38 3245891571 -9381494140 32.458916 -93.814941
fa:aa:a0:e3:5f:38 3245891571 -9381493377 32.458916 -93.814934
12:36:aa:7d:3d:b1 3245915603 -9381276702 32.459156 -93.812767
12:36:aa:7d:3d:b2 3245915222 -9381278228 32.459152 -93.812782
12:36:aa:7d:3d:b6 3245914840 -9381275177 32.459148 -93.812752
12:36:aa:c2:2c:01 3245956802 -9381256103 32.459568 -93.812561
12:59:32:64:b2:bc 3245960617 -9381244659 32.459606 -93.812447
14:c0:3e:38:ef:36 3245923614 -9381269073 32.459236 -93.812691
16:c0:3e:38:ef:36 3245925140 -9381269836 32.459251 -93.812698
1a:c0:3e:38:ef:36 3245925140 -9381269073 32.459251 -93.812691
02:aa:a0:79:a6:b8 3245920181 -9381246185 32.459202 -93.812462
38:17:b1:28:28:46 3245931625 -9381245422 32.459316 -93.812454
40:48:6e:f1:9f:34 3245958328 -9381306457 32.459583 -93.813065
42:17:b1:28:28:46 3245932388 -9381243133 32.459324 -93.812431
46:d8:78:a3:03:a3 3245965576 -9381226348 32.459656 -93.812263
5c:b0:66:13:26:c1 3245907974 -9381227874 32.459080 -93.812279
5e:b0:66:13:26:c1 3245907592 -9381227111 32.459076 -93.812271
06:aa:a0:79:a6:b8 3245920181 -9381246185 32.459202 -93.812462
72:13:01:46:3c:c1 3245978546 -9381228637 32.459785 -93.812286
72:13:01:46:3c:c6 3245979690 -9381228637 32.459797 -93.812286
7e:b0:66:13:26:c1 3245907211 -9381227874 32.459072 -93.812279
88:ad:43:48:4a:a8 3245934295 -9381259918 32.459343 -93.812599
8c:76:3f:b7:b7:97 3245985412 -9381255340 32.459854 -93.812553
8e:76:3f:b7:b7:97 3245984649 -9381256103 32.459846 -93.812561
96:76:3f:b7:b7:97 3245984649 -9381255340 32.459846 -93.812553
98:52:4a:86:fa:4c 3245908737 -9381267547 32.459087 -93.812675
98:52:4a:86:fa:4f 3245908355 -9381267547 32.459084 -93.812675
98:52:4a:86:fa:51 3245908355 -9381267547 32.459084 -93.812675
98:52:4a:86:fa:52 3245908737 -9381268310 32.459087 -93.812683
9e:ad:43:48:4a:a8 3245934677 -9381259918 32.459347 -93.812599
9e:b0:66:13:26:c1 3245907211 -9381227874 32.459072 -93.812279
ac:91:9b:c6:7d:d2 3245978927 -9381267547 32.459789 -93.812675
b2:4f:b8:7f:cb:83 3245938873 -9381260681 32.459389 -93.812607
ce:6c:6d:83:12:4d 3245933151 -9381253051 32.459332 -93.812531
d4:6c:6d:83:12:4d 3245931243 -9381252288 32.459312 -93.812523
d6:6c:6d:83:12:4d 3245933914 -9381251525 32.459339 -93.812515
da:13:99:28:92:b0 3245917510 -9381269836 32.459175 -93.812698
e8:97:b8:8e:5d:0a 3245927047 -9381250000 32.459270 -93.812500
0e:c0:3e:38:ef:36 3245924758 -9381269073 32.459248 -93.812691
ec:aa:a0:79:a6:b8 3245919418 -9381246185 32.459194 -93.812462
f4:0e:83:d7:fb:68 3245946121 -9381263732 32.459461 -93.812637
fa:aa:a0:79:a6:b8 3245920181 -9381246185 32.459202 -93.812462
fc:ae:34:94:57:f0 3245948028 -9381231689 32.459480 -93.812317
fe:ae:34:94:57:f1 3245947265 -9381232452 32.459473 -93.812325
00:71:c2:b2:32:68 3245960998 -9381239318 32.459610 -93.812393
16:71:c2:b2:32:68 3245961761 -9381238555 32.459618 -93.812386
1a:71:c2:b2:32:68 3245961761 -9381238555 32.459618 -93.812386
10:93:97:0a:e7:80 3245982742 -9381553649 32.459827 -93.815536
12:36:aa:62:9c:39 3245925140 -9381566619 32.459251 -93.815666
12:36:aa:62:9c:3a 3245926284 -9381568908 32.459263 -93.815689
12:36:aa:62:9c:3d 3245923614 -9381565856 32.459236 -93.815659
12:36:aa:62:9c:3e 3245925521 -9381567382 32.459255 -93.815674
12:36:aa:85:84:c9 3245957183 -9381577301 32.459572 -93.815773
18:9c:27:b6:4b:8a 3245976257 -9381594085 32.459763 -93.815941
02:cb:7a:c2:d1:42 3245947265 -9381558227 32.459473 -93.815582
02:cb:7a:c2:d1:43 3245948028 -9381558227 32.459480 -93.815582
02:cb:7a:c2:d1:45 3245947265 -9381559753 32.459473 -93.815598
36:e6:e6:86:cd:1c 3245981216 -9381570434 32.459812 -93.815704
3a:9c:27:b6:4b:8a 3245977020 -9381596374 32.459770 -93.815964
5a:9c:27:b6:4b:8a 3245976257 -9381596374 32.459763 -93.815964
8c:85:80:e4:35:dd 3245977783 -9381558990 32.459778 -93.815590
8c:0f:6f:21:c8:80 3245982742 -9381554412 32.459827 -93.815544
8c:0f:6f:d3:3b:68 3245903778 -9381518554 32.459038 -93.815186
8e:76:3f:d4:13:8d 3245978164 -9381594085 32.459782 -93.815941
94:a6:7e:31:02:35 3245890045 -9381510162 32.458900 -93.815102
9a:0f:6f:21:c8:80 3245982742 -9381554412 32.459827 -93.815544
9a:0f:6f:d3:3b:68 3245905303 -9381518554 32.459053 -93.815186
a2:0f:6f:21:c8:80 3245982360 -9381554412 32.459824 -93.815544
a2:0f:6f:d3:3b:68 3245904541 -9381518554 32.459045 -93.815186
a6:0f:6f:21:c8:80 3245983123 -9381557464 32.459831 -93.815575
a6:0f:6f:d3:3b:68 3245905685 -9381520080 32.459057 -93.815201
be:61:e9:cd:aa:a8 3245882415 -9381622314 32.458824 -93.816223
ca:3a:6b:db:9b:ba 3245902252 -9381513977 32.459023 -93.815140
ce:6c:6d:53:02:e5 3245964050 -9381594848 32.459640 -93.815948
d4:6c:6d:53:02:e5 3245963287 -9381592559 32.459633 -93.815926
d6:6c:6d:53:02:e5 3245962142 -9381593322 32.459621 -93.815933
da:e3:5e:f7:08:87 3245980834 -9381555938 32.459808 -93.815559
f8:aa:3f:fe:b2:1e 3245905303 -9381512451 32.459053 -93.815125
4e:6b:b8:aa:8c:80 3245885086 -9381540679 32.458851 -93.815407
78:b2:13:e7:91:39 3245882797 -9381607055 32.458828 -93.816071
9e:b3:f7:21:91:e7 3245910263 -9381617736 32.459103 -93.816177
ce:8b:66:31:a1:df 3245933151 -9381556701 32.459332 -93.815567
80:30:dc:c2:05:26 3245886993 -9381635284 32.458870 -93.816353
6e:29:90:f7:23:74 3245903396 -9381517791 32.459034 -93.815178
0c:73:29:ff:29:93 3245893096 -9381542968 32.458931 -93.815430
7e:27:bc:95:f5:35 3245974349 -9381566619 32.459743 -93.815666
00:cb:7a:d0:d1:42 3245967102 -9381575775 32.459671 -93.815758
00:cb:7a:d0:d1:47 3245966720 -9381576538 32.459667 -93.815765
2c:7e:81:ab:cd:1b 3245813751 -9381472778 32.458138 -93.814728
2c:fb:0f:0f:66:06 3245831298 -9381491851 32.458313 -93.814919
36:fb:0f:0f:66:06 3245833969 -9381491088 32.458340 -93.814911
4e:7e:81:ab:cd:1b 3245811080 -9381472778 32.458111 -93.814728
6e:7e:81:ab:cd:1b 3245812988 -9381472778 32.458130 -93.814728
84:00:2d:41:9a:38 3245840454 -9381491088 32.458405 -93.814911
88:6a:e3:e0:51:c4 3245843887 -9381491088 32.458439 -93.814911
92:00:2d:41:9a:38 3245839691 -9381491088 32.458397 -93.814911
9a:00:2d:41:9a:38 3245840454 -9381491088 32.458405 -93.814911
9a:9d:5d:df:f0:6a 3245788955 -9381491851 32.457890 -93.814919
9e:00:2d:41:9a:38 3245840072 -9381491088 32.458401 -93.814911
be:8c:cd:2f:95:16 3245823669 -9381494903 32.458237 -93.814949
c2:18:03:fb:7c:5e 3245796585 -9381478118 32.457966 -93.814781
0c:83:cc:c6:58:4f 3245823669 -9381491851 32.458237 -93.814919
ce:3f:cb:da:f6:1b 3245833587 -9381475830 32.458336 -93.814758
ce:ab:82:cf:55:98 3245824432 -9381491088 32.458244 -93.814911
d4:3f:cb:da:f6:1b 3245833206 -9381475067 32.458332 -93.814751
d4:ab:82:cf:55:98 3245824432 -9381491088 32.458244 -93.814911
d6:3f:cb:da:f6:1b 3245833969 -9381475067 32.458340 -93.814751
d6:ab:82:cf:55:98 3245823669 -9381490325 32.458237 -93.814903
da:3f:cb:da:f6:1b 3245833587 -9381475067 32.458336 -93.814751
da:ab:82:cf:55:98 3245823669 -9381491088 32.458237 -93.814911
0e:fe:7b:7e:0e:29 3245786666 -9381475830 32.457867 -93.814758
f8:aa:3f:fe:b2:3b 3245837783 -9381485748 32.458378 -93.814857
42:9e:9d:73:67:ef 3245817947 -9381486511 32.458179 -93.814865
6e:57:25:f3:7c:e5 3245834732 -9381487274 32.458347 -93.814873
9e:73:b1:ef:ad:77 3245817184 -9381499481 32.458172 -93.814995
1c:56:8e:0b:3b:34 3246085739 -9381424713 32.460857 -93.814247
24:de:8a:10:6e:a4 3246070098 -9381474304 32.460701 -93.814743
24:de:8a:60:04:14 3246067428 -9381462860 32.460674 -93.814629
48:e2:ad:ad:39:f4 3246047592 -9381441497 32.460476 -93.814415
54:2b:57:35:d6:c5 3246046829 -9381445312 32.460468 -93.814453
54:b2:03:53:16:68 3246035766 -9381394195 32.460358 -93.813942
56:2b:57:2f:ff:cf 3246062088 -9381448364 32.460621 -93.814484
62:b2:03:53:16:68 3246036911 -9381393432 32.460369 -93.813934
6a:b2:03:53:16:68 3246036911 -9381393432 32.460369 -93.813934
6e:b2:03:53:16:68 3246028518 -9381393432 32.460285 -93.813934
82:da:c2:2d:1f:12 3246070861 -9381422424 32.460709 -93.814224
82:da:c2:2d:1f:15 3246070480 -9381422424 32.460705 -93.814224
c0:94:35:dc:33:1a 3246071624 -9381478881 32.460716 -93.814789
ce:94:35:dc:33:1a 3246070861 -9381479644 32.460709 -93.814796
d6:94:35:dc:33:1a 3246070861 -9381478881 32.460709 -93.814789
28:c2:dd:dc:c9:b8 3246021270 -9381389617 32.460213 -93.813896
30:13:8b:2b:28:10 3246051025 -9381438446 32.460510 -93.814384
8c:0f:6f:18:7c:00 3246034240 -9381385803 32.460342 -93.813858
9a:0f:6f:18:7c:00 3246034622 -9381387329 32.460346 -93.813873
a2:0f:6f:18:7c:00 3246035003 -9381387329 32.460350 -93.813873
a6:0f:6f:18:7c:00 3246034622 -9381386566 32.460346 -93.813866
2a:ad:18:fc:8b:1f 3246102142 -9381381988 32.461021 -93.813820
3a:e7:c0:83:c1:a7 3246105575 -9381404876 32.461056 -93.814049
c6:98:5c:db:c2:43 3246094512 -9381495666 32.460945 -93.814957
etc.
The question mainly is WHY Apple stores them to the number of integers that >they do, where all I can do is convert the integer values to human-readable >decimal coordinates.
How could anyone discover that AA:BB:CC:11:22:33 belongs to Arlen?
Easy : Someone drives up to his house and than checks their phone which SSIDs it detects. :-)
The question mainly is WHY Apple stores them to the number of integers that >>they do, where all I can do is convert the integer values to human-readable >>decimal coordinates.
If you look at the original data you posted a few articles back, you
might notice that the number of significant digits in the Lat/Long
numbers vary widely for each BSSID.
That implies that the number is
coming from the GPS receiver and is probably not "processed" prior to
be being logged. The entries with fairly few significant figures is
probably an old GPS who's designers were only confident in a few
digits precision. The longer entries could easily be the output of an
RTK differential GPS system capable of millimeter accuracy. A way to
verify this is to write a program that grabs the first half of the
BSSID and searches various OUI databases for the name of the
manufacturer. Something like this:
"Wi-Fi Vendor - Detect vendor of a Wi-Fi access point with just your
iPhone or iPad"
<https://github.com/jiribrejcha/wifi-vendor-lookup>
I'll try it.
BSSID: 84:eb:3e:f8:36:d3
Latitude: 32.45880508
Longitude: -93.81717681
Plugging the BSSID into:
<https://oui.is/>
<https://oui.is/84eb3ef836d3>
I get:
Vivint Smart Home 84:eb:3e:00:00:00/24
Here's a longer Lat:
BSSID: bc:9b:68:7e:15:c3
Latitude: 32.459438320000004
Longitude: -93.817276
<https://oui.is/bc9b687e15c3>
I get:
Vantiva USA LLC bc:9b:68:00:00:00/24
I can't determine if either company has a reason to have a longer
Lat/Long. However, notice the number of digits in the Lat, which are
mostly zeros, except for the last digit:
Latitude: 32.459438320000004
I don't know what they're doing, but it looks like they're using the
Latitude to store some kind of data or ID. There are several other
entries in the data that show a similar pattern of 8 places to the
right of the decimal point for useful data followed by 6 zeros and 1
numeric digit.
This should be useful:
"Accuracy of Decimal Places in Latitude and Longitude Degrees" <https://support.garmin.com/en-US/?faq=hRMBoCTy5a7HqVkxukhHd8>
8 decimal places is 1.11mm resolution which is probably the limit of
GPS resolution (not sure).
Anyway, good luck with whatever you're doing.
Since I reproduced almost exactly what the researchers said could be done, did you read the research papers which were cited about this subject?
See references in the sig...
How could anyone discover that AA:BB:CC:11:22:33 belongs to Arlen?
Easy : Someone drives up to his house and than checks their phone which
SSIDs it detects. :-)
Here's the key thing we need to do to gain an appreciation for privacy.
I suggest anyone else who thinks a BSSID is "just a number" begin to
separate the object being tracked from the person being inferred.
Marian wrote:
See references in the sig...
I hide .sigs to avoid the politics/religion that some people use.
If someone could come up with a single sentence that describes how
someone could find one or more BSSIDs for a person or family, without already knowing their location, that would spark my curiosity ...
I can't determine if either company has a reason to have a longer
Lat/Long. However, notice the number of digits in the Lat, which are
mostly zeros, except for the last digit:
Latitude: 32.459438320000004
I don't know what they're doing, but it looks like they're using the
Latitude to store some kind of data or ID. There are several other
entries in the data that show a similar pattern of 8 places to the
right of the decimal point for useful data followed by 6 zeros and 1
numeric digit.
Jeff Liebermann <jeffl@cruzio.com> wrote:
I can't determine if either company has a reason to have a longer
Lat/Long. However, notice the number of digits in the Lat, which are
mostly zeros, except for the last digit:
Latitude: 32.459438320000004
I don't know what they're doing, but it looks like they're using the
Latitude to store some kind of data or ID. There are several other
entries in the data that show a similar pattern of 8 places to the
right of the decimal point for useful data followed by 6 zeros and 1
numeric digit.
These are from loss of precision in the storing of floating-point numbers
in python. They aren't real. The source data will not include all the
zeros.
$GPGGA,210230,3855.4487,N,09446.0071,W,1,07,1.1,370.5,M,-29.5,M,,*7A # degrees minutes fractions-of-a-minute
Latitude (in DDMM.MMM format) 38.554487 as 38. 55.4487
Latitude compass direction
Longitude (in DDDMM.MMM format) 094.460071 as 094. 46.0071
Longitude compass direction
We don't want to go into the minutiae to dismiss the crap on the end of -93.81759643000001
Chris wrote:
Jeff Liebermann <jeffl@cruzio.com> wrote:
I can't determine if either company has a reason to have a longer
Lat/Long. However, notice the number of digits in the Lat, which are
mostly zeros, except for the last digit:
Latitude: 32.459438320000004
I don't know what they're doing, but it looks like they're using the
Latitude to store some kind of data or ID. There are several other
entries in the data that show a similar pattern of 8 places to the
right of the decimal point for useful data followed by 6 zeros and 1
numeric digit.
These are from loss of precision in the storing of floating-point numbers
in python. They aren't real. The source data will not include all the
zeros.
The precision is a red herring, in my opinion, since the fact that you
can't get out of the Apple WPS database even though you followed all of Apple's legally binding published policies is the main privacy issue.
Apple's decision is legally, morally & ethically reprehensible, so I will start working on getting Apple to change their decision any way that I can.
However, to the point of the raw precision in the Apple WPS database, I've modified the open source Apple bssid locator tools to report raw integer values in addition to conversion to the human-readable GPS coordinates.
Here are raw/converted values for the bssid lookup on the access point located near 4302 Josey Cir, Shreveport, LA 71109 (as a random AP lookup).
00:18:f8:c1:4a:65 3245990371 -9381384277 32.459904 -93.813843
02:aa:a0:e3:5f:38 3245890808 -9381494903 32.458908 -93.814949
44:1c:12:99:23:58 3245909881 -9381492614 32.459099 -93.814926
44:1c:12:99:23:5b 3245910644 -9381491088 32.459106 -93.814911
Marian wrote:
Since I reproduced almost exactly what the researchers said could be done, >> did you read the research papers which were cited about this subject?
No, I didn't ...
Andy Burns <usenet@andyburns.uk> wrote:
Marian wrote:
See references in the sig...
I hide .sigs to avoid the politics/religion that some people use.
If someone could come up with a single sentence that describes how
someone could find one or more BSSIDs for a person or family, without
already knowing their location, that would spark my curiosity ...
The key question.
You think you can be anonymous / untrackable ? Think again.
I (can) have every access point location
in the world (over 2 billion) if I felt like getting it (and storing it).
You think you can be anonymous / untrackable ? Think again.
The fundamental issue is Apple is not respecting their legally binding
policy to allow people like me (who care about privacy) to opt out of WPS.
Marian wrote:
I (can) have every access point location
in the world (over 2 billion) if I felt like getting it (and storing it).
But which of those 2 billion belong to me?
On Mon, 22 Dec 2025 18:00:14 +0000, Andy Burns <usenet@andyburns.uk>
wrote:
Marian wrote:
I (can) have every access point locationBut which of those 2 billion belong to me?
in the world (over 2 billion) if I felt like getting it (and storing it). >>
Well, *you* know which it is, and ve haf vays of making you talk, so...
https://en.wiktionary.org/wiki/ve_haf_vays_of_making_you_talk
On Mon, 22 Dec 2025 18:00:14 +0000, Andy Burns <usenet@andyburns.uk>
wrote:
Marian wrote:
I (can) have every access point locationBut which of those 2 billion belong to me?
in the world (over 2 billion) if I felt like getting it (and storing it). >>
Well, *you* know which it is, and ve haf vays of making you talk, so...
https://en.wiktionary.org/wiki/ve_haf_vays_of_making_you_talk
Char Jackson <none@none.invalid> wrote:
On Mon, 22 Dec 2025 18:00:14 +0000, Andy Burns <usenet@andyburns.uk>
wrote:
Marian wrote:
I (can) have every access point locationBut which of those 2 billion belong to me?
in the world (over 2 billion) if I felt like getting it (and storing it). >>>
Well, *you* know which it is, and ve haf vays of making you talk, so...
Do *you* know your MAC address if presented with a list? I certainly don't.
On Tue, 23 Dec 2025 10:00:36 -0000 (UTC), Chris <ithinkiam@gmail.com>
wrote:
Char Jackson <none@none.invalid> wrote:
On Mon, 22 Dec 2025 18:00:14 +0000, Andy Burns <usenet@andyburns.uk>
wrote:
Marian wrote:
I (can) have every access point locationBut which of those 2 billion belong to me?
in the world (over 2 billion) if I felt like getting it (and storing it). >>>>
Well, *you* know which it is, and ve haf vays of making you talk, so...
Do *you* know your MAC address if presented with a list? I certainly don't.
I actually don't know my WAN MAC, but I know where to find it and could
do so in a few seconds if I needed it. I was just joking with Andy,
though.
The fundamental issue is Apple is not respecting their legally binding
policy to allow people like me (who care about privacy) to opt out of WPS.
As long as that BSSID is not openly linked to you, the person, than there is no privacy issue present.
Also, I take it you have disabled the "A" part of your device(s) A-GPS* ?
* If not, your smartphone asking Apple for the coordinates of nearby BSSIDs gives your own location away.
As for your "legally binding policy" claim ?: You have claimed facts *way* to often to believe you without having hard evidence for it.
And you misssed the whole point (but whats new).
you are throwing so much
data around that you can't control and even *need* to throw around (smartphone) that removing that BSSID and its coordinates from a database doesn't really help.
As long as that BSSID is not openly linked to you, the person, than there
is no privacy issue present.
Since I have already posted a half dozen security research papers and articles that expressly claim otherwise
you're entitled to your own opinion which isn't backed up by a single security
researcher on earth
The research shows that BSSID + geolocation enables inference attacks, movement tracking,
and household identification even without explicit personal identifiers.
For those lurking and learning, this isn't what people like Rudy think it is, since A-GPS has absolutely nothing directly to do with any of this.
A-GPS is simply a method for a phone to speed up its own location fix
using network assistance.
The research papers I listed which most have likely read by now explain the >> variety of ways that access points can easily be tracked by use of the
Apple WPS implementation
But people don't care if APs can be tracked, unless *they* can be
associated with specific APs.
I'm simply informing you and others on this newsgroup of this problem set.
And I'm asking for solutions (in another thread) for resolving the
problem.
but my point is that being able to easily track it from anywhere in the world means anyone can essentially atrack you.
To prove how easy it is to track anyone's movements from place to place,
I'm setting up these three routers to prove that I can easily be tracked:
I'm simply informing you and others on this newsgroup of this problem set.
And I'm informing you that you have dreamed up a problem where none exists.
And I'm asking for solutions (in another thread) for resolving the
problem.
Maybe you should start with clarifying the problem, instead of having us guess what you think it might be.
but my point is that being able to easily track it from anywhere in the
world means anyone can essentially atrack you.
Ehhh.... If someone can do "x" that someone can essentially do "x" ? Yeah duh!
But as I already explained to you and you refused to respond to, from whats in that database you can only track a *random* person. Which, as I mentioned earlier, is useless.
To prove how easy it is to track anyone's movements from place to place,
I'm setting up these three routers to prove that I can easily be tracked:
You still don't get it, do you. You are still working your way backwards from the answer (you know what your BSSID is) to the question (find your BSSID and read your own location next to it). Anyone can do that.
Doing it the other way around however ...
The key point is that Apple's WPS endpoint returns hundreds of nearby GPS:BSSIDs pairs for any submitted BSSID, not just the one requested.
Lest you claim "I don't get it", it's important to reiterate that the insecurity of Apple's Wi-Fi Positioning System (WPS) isn't speculative.
I'm all about helping everyone -
The key point is that Apple's WPS endpoint returns hundreds of nearbyKiddo, you have changed your story. From a privacy issue to a "I can get the whole database".
GPS:BSSIDs pairs for any submitted BSSID, not just the one requested.
You have not given me/us any explanation to why knowing *a random BSSID* and its location would be a privacy issue, and now not why you think that being able to get all the Apple databases contents would be one.
Lest you claim "I don't get it", it's important to reiterate that the
insecurity of Apple's Wi-Fi Positioning System (WPS) isn't speculative.
And as I've told you a number of times before, I'm not going on a wild goose hunt for something you *could* be meaning. You have it as a fact in your head, *you* explain it. I'm not going to play a ten guesses game with you.
I'm all about helping everyone -
No, you're not.
If you would be than you would take the time to make sure that your intended audience gets the facts instead of some guesswork as well as getting something thats easy to read and follow and thus understand.
I've told you that many times, but you have disregarded that for years now. Thats not something an /actual/ helpfull person would do.
Though I must say I was pleasantly surprised that your last "tutorial" was about a single subject and not multiple together, poored out after having gone to a food-blender. Yes, I remember those. :-(
Rudolph, let's keep this focused on the technical issue rather than tone.
For you to tell me "I don't get it" a hundreds times, doesn't mean that I don't get it when I simply reproduced what researchers said could be done.
Worse, I, myself, could easily track any BSSID in the world.
That's not random.
These flaws effectively exposes large portions of Apple's WPS database
to anyone who knows how to query it, which is what the researchers said.
I have no intention of tracking people, but I proved it's trivial to do. Just like the security researchers said it was.
That's not random.
Yes, it is. Tell me, what is *the name of the person* behind the BSSID's you have been tracking ?
Ofcourse, you have no idea.
Unit #2-A
Anyone can do this for any home in the United States.
Which is why this is so dangerous to privacy.
Marian wrote:
Anyone can do this for any home in the United States.
Which is why this is so dangerous to privacy.
Apologies for the unit 2-a on every name and address in the previous list. Only the first line was that unit.
I used gVIM to munge the record, slightly, for privacy, since the exact
unit didn't matter for our purposes, but I made an editing redaction error.
The point is anyone in the world can track these people by their GPS:BSSID. Jeffrey Devin ......................... 4306 Josey Circle
Ronda and Alfred Beel ................ 4310 Josey Circle
James and Dollie Henson Smythe ....... 4314 Josey Circle
Rosemary Ellerbee Jones .............. 4317 Josey Circle
Benjamin and Eric Choyica ............ 4318 Josey Circle
Lonzie D. Groniger .................... 4321 Josey Circle
Terrince Steedman ..................... 4326 Josey Circle
Lutrisher Walton Hill ................ 4329 Josey Circle
Shane Jameson Sr. ..................... 4330 Josey Circle
Flora Ann Jackson Gellion ............ 4338 Josey Circle
Mary E. Gebbs Hendy ................... 4816 Josey Circle
Sherryn Marie Smythe .................. 4820 Josey Circle
Melvin Hawthorn, Jr. ................. 4823 Josey Circle
Charles Nesh .......................... 4824 Josey Circle
Trivia Yashica Watken ................ 4827 Josey Circle
Pamela Tomas .......................... 4828 Josey Circle
etc.
The papers explained how anyone in the world could track every owner of
every home in the United States by their GPS:BSSID using the highly
insecure Apple WPS database like could for the above people (which I have
no plans on doing but which is why I understand how badly designed Apple's WPS implementation is - which Google's WPS & Mozilla's WPS isn't).
That's not random.
Yes, it is. Tell me, what is *the name of the person* behind the BSSID's >> you have been tracking ?
Ofcourse, you have no idea.
Ah, but I do.
Apologies for the unit 2-a on every name and address in the previous list. Only the first line was that unit....
The point is anyone in the world can track these people by their[snip rest of list]
GPS:BSSID.
Jeffrey Devin ......................... 4306 Josey Circle
Ronda and Alfred Beel ................ 4310 Josey Circle
James and Dollie Henson Smythe ....... 4314 Josey Circle
So, you have a list of person names and, I assume, street adresses - but no (GPS.)BSSIDs. iow, nothing to track any of those persons with.
Kiddo, you *really need to* explain how you convert BSSIDs into a persons name, or a persons name into a BSSID.
And lets not forget, I asked you a simple Yes/No question about it which you still have not answered :
[quote=me]
So, if I pick a name than you can, assiming he's got a BSSID with him, tell me where that person is traveling ? Yes or no ? And ofcourse, explain your answer. :-)
[/quote]
Ofcourse, when I pick a name of someone/place I know the BSSID of it would be *very* evident when you would give me a random BSSID for it ...
The same would happen when I give you a known-to-me BSSID and you come back with some random persons name.
Yeah, your best shot at not falling into that "trap" is by simply refusing to answer the question.
The only problem with that is that *not* giving an answer is an answer in itself : YOU HAVE NO CLUE.
Another claim without anything to support it.
I (can) have every access point location
in the world (over 2 billion) if I felt like getting it (and storing it).
But which of those 2 billion belong to me?
...And lets not forget, I asked you a simple Yes/No question about it which
you still have not answered :
f. This derived linkage is not present in Apple's data itself.
2. How the location association works
a. Apples WPS database stores BSSID-to-location pairs.
b. In practice, these coordinates almost always correspond to a specific building.
c. That building is associated with an owner through public
property records (in the USA anyway)
And yet I proved it's trivial to obtain the named owner of every building
in the United States
In short, you need to access *other* publicly available databases to *try to* link a BSSID to a specific person.
And yet I proved it's trivial to obtain the named owner of every building >> in the United States
I've got a name for you :John Smith. Now tell me, where does he live and whats his BSSID ?
Do I have to explain the above to you or are you smart enough to figure it out for yourself ?
Essentially... 1. Every home in the USA is tied to an owner in a public database
2. Every BSSID in every home in the USA is in the Apple public database
BSSID <-> GPS <-> Address <-> Owner
Only an extremely unimaginative person wouldn't be able to connect the
dots
I've got a name for you :John Smith. Now tell me, where does he live and >> whats his BSSID ?
Do I have to explain the above to you or are you smart enough to figure
it out for yourself ?
BSSID <-> GPS <=> Address <-> Owner
Every person who knows anything understands that every owner of every
home in the United States is in a public database
Arlen,
Apologies for the unit 2-a on every name and address in the previous...
list.
Only the first line was that unit.
The point is anyone in the world can track these people by their[snip rest of list]
GPS:BSSID.
Jeffrey Devin ......................... 4306 Josey Circle
Ronda and Alfred Beel ................ 4310 Josey Circle
James and Dollie Henson Smythe ....... 4314 Josey Circle
So, you have a list of person names and, I assume, street adresses - but
no (GPS.)BSSIDs. iow, nothing to track any of those persons with.
I respect your knowledge, so I'm aware you understand what a BSSID is.
You also understand that most people own the home they live in.
And, you understand that if they move, they take their router with them.
I know the owner of every home on Josey Circle in Shreveport, LA, right?
And, in another post, I showed the BSSID nearest to each of those
buildings, right? (I'm not going to put it together here for reasons that
I'm not trying to dox people.)
So what are you asking me to answer?
a. Are you disputing I have the named owner of every home in the USA?
b. Or are you disputing I have the BSSID of every home in the USA?
If your name was, oh, let's say Jeffrey Devin, and if you put that router
in the home that you own at 4306 Josey Circle, then I can track that AP anywhere in the world if you then moved to another home, and took your
router with you. c. Are you disputing I can track the location of that
AP BSSID, Andy?
Note that by tracking the BSSID and knowing the owner of every home in the USA (since that's a public record), I could tie it to you "if" you're the owner. If you only rented the home, then I'd need more data to tie it to
you.
But in the USA, overwhelmingly, people own the home they live in.
So it's tied to the owner. Who, in this case, would be you.
Would it not?
And, you understand that if they move, they take their router with them.
Are you disputing any of that?
I know the owner of every home on Josey Circle in Shreveport, LA, right?
And, in another post, I showed the BSSID nearest to each of those
buildings, right? (I'm not going to put it together here for reasons that I'm not trying to dox people.)
a. Are you disputing I have the named owner of every home in the USA?
b. Or are you disputing I have the BSSID of every home in the USA?
Note that by tracking the BSSID and knowing the owner of every home in the USA (since that's a public record), I could tie it to you "if" you're the owner.
But in the USA, overwhelmingly, people own the home they live in.
So it's tied to the owner.
Who, in this case, would be you.
Would it not?
Arlen,
And, you understand that if they move, they take their router with them.
Are you disputing any of that?
Wishfull thinking much ? If he doesn't I will.
I know the owner of every home on Josey Circle in Shreveport, LA, right?
Which is pretty useless.
And, in another post, I showed the BSSID nearest to each of those
buildings, right? (I'm not going to put it together here for reasons that >> I'm not trying to dox people.)
:-) You're just telling us exactly what you've done, so we can repeat it >ourselves. In my country thats called "aiding and abedding" - which can >easily land you into jail.
a. Are you disputing I have the named owner of every home in the USA?
You already asked that.
b. Or are you disputing I have the BSSID of every home in the USA?
If he doesn't I will. Also, *the* BSSID ? Just a single one ? What are >you ? Poor ?
Note that by tracking the BSSID and knowing the owner of every home in the >> USA (since that's a public record), I could tie it to you "if" you're the >> owner.
Thats a rather big "if", don't you think ? It certainly trashes your
initial claim that you could track *everyone* (all over the world).
But in the USA, overwhelmingly, people own the home they live in.
Tell that to all the poor city-dwellers who predominanty rent they places.
Who are, by the way, in close proximity and often stacked several layers >ontop of each other. Which ofcourse makes a mockery of any claim that a >certain location will al;ways point to a single home.
So it's tied to the owner.
:-) You're "cooking the books" there.
Who, in this case, would be you.
Would it not?
Chances are - for multiple reasons as indicated in the above - he's not.
You're playing the "no true Scotsman" falacy there* : when you do not like a >certain result you just discard it - leaving you with a meaningless, small >subset, but all confirming what you wish to claim. Duh. Also, blergh.
* https://en.wikipedia.org/wiki/No_true_Scotsman
Bottom line : you *might* be able to track someone when you are given a >persons name. - if the stars align just right.
It helps greatly if a MAC address is unique within its local
network segment,
but a duplicate MAC appearing somewhere else shouldn't cause
any problems.
*Many years ago,...
it didn't cause any problems. It simply moved certain
tasks farther up the network stack
Tell that to all the poor city-dwellers who predominanty rent they places.
Who are, by the way, in close proximity and often stacked several
layers ontop of each other.
A BSSID is typically based on the interface's MAC address. Each MAC
address is assumed, by many people, to be globally unique, but they
don't have to be.* It helps greatly if a MAC address is unique within
its local network segment, but a duplicate MAC appearing somewhere else shouldn't cause any problems. By extension, a duplicate BSSID appearing somewhere else shouldn't cause any problems that I can think of.
So my question is, would it help Arlen's quest for privacy if he were to choose a MAC, and thus a BSSID, that already exists somewhere else and
is already present in the database? When someone does a query on that
BSSID, would they get the first result, or all results? I wonder if
Arlen has checked for duplicate BSSID entries in his favorite database.
*Many years ago, where I worked we trialed a piece of software that intentionally used the same IP address and MAC address on every server
in the pool. That violates everything we're taught about network
addressing, but it didn't cause any problems. It simply moved certain
tasks farther up the network stack. We ended up buying and deploying
that software into our production network.
*Many years ago, where I worked we trialed a piece of software that intentionally used the same IP address and MAC address on every server
in the pool. That violates everything we're taught about network
addressing, but it didn't cause any problems. It simply moved certain
tasks farther up the network stack. We ended up buying and deploying
that software into our production network.
Certainly that
ability to change the BSSID of the access point exists in pro routers.
But what matters is not the router but the Wi-Fi chipset and the driver.
So what are you asking me to answer?
For a named person, if you already know where they live, you know their location, if you don't know where the live, Apple's database doesn't
help you find out. Even if you find their router's BSSID, why do you
ant to wait years until they move home, just so you can track where they move to?
a. Are you disputing I have the named owner of every home in the USA?
Situation is a bit different here, there's the electoral roll which will list everyone's address, but many people opt to tick the "privacy" box
so that isn't public information, there's also the land registry but
homes which have not recently changed hands are not required to be registered, and you have to pay to see each record.
b. Or are you disputing I have the BSSID of every home in the USA?
I don't think you have it in such a cut-and-dried format, you've tied
things together by implication.
If your name was, oh, let's say Jeffrey Devin, and if you put that router
in the home that you own at 4306 Josey Circle, then I can track that AP
anywhere in the world if you then moved to another home, and took your
router with you. c. Are you disputing I can track the location of that
AP BSSID, Andy?
But the BSSIDs are unique, people's names are not, how easy would it be
for you to link to SSNs?
Note that by tracking the BSSID and knowing the owner of every home in the >> USA (since that's a public record), I could tie it to you "if" you're the
owner. If you only rented the home, then I'd need more data to tie it to
you.
But in the USA, overwhelmingly, people own the home they live in.
So it's tied to the owner. Who, in this case, would be you.
For anyone who runs their own business, the companies house data is
another source of addresses,
Would it not?
It would be easier for you to find my address by *not* using Apple's database ...
Char,
It helps greatly if a MAC address is unique within its local
network segment,
I would say that!
Examples of 'puters who could not communicate over the LAN because either >their ethernet-cards MAC was already present, or they had a hard-set IP that >clashed are aplenty.
but a duplicate MAC appearing somewhere else shouldn't cause
any problems.
As long as it would not be a duplicate there, you would be correct. :-)
There are a few problems with your suggestion though : it only works for >devices that do not move around, which would make Arlens statement that he >can track anyone a bit of a joke.
If they hoever *do* move around (hello smartphones!) there is a rather good >chance that they will, sometimes, enter a network segment where their BSSID >is alread present - which could lead to a denial of service for one, or even >all of the devices being copies of each other.
*Many years ago,...
it didn't cause any problems. It simply moved certain
tasks farther up the network stack
I think it did a bit more. Like negotiating which server would handle the >request, and how to mark it that a certain ethernet packet was part of an >ongoing conversation with a specific server.
iow, all those servers would need to /activily work together/ so they would >not yell over each other and try to hijack each others conversations.
You know, it does sound odd : that sofware (that was bought) would need to >add markers to make sure ongoing conversations would go to the server which >first serviced it, in effect duplicating what the ethernet MAC and the >puters IP are for ...
thanks for the discussion. Happy New Year!
but I remember the servers having dual NICs, with one dedicated
as sort of a mesh, where they disambiguated and de-duped everything,
Arlen says the whole idea that I tossed out above is a non-starter,
Happy New Year!
but a duplicate MAC appearing somewhere else shouldn't
cause any problems.
As long as it would not be a duplicate there, you would be
correct. :-)
I was thinking that the chance of that kind of collision would
be exceedingly low, but statistics were never my strength.
Arlen,
[quote=me]
Tell that to all the poor city-dwellers who predominanty rent they places. >>
Who are, by the way, in close proximity and often stacked several
layers ontop of each other.
As my thoughts went over to the "well off" city-dwellers who own the >appartments they live in, I realized that they too often live stacked that >way, sometimes in high-rises of 20 stories or more, with penthouses ontop.
Your Apple-database location data in such cases ? Useless.
Regards,
Rudy Wieser
Adding location information to DNS, DHCP, SNMP etc have been proposed....
An early scheme is RFC 1712
proposed in 1994. Its now more than 36 years later
Char Jackson <none@none.invalid> wrote:
On Mon, 22 Dec 2025 18:00:14 +0000, Andy Burns <usenet@andyburns.uk>
wrote:
Marian wrote:
I (can) have every access point location
in the world (over 2 billion) if I felt like getting it (and storing it).
But which of those 2 billion belong to me?
Well, *you* know which it is, and ve haf vays of making you talk, so...
Do *you* know your MAC address if presented with a list? I certainly don't.
It would be easier just to ask me for my physical address.
https://en.wiktionary.org/wiki/ve_haf_vays_of_making_you_talk
Am surprised there isn't a reference to the 80's comedy show 'Allo 'Allo!
Jeff,
Adding location information to DNS, DHCP, SNMP etc have been proposed....
An early scheme is RFC 1712
proposed in 1994. Its now more than 36 years later (which is, for >technology, a loooong time), and nothing like it has been implemented.
Maybe that is because there is no automated way to determine the "floor >number". Especially for devices which task it is to do DNS, DHCP and so
on - those do not even contain hardware to determine their own X/Y location.
I must say that that RFC does have a joke smell to it. You know, like the >"I'm a teapot" HTTP status, the "evil bit" for ethernet packets and lets not >forget "IP over avian carriers" (which, by the way /does/ work).
And although most/all smartphones do have a GPS, those are notoriously bad >at determing elevation (which is not really a surprise, if you look at where >the GPS satelites are located in relation to the GPS receiver).
Regards,--
Rudy Wieser
And happy year to you - and everyone else here. :-)
Maybe that is because there is no automated way to determine the
"floor number". Especially for devices which task it is to do
DNS, DHCP and so on - those do not even contain hardware to
determine their own X/Y location.
Quoting myself: "Note that the data does not need to be derived
from GPS data. Since it doesn't change (often), it could be
entered into the database when the DNS record was created."
I suggest you not pass judgment on technology that you
might consider old and instead concentrate on whether
they might actually work.
That's true which is why sports GPS receivers often include a
barometric altimeter:
| Sysop: | Amessyroom |
|---|---|
| Location: | Fayetteville, NC |
| Users: | 54 |
| Nodes: | 6 (0 / 6) |
| Uptime: | 17:43:50 |
| Calls: | 742 |
| Files: | 1,218 |
| D/L today: |
4 files (8,203K bytes) |
| Messages: | 184,414 |
| Posted today: | 1 |
