From Newsgroup: comp.mobile.android

Chris wrote:

No you don't. You said you could track me "if you were a bad guy". I gave
you permission and you could do nothing. Your paranoia is baseless.

https://github.com/darkosancanin/apple_bssid_locator

Let's say someone walks into the store to buy a router, and I watch them, knowing the router BSSID is printed on the box (so I write it down).

Until they retire that router, I can find where they installed that router,
and it will be most likely where they live.

darkosancanin/apple_bssid_locator (GitHub)

Python tool to look up AP
locations from Appleos WPS.

Queries by BSSID and returns
coordinates.

Shows how App'eos API can return results without SSID values.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05 06:06, Char Jackson wrote:

On Wed, 3 Dec 2025 20:25:49 +0100, "Carlos E.R."
<robin_listas@es.invalid> wrote:

Instead, the current router has a very simple admin page with password
(printed in a label underneath the router) and help pages, and an
advanced setup that asks "are you sure"? but has the same password and
no help pages. And a complex setup.


Wifi (ssid/pass), typeof security, and channel
WiFi+
WiFi for guests (ssid/pass, type of security

Ports to open to what local machine

LAN map
LAN config (gateway, mask, dhcp on/off, range, dns1 dns2)

Config is multiple (with NAT) or single post (transparent router)

IPv6 (dhcp mode, ports, filter)

router password

Firmware updates

Other (write/read profile, factory reset, wifi factory reset, firewall
disable, universal UPnP enable/disable.

Help

Advnced.

I don't see anything complex there, but we don't all have the same background.

Because that is the simple setup mode. You don't see there the virtual networks (VLANS) it has, for instance.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05 02:05, Marian wrote:

Chris wrote:

No you don't. You said you could track me "if you were a bad guy". I gave
you permission and you could do nothing. Your paranoia is baseless.

https://github.com/darkosancanin/apple_bssid_locator

Let's say someone walks into the store to buy a router, and I watch them, knowing the router BSSID is printed on the box (so I write it down).

From a label where the MAC address is typically written in tiny type...
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05, Alan <nuh-uh@nope.com> wrote:

On 2025-12-05 02:05, Marian wrote:

Chris wrote:

No you don't. You said you could track me "if you were a bad guy". I gave >>> you permission and you could do nothing. Your paranoia is baseless.

https://github.com/darkosancanin/apple_bssid_locator

Let's say someone walks into the store to buy a router, and I watch them,
knowing the router BSSID is printed on the box (so I write it down).

From a label where the MAC address is typically written in tiny type...

I just ran this script with the BSSID of my WiFi access point, and it
couldn't locate it:

Searching for location of bssid: [redacted]
The bssid was not found.

Another nothing burger from little Arlen. YAWN...
--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

I'm guessing that was composed when Google Groups was still operating?
If it was, maybe you might want to amend it ...
--
J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf

You need 10 wise men to get back a rock thrown in a lake by an idiot
- Romanian proverb (tweeted by Ovidiu S @plount_os 2023-2-6)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

No you don't. You said you could track me "if you were a bad guy". I gave
you permission and you could do nothing. Your paranoia is baseless.

https://github.com/darkosancanin/apple_bssid_locator

Let's say someone walks into the store to buy a router, and I watch them, knowing the router BSSID is printed on the box (so I write it down).

Until they retire that router, I can find where they installed that router, and it will be most likely where they live.

So you can only track me if you physically sell me the router in a shop and write down the MAC address?

I think I'll cope with that very serious potential privacy risk.
Fortunately it's not the 1990s anymore.

It still just boils down to knowing my home address. Which is already
public knowledge.

darkosancanin/apple_bssid_locator (GitHub)

Python tool to look up AP
locations from ApplerCOs WPS.

Queries by BSSID and returns
coordinates.

Shows how App'erCOs API can return results without SSID values.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating?
If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so
it stays.
--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05, Chris <ithinkiam@gmail.com> wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

No you don't. You said you could track me "if you were a bad guy". I gave >>> you permission and you could do nothing. Your paranoia is baseless.

https://github.com/darkosancanin/apple_bssid_locator

Let's say someone walks into the store to buy a router, and I watch them,
knowing the router BSSID is printed on the box (so I write it down).

Until they retire that router, I can find where they installed that router, >> and it will be most likely where they live.

So you can only track me if you physically sell me the router in a shop and write down the MAC address?

Even then it's not guaranteed to work. I just ran the script and plugged
my BSSID in and got nothing. Efye
--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025/12/5 19:56:5, Jolly Roger wrote:

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating?>> If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so
it stays.

I wasn't bitching - just suggesting you might not want to appear
out-of-date (how long is it now since Google Groups posts ceased
appearing?); it doesn't _bother_ me.
--
J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Jolly Roger wrote:

From a label where the MAC address is typically written in tiny type...

I just ran this script with the BSSID of my WiFi access point, and it couldn't locate it:

Searching for location of bssid: [redacted]
The bssid was not found.

Which "script" did you run?
On what platform?

I ran the python script using Windows 10 but I had to add the protobuf
5.29.4 archive to get it to work. Did you run it on the macOS and which
version of Python did you run if you ran that Python Github script?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

It still just boils down to knowing my home address. Which is already
public knowledge.

Hi Chris,

You're smarter than that.

I get it that all the Apple trolls are desperate to minimize the privacy implications of what has widely been reported as a privacy nightmare.

You Apple trolls always defend everything Apple to the death.
No matter what.

So it's natural that you and Jolly Roger claim that Apple's invasion of our privacy is, in the words of Jolly Roger "a nothing burger".

But you need to realize privacy professionals out there disagree with you.
*Why Your Wi-Fi Router Doubles as an Apple AirTag*
<https://krebsonsecurity.com/2024/05/why-your-wi-fi-router-doubles-as-an-apple-airtag/>

For you Apple trolls to claim the security professionals are wrong is your
own way of defending everything Apple does, to the death, no matter what.
*Surveilling the Masses with Wi-Fi-Based Positioning Systems*
<https://par.nsf.gov/servlets/purl/10540853>

Luckily, of all the Apple trolls, you're one who sometimes can exercise critical thinking processes, so allow me to give you a local example.

Since WaveDigger has a special query mode where you can enter a single SSID
or BSSID, and instead of just returning that access point's location, it
also pulls in the surrounding access points that Apple's Wi-Fi Positioning System has observed in the same area.... just... try this...

Windows:
1. Press Win+R
2. Type: cmd
3. In the command prompt, type:
netsh wlan show networks mode=bssid
4. Look for your SSID name
5. Under it, find "BSSID" lines
6. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

Linux:
1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

MacOS:
1. Open a terminal
2. Type: airport -s
3. Find your SSID in the list
4. Copy the BSSID shown (format: AA:BB:CC:DD:EE:FF)

Once you have the BSSID, you can paste it into WaveDigger lookup tool.
1. Open the WaveDigger site:
https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
If you enable "include surrounding access points",
it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves to a
new house, you can track them if they use their router at the new home.
--
Privacy takes intelligence to understand, but most people give up.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

It still just boils down to knowing my home address. Which is already
public knowledge.

Hi Chris,

You're smarter than that.

I get it that all the Apple trolls are desperate to minimize the privacy implications of what has widely been reported as a privacy nightmare.

You Apple trolls always defend everything Apple to the death.
No matter what.

So it's natural that you and Jolly Roger claim that Apple's invasion of our privacy is, in the words of Jolly Roger "a nothing burger".

But you need to realize privacy professionals out there disagree with you.
*Why Your Wi-Fi Router Doubles as an Apple AirTag*
<https://krebsonsecurity.com/2024/05/why-your-wi-fi-router-doubles-as-an-apple-airtag/>

For you Apple trolls to claim the security professionals are wrong is your own way of defending everything Apple does, to the death, no matter what.
*Surveilling the Masses with Wi-Fi-Based Positioning Systems*
<https://par.nsf.gov/servlets/purl/10540853>

Luckily, of all the Apple trolls, you're one who sometimes can exercise critical thinking processes, so allow me to give you a local example.

Since WaveDigger has a special query mode where you can enter a single SSID or BSSID, and instead of just returning that access point's location, it
also pulls in the surrounding access points that Apple's Wi-Fi Positioning System has observed in the same area.... just... try this...

Windows:
1. Press Win+R
2. Type: cmd
3. In the command prompt, type:
netsh wlan show networks mode=bssid
4. Look for your SSID name
5. Under it, find "BSSID" lines
6. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

Linux:
1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

MacOS:
1. Open a terminal
2. Type: airport -s
3. Find your SSID in the list
4. Copy the BSSID shown (format: AA:BB:CC:DD:EE:FF)

Once you have the BSSID, you can paste it into WaveDigger lookup tool.
1. Open the WaveDigger site:
https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
If you enable "include surrounding access points",
it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves to a
new house, you can track them if they use their router at the new home.

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

From WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On Fri, 5 Dec 2025 11:06:25 +0100, "Carlos E.R."
<robin_listas@es.invalid> wrote:

On 2025-12-05 06:06, Char Jackson wrote:

<snip>

I don't see anything complex there, but we don't all have the same
background.

Because that is the simple setup mode. You don't see there the virtual >networks (VLANS) it has, for instance.

In the early 2000s I used to think that dd-wrt router firmware was
complex, but the fog clears over time. It includes vlans, among many
other things.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 6/12/2025 11:11 am, J. P. Gilliver wrote:

On 2025/12/5 19:56:5, Jolly Roger wrote:

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating?
If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so
it stays.

I wasn't bitching - just suggesting you might not want to appear
out-of-date (how long is it now since Google Groups posts ceased
appearing?); it doesn't _bother_ me.

I'm guessing 10'ish months since Google cut UseNet lose!!
--
Daniel70
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-06 05:59, Char Jackson wrote:

On Fri, 5 Dec 2025 11:06:25 +0100, "Carlos E.R."
<robin_listas@es.invalid> wrote:

On 2025-12-05 06:06, Char Jackson wrote:

<snip>

I don't see anything complex there, but we don't all have the same
background.

Because that is the simple setup mode. You don't see there the virtual
networks (VLANS) it has, for instance.

In the early 2000s I used to think that dd-wrt router firmware was
complex, but the fog clears over time. It includes vlans, among many
other things.

When I say that my ISP setup of the router is complex, I mean things
like that the setup includes 3 active VLANs, and more things. If I buy
my own router, first I have to decode out the entire setup of the old
router, and then replicate it in the new router. Ie, create again those
3 VLANs, and every other thing they did, which are not documented. You
have to reverse engineer the setup of the provided router.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-06 02:18, Alan wrote:

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

Since WaveDigger has a special query mode where you can enter a single
SSID
or BSSID, and instead of just returning that access point's location, it
also pulls in the surrounding access points that Apple's Wi-Fi
Positioning
System has observed in the same area.... just... try this...

Linux:

1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

iwlist scan | grep "Address:\|SSID"

...

Once you have the BSSID, you can paste it into WaveDigger lookup tool.
1. Open the WaveDigger site:
-a-a-a https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
-a-a-a 11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
-a-a-a If you enable "include surrounding access points",
-a-a-a it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves to a
new house, you can track them if they use their router at the new home.

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

From WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there is
no warranty that it is accurate.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

It still just boils down to knowing my home address. Which is already
public knowledge.

Hi Chris,

You're smarter than that.

You're not, though.

I get it that all the Apple trolls are desperate to minimize the privacy implications of what has widely been reported as a privacy nightmare.

Only you are making out that it is a privacy nightmare and it drives you to change your behaviour.

It has no negative impact on ordinary people.

We now know from your inability to come up with a way to actually track me
that what is required is knowledge of a WAP's MAC address. This is only
known by being in direct contact with the WAP (to read the sticker) or connected to it. Both of which mean you'll find out the location when you
are AT THE LOCATION.

You're a moron if you think this is a problem.

You Apple trolls always defend everything Apple to the death.
No matter what.

Incorrect. You're pushing an invalid narrative, which needs to be
addressed.

So it's natural that you and Jolly Roger claim that Apple's invasion of our privacy is, in the words of Jolly Roger "a nothing burger".

But you need to realize privacy professionals out there disagree with you.
*Why Your Wi-Fi Router Doubles as an Apple AirTag*
<https://krebsonsecurity.com/2024/05/why-your-wi-fi-router-doubles-as-an-apple-airtag/>

That's a clickbait article. Nowhere does it explain how a domestic, mains powered router is like a battery powered device that fits on a keychain.

To many people Airtags and the like are a *good* thing. Mullins have been
sold.

The only real scenario they demonstrate as being a genuine risk is being in
a warzone like Ukraine and Gaza. Again, of no relevance to 99.999% of
people. Am pretty sure the Santa Cruz mountains aren't awarzone.

For you Apple trolls to claim the security professionals are wrong

Incorrect. No-one is saying that. We're saying you're wrong. As per usual.

is your
own way of defending everything Apple does, to the death, no matter what.
*Surveilling the Masses with Wi-Fi-Based Positioning Systems*
<https://par.nsf.gov/servlets/purl/10540853>

Luckily, of all the Apple trolls, you're one who sometimes can exercise critical thinking processes, so allow me to give you a local example.

Since WaveDigger has a special query mode where you can enter a single SSID or BSSID, and instead of just returning that access point's location, it
also pulls in the surrounding access points that Apple's Wi-Fi Positioning System has observed in the same area.... just... try this...

Windows:
1. Press Win+R
2. Type: cmd
3. In the command prompt, type:
netsh wlan show networks mode=bssid
4. Look for your SSID name
5. Under it, find "BSSID" lines
6. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

Untested.

Linux:
1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

"enp0s1 Interface doesn't support scanning"

MacOS:
1. Open a terminal
2. Type: airport -s
3. Find your SSID in the list
4. Copy the BSSID shown (format: AA:BB:CC:DD:EE:FF)

"zsh: command not found: airport"

Looks like chatgpt has let you down again. lol.

For someone who claims to test so many things on a daily basis and is a self-proclaimed expert you don't half fail an awful lot.

Amazon should ask for their money back for your "reviews". Oh wait they
can't, because you give away your time to a multi-billion dollar company
for free!! What an utter moron.

Once you have the BSSID, you can paste it into WaveDigger lookup tool.
1. Open the WaveDigger site:
https://wavedigger.networksurvey.app/?tab=bssid

Crashes Firefox in my ubuntu VM. <sigh>

2. In the "BSSID" field, type your MAC address:
11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
If you enable "include surrounding access points",
it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves to a
new house, you can track them if they use their router at the new home.

My neighbours are in their 70s and 80s. They aren't moving anywhere with
their routers. Given I get on with my neighbours they would *tell* me where they're going anyway with no need for any subterfuge.

Honestly, your world sounds *exhausting*.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-06 13:58, Chris wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Linux:
1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

"enp0s1 Interface doesn't support scanning"

This Linux command is correct, except that it tries all network
interfaces, including some that work for the purpose and some that do
not. And on those it prints that informative error message.

XXX:~ # iwlist scan
lo Interface doesn't support scanning.

eth0 Interface doesn't support scanning.

wlan1 Scan completed :
Cell 01 - Address: AA:BB:CC:DD:EE:FF
Channel:116
Frequency:5.58 GHz (Channel 116)
Quality=70/70 Signal level=-28 dBm
Encryption key:on
ESSID:"Some name"
...
...
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. <robin_listas@es.invalid> wrote:

On 2025-12-06 13:58, Chris wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Linux:
1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

"enp0s1 Interface doesn't support scanning"

This Linux command is correct, except that it tries all network
interfaces, including some that work for the purpose and some that do
not. And on those it prints that informative error message.

XXX:~ # iwlist scan
lo Interface doesn't support scanning.

eth0 Interface doesn't support scanning.

wlan1 Scan completed :
Cell 01 - Address: AA:BB:CC:DD:EE:FF
Channel:116
Frequency:5.58 GHz (Channel 116)
Quality=70/70 Signal level=-28 dBm
Encryption key:on
ESSID:"Some name"
...
...

Ah, thanks. That'll be because in the VM there isn't a wlan.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

From WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there is
no warranty that it is accurate.

Where I live, it's so accurate as to make my heart palpitate in shock.

However, I see what Alan Baker wrote based on your inclusion of his post,
but he's dead wrong (as always), but I can't fault Alan Baker for being
dead wrong about everything as his IQ is well below anything normal.

For people like you, Chris, I can point out that when I look at the
database, given our homes are far apart, it's trivial to identify the exact neighbor with the exact BSSID.

So while you must be aware I don't advocate tracking your neighbors, one
answer to your question of how I could track YOU is if you were one of my neighbors.

If YOU were one of my neighbors, that query would show me exactly where YOU live and exactly what your BSSID is, which I could use to track you for as
long as you use that particular router.

For example, if you moved away, but if you re-used your router, then I
would know EXACTLY where you lived, if you moved to another sparse location such as mine is.

I did NOT check for access points in the middle of Los Angeles though,
where I'd suspect Alan Baker's comment is more apropos given the density of access points would be far greater than it is out here in the boonies.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

Only you are making out that it is a privacy nightmare and it drives you to change your behaviour.

<https://www.cs.umd.edu/~dml/papers/wifi-surveillance-sp24.pdf>
"In this work, we show that Apples WPS implementation
can easily be abused to create a serious privacy threat
on a global scale."

It has no negative impact on ordinary people.

I get it that you Apple trolls always defend Apple to the death, no matter what, but all I will ask of you (given the listing above) is for you to...

*Find even a single security researcher who agrees with you.*

<https://www.govinfosecurity.com/surveillance-risk-apples-wifi-based-positioning-system-a-25330>
"The attack risk stems from Apple's WiFi-based Positioning System"

We now know from your inability to come up with a way to actually track me that what is required is knowledge of a WAP's MAC address. This is only
known by being in direct contact with the WAP (to read the sticker) or connected to it. Both of which mean you'll find out the location when you
are AT THE LOCATION.

Notice that, where I live, in the mountains high above Silicon Valley, the query we discussed prior shows EXACTLY the EXACT BSSID of all my neighbors.

It's EXACT, Chris.
It's horrifyingly exact, Chris.

I almost had a heart attack when I saw how clearly I could identify each
and every one of my neighbors by their exact location and BSSID, Chris.

What's worse, since Apple's WPS database has no security control
whatsoever, anyone in the world can do easily what I just did, Chris.

All of us can be tracked. And it's not just me saying it.
Read the papers, Chris. Read them.

*Find even a single security researcher who agrees with you.*

<https://arxiv.org/abs/2405.14975>
"In this work, we show that Apple's flawed WPS can too easily be abused"

You're a moron if you think this is a problem.

It's a given you Apple trolls defend everything Apple does, to the death,
no matter what. And, all you Apple trolls attack the person carrying the
news, because you can't actually attack the news.

So you call me a "moron" only because you hate what Apple did, Chris.

Yet, all I'm asking you to do, Chris... is...
*Find even a single security researcher who agrees with you.*

<https://www.bizcommunity.com/article/apple-may-have-turned-wi-fi-routers-into-a-privacy-threat-239637a>
"Researchers from the University of Maryland have uncovered a
significant privacy vulnerability in Apple's Wi-Fi-based
Positioning System (WPS). This vulnerability enables attackers
to track devices globally by exploiting the way Apple's WPS
operates, raising serious privacy concerns."

You Apple trolls always defend everything Apple to the death.
No matter what.

Incorrect. You're pushing an invalid narrative, which needs to be
addressed.

You Apple trolls defend Apple to the death, no matter what.
And you call all security narratives "invalid" becuase you hate that
Apple did what Apple did, which you hate. So you call me a "moron".

And you call all security concerns "invalid".
And yet, you can't find a single security professional who agrees with you.

<https://www.theregister.com/2024/05/23/apple_wifi_positioning_system/>
"The threat applies even to users that do not own devices
for which the WPSes are designed - individuals who own no Apple
products, for instance, can have their AP in Apple's WPS merely
by having Apple devices come within Wi-Fi transmission range."

But you need to realize privacy professionals out there disagree with you. >> *Why Your Wi-Fi Router Doubles as an Apple AirTag*
<https://krebsonsecurity.com/2024/05/why-your-wi-fi-router-doubles-as-an-apple-airtag/>

That's a clickbait article. Nowhere does it explain how a domestic, mains powered router is like a battery powered device that fits on a keychain.

Well, Brian Krebs is a well-known well-respected researcher, is he not?

And besides, it's not just Bran Krebs making the points that you hate. <https://cybernews.com/privacy/apple-beams-wifi-location-data-privacy-risk/>
"Anyone can exploit Apple's flawed WiFi-based positioning system (WPS)*

To many people Airtags and the like are a *good* thing. Mullins have been sold.

Well, you defend everything Apple does to the death, Chris.
So it's natural that you'll try to dismiss the severity of this issue.

But you can't find a single security professional who agrees with you.
<https://securityboulevard.com/2024/05/apple-wi-fi-location-privacy-richixbw/>
"An unrestricted Apple API endpoint allows for easy tracking."

The only real scenario they demonstrate as being a genuine risk is being in
a warzone like Ukraine and Gaza. Again, of no relevance to 99.999% of
people. Am pretty sure the Santa Cruz mountains aren't awarzone.

Well, again, since you're an Apple troll, you are desperate to minimize the adverse impact of everything that Apple does that you internally hate.

But the fact is you can't find any security pros who agree with you.
<https://www.macworld.com/article/2343297/apple-wi-fi-network-wps-vulnerability-location-services-leak.html>
"Researchers have discovered a crucial vulnerability
in the way only Apple's location services work"

For you Apple trolls to claim the security professionals are wrong

Incorrect. No-one is saying that. We're saying you're wrong. As per usual.

Again, since you're an Apple troll, you defend everything Apple does,
to the death, no matter what, even to the point of attacking me.

You Apple trolls attack me because you hate the truth about Apple.
You hate that Apple never does what Apple "says" it does.

Hence, I take it in stride that you hate me for quoting the truth.

*Find even a single security researcher who agrees with you.*

<https://9to5mac.com/2024/05/24/apple-location-services-vulnerability/>
"We need to understand Apple devices figure out locations differently"
"There is one crucial difference between the way in which
Apple and Google devices carry out this task
and that's exactly where the privacy issue arises."

Amazon should ask for their money back for your "reviews". Oh wait they can't, because you give away your time to a multi-billion dollar company
for free!! What an utter moron.

Well, I take it in stride that you Apple trolls hate your lack
of intelligence, so you attack me because you hate that I'm not
like you.

In fact, I've told you many times to not make the mistake of
ever thinking that you Apple trolls are anything like I am.

The very fact Amazon selected me, where they only choose the top
half million or so reviewers to invite to Vine, says something.

Honestly, your world sounds *exhausting*.

It's hard for me to respond to that feeling other than to understand
your lack of IQ in a sympathetic way that fosters compassion.

You feel that the effort to remain private is exhausting.
And I can sympathize with you.

But the effort to remain free from slavery is also exhausting.
I don't own the mentality of the Sklaven.

In this case, Apple has violated ethical privacy concerns.
It's a legal and moral issue.

I fight for those.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

The very fact Amazon selected me, where they only choose the top
half million or so reviewers to invite to Vine, says something.

I should clarify that Amazon chooses only thousands of people
for the Amazon Vine program where they allow us to order any
item of any cost (up to eight items every single day) as long
as we review 80% of them every half year evaluation period.
<https://amazon.com/vine/about>

On reddit and elsewhere, they've estimated Amazon chooses to invite perhaps only one out of every half million reviewer of products on their site.

Amazon doesn't publish those numbers, but I've asked everyone on these
groups and so far only I have been invited so that shows selectivity.

My only point for clarifying this is that the Apple trolls, who defend everything Apple does, to the death, always love to attack the person.

For example, Chris calls me "a moron" simply for quoting what security professionals wrote. There's no other reason. I posted the truth.

Hence, to Apple trolls like Chris, anyone posting the truth is
"a moron"

So be it.
None of us on Usenet have such a thin skin as to be put off by actions by
these Apple trolls who are desperate to control the narrative on Apple.

They actually hate that Apple does all these things.
But they can't logically find any other way to defend Apple to the death.

But defend Apple to the death they must do.
So, they get personal.

They call anyone speaking the truth about Apple, "a moron".
So be it.

If that's their best defense to the truth about Apple,
then that defense alone tells us what they think about Apple.

Anyone telling the truth about Apple, is, to them, "a moron".
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Carlos E.R. wrote:

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

From WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there is
no warranty that it is accurate.

Where I live, it's so accurate as to make my heart palpitate in shock.

However, I see what Alan Baker wrote based on your inclusion of his post,
but he's dead wrong (as always), but I can't fault Alan Baker for being
dead wrong about everything as his IQ is well below anything normal.

For people like you, Chris,

Again, you're replying to Carlos. Read your own posts, why don't you?

I can point out that when I look at the
database, given our homes are far apart, it's trivial to identify the exact neighbor with the exact BSSID.

So while you must be aware I don't advocate tracking your neighbors, one answer to your question of how I could track YOU is if you were one of my neighbors.

You would do better actually looking out the window. You would then see if
the lights are on or not. That's more useful information than knowing my
MAC.

If YOU were one of my neighbors, that query would show me exactly where YOU live and exactly what your BSSID is, which I could use to track you for as long as you use that particular router.

Can you genuinely not see how ridiculous this sounds?

You're trying claim that using an internet database of anonymous
information is a more serious risk than looking out of your own window.
You're claiming that the telephone books we all used to have are a serious privacy risk worth of a class action suit. LMAO.

For example, if you moved away, but if you re-used your router, then I
would know EXACTLY where you lived, if you moved to another sparse location such as mine is.

That's a lot of "ifs".

I did NOT check for access points in the middle of Los Angeles though,
where I'd suspect Alan Baker's comment is more apropos given the density of access points would be far greater than it is out here in the boonies.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-06 04:24, Carlos E.R. wrote:

On 2025-12-06 02:18, Alan wrote:

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

Since WaveDigger has a special query mode where you can enter a
single SSID
or BSSID, and instead of just returning that access point's location, it >>> also pulls in the surrounding access points that Apple's Wi-Fi
Positioning
System has observed in the same area.... just... try this...

Linux:

1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

iwlist scan | grep "Address:\|SSID"

...

Once you have the BSSID, you can paste it into WaveDigger lookup tool.
1. Open the WaveDigger site:
-a-a-a https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
-a-a-a 11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
-a-a-a If you enable "include surrounding access points",
-a-a-a it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves to a >>> new house, you can track them if they use their router at the new home.

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

-aFrom WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there is
no warranty that it is accurate.

Which means you cannot trust that any information returned is accurate.

Makes for a pretty bad way to track someone...

...assuming you had some way to associate someone's identity with the
BSSID of their WiFi in the first place.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On Sat, 6 Dec 2025 13:08:19 +0100, "Carlos E.R."
<robin_listas@es.invalid> wrote:

On 2025-12-06 05:59, Char Jackson wrote:

On Fri, 5 Dec 2025 11:06:25 +0100, "Carlos E.R."
<robin_listas@es.invalid> wrote:

On 2025-12-05 06:06, Char Jackson wrote:

<snip>

I don't see anything complex there, but we don't all have the same
background.

Because that is the simple setup mode. You don't see there the virtual
networks (VLANS) it has, for instance.

In the early 2000s I used to think that dd-wrt router firmware was
complex, but the fog clears over time. It includes vlans, among many
other things.

When I say that my ISP setup of the router is complex, I mean things
like that the setup includes 3 active VLANs, and more things. If I buy
my own router, first I have to decode out the entire setup of the old >router, and then replicate it in the new router. Ie, create again those
3 VLANs, and every other thing they did, which are not documented. You
have to reverse engineer the setup of the provided router.

I don't see anything complex about setting up consumer networking gear,
but I'll take your word for it.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

I also opt out by adding _optout_ & _nomap to the SSID.
b. This (supposedly) removes my privacy information from the servers

Here is how to opt out of the following databases with your location.
1. Apple
2. Google
3. WiGLE
4. Mozilla
5. OSM
6. Skyhook
7. Microsoft

Since this is designed to help everyone get out of the location databases,
it's important to get them all in a single list. What's missing still?

Apple documents the use of "_nomap" at the end of an SSID to opt out:
<https://support.apple.com/en-us/102515>
"The owner of a Wi-Fi access point can opt it out of
Apple's Location Services iX which prevents its location
from being sent to Apple to include in Apple's crowd-sourced
location database iX by changing the access point's SSID (name)
to end with '_nomap.' For example, 'Access_Point' would be
changed to 'Access_Point_nomap.'"

Google documents the use of "_nomap" at the end of an SSID to opt out:
<https://support.google.com/maps/answer/1725632>
"To opt out, change the SSID (name) of your Wi-Fi access point
(your wireless network name) so that it ends with '_nomap.'
For example, if your SSID is '12345,' you would change it
to '12345_nomap.'"

WiGLE documents the use of "_nomap" or "_optout" at the end of an SSID.
<https://wigle.net/phpbb/viewtopic.php?t=2330>
"WiGLE automatically hides networks... with these _nomap
and/or _optout tags in the ssid."

Mozilla documented the use of "_nomap" at the end of an SSID to opt out. They're the only ones who documented the hidden option to opt out.
Mozilla Location Service
<https://en.wikipedia.org/wiki/Mozilla_Location_Service>
"Mozilla's client applications do not collect information
about WiFi access points whose SSID is hidden or ends with
the string '_nomap' (e.g. 'Simpson-family-wifi_nomap')."

OpenWLANMap documented the use of "_nomap" at the end of an SSID:
<https://github.com/openwifi-su/OpenWLANMap-App>
"The app includes the following functionalities:
- Scanning the wifi in the surrounding and
filtering out those wifis _nomap"

Skyhook (now Qualcomm) documented their optout policy here:
<https://www.qualcomm.com/site/privacy/skyhookprivacy>
"MAC Addresses: If users wish to opt out of Skyhook's use
of the Wi-Fi access point's MAC address to provide location,
users may opt-out by clicking here.
<https://www.qualcomm.com/site/privacy/qualcommtpsoptout>
If users choose to opt out, Skyhook will blacklist that MAC address
to not use that MAC address information in the future.

IP Addresses: If users wish to opt out of Skyhookias use
of the home IP address, users may opt-out by clicking here.
<https://www.qualcomm.com/site/privacy/qualcommtpsoptout>
If you choose to opt out, Skyhook will blacklist that IP address
to not use that IP address in the future

Microsoft does not use the _nomap suffix. Instead, you must provide the MAC address of your Wi-Fi access point to Microsoftias block list. <https://account.microsoft.com/privacy/location-services-opt-out>
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Only you are making out that it is a privacy nightmare and it drives you to >> change your behaviour.

<https://www.cs.umd.edu/~dml/papers/wifi-surveillance-sp24.pdf>
"In this work, we show that Apples WPS implementation
can easily be abused to create a serious privacy threat
on a global scale."

As you well know the scenarios shown are disasters or warzones. Which
aren't of relevance to civilians as they have far more serious issues to
worry about.

They also report that 0.06% of all APs moved month to month. That's a
really poor hit rate for "tracking" people.

It has no negative impact on ordinary people.

I get it that you Apple trolls always defend Apple to the death, no matter what, but all I will ask of you (given the listing above) is for you to...

*Find even a single security researcher who agrees with you.*

<https://www.govinfosecurity.com/surveillance-risk-apples-wifi-based-positioning-system-a-25330>
"The attack risk stems from Apple's WiFi-based Positioning System"

We now know from your inability to come up with a way to actually track me >> that what is required is knowledge of a WAP's MAC address. This is only
known by being in direct contact with the WAP (to read the sticker) or
connected to it. Both of which mean you'll find out the location when you
are AT THE LOCATION.

Notice that, where I live, in the mountains high above Silicon Valley, the query we discussed prior shows EXACTLY the EXACT BSSID of all my neighbors.

It's EXACT, Chris.
It's horrifyingly exact, Chris.

I almost had a heart attack when I saw how clearly I could identify each
and every one of my neighbors by their exact location and BSSID, Chris.

That is the exact point of it. It would be a pretty terrible service if it couldn't identify unique buildings within 40 acre plots. lol.

What's worse, since Apple's WPS database has no security control
whatsoever, anyone in the world can do easily what I just did, Chris.

All of us can be tracked. And it's not just me saying it.
Read the papers, Chris. Read them.

Literally says 0.06% of APs move . That's nowhere near "all of us".

*Find even a single security researcher who agrees with you.*

<https://arxiv.org/abs/2405.14975>
"In this work, we show that Apple's flawed WPS can too easily be abused"

You're a moron if you think this is a problem.

It's a given

You remove context and distort.

But you need to realize privacy professionals out there disagree with you. >>> *Why Your Wi-Fi Router Doubles as an Apple AirTag*
<https://krebsonsecurity.com/2024/05/why-your-wi-fi-router-doubles-as-an-apple-airtag/>

That's a clickbait article. Nowhere does it explain how a domestic, mains
powered router is like a battery powered device that fits on a keychain.

Well, Brian Krebs is a well-known well-respected researcher, is he not?

Argument to authority. Invalidates everything else you say.

Please explain how the title isn't clickbait?





--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg <this@ddress.is.invalid> wrote:

Andy Burns <usenet@andyburns.uk> wrote:

Frank Slootweg wrote:

Andy Burns wrote:

In the UK (and I assume wider within Europe) many ISPs do remote
provisioning using TR-069 protocol.

Do you know the extent of that "provisioning", i.e. what they can and
can not do?

quite likely change all settings and do firmware updates, reboots

They only have to access to WAN side settings or global things like
firmware updates or full resets.

Also of the router part, i.e. router settings, passwords, IP settings, etc.?

If so, how is the user's ('LAN') still his/hers and still secure? How
about the user being liable for any abuse/misuse from the ISP's side/ personel?

The LAN is still yours and separate.

Over time (some 20+ years), my modem/router devices have either been
installed by an on-site technician (probably two times) or by myself,
i.e. they ship a replacement modem/router (sometimes with things like
cables, adapters, outlets, etc.) and I install it (probably three or
more times).

I generally start with the ISP's device, then migrate to my own device,
but the I've stayed with same ISP since 2004

Over time, I have used two of my own routers. The first one was
needed, because the modem only had one hardwired connection. The second, because the first was too slow (bps). After that, I've used the ISP's built-in routers because they offered sufficient functionality. And yes,
also since about that time (March 2003 actually).

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

Here is how to opt out of the following databases

Going chinese? You've swapped into charset="big5" and the weird italic
font that usually uses.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Char Jackson wrote:

In the early 2000s I used to think that dd-wrt router firmware was
complex, but the fog clears over time. It includes vlans, among many
other things.

When I say that my ISP setup of the router is complex, I mean things
like that the setup includes 3 active VLANs, and more things. If I buy
my own router, first I have to decode out the entire setup of the old >>router, and then replicate it in the new router. Ie, create again those
3 VLANs, and every other thing they did, which are not documented. You >>have to reverse engineer the setup of the provided router.

I don't see anything complex about setting up consumer networking gear,
but I'll take your word for it.

I agree with Char Jackson, who has helped me over the years to set up old Linksys & Netgear routers on DD-WRT as bridges (and as bridge repeaters).

As Char Jackson noted, working with routers is something we've done since,
oh, I don't know, about 2002 when the first Linksys WRT-54G was released.
<https://en.wikipedia.org/wiki/Linksys_WRT54G_series>

In the early days the WRT-54G had enough memory to flash DD-WRT on it
so we learned a lot when we retired the router & repurposed them as a
wireless client bridge repeater or access point wired or wireless repeater.

Over those two decades of constantly flashing routers, "the fog clears over time", such that we don't consider router setup to be difficult (and, in
fact, we flash our own routers with DD-WRT whenever we can).

In all those years, I haven't explicitly run into VLANs but implicitly many guest networks and repeater bridges make use of VLANs as far as I'm aware.

Moving forward, I'm sure many IoT devices can be placed on their own VLAN
to minimize security risks. Parental controls may involve VLANs also.

Apparently some ISPs configure VLANs automatically for services like IPTV
or VoIP. And, from looking it up just now, in prosumer/enterprise routers (Ubiquiti, MikroTik, Cisco, etc.), VLANs are often part of the setup.

However, in my experience, in a basic home setup, we probably don't need to explicitly worry about VLANs as our router implicitly handles it invisibly (e.g., the guest network).
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

In the early days the WRT-54G had enough memory to flash DD-WRT on it

Still have one kicking around ... not powerful enough for anything
useful these days.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-06, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 19:56:5, Jolly Roger wrote:

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating?
If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so
it stays.

I wasn't bitching

It's not about you.
--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07 17:51, Marian wrote:

Char Jackson wrote:

In the early 2000s I used to think that dd-wrt router firmware was
complex, but the fog clears over time. It includes vlans, among many
other things.

When I say that my ISP setup of the router is complex, I mean things
like that the setup includes 3 active VLANs, and more things. If I buy
my own router, first I have to decode out the entire setup of the old
router, and then replicate it in the new router. Ie, create again those
3 VLANs, and every other thing they did, which are not documented. You
have to reverse engineer the setup of the provided router.

I don't see anything complex about setting up consumer networking gear,
but I'll take your word for it.

I agree with Char Jackson, who has helped me over the years to set up old Linksys & Netgear routers on DD-WRT as bridges (and as bridge repeaters).

It is simple if someone takes the effort of describing what you have to configure in the new router. Not that easy if you have to reverse
engineer the old router and it has no comments nor help. Just the
obscure short name of a setting.


...

In all those years, I haven't explicitly run into VLANs but implicitly many guest networks and repeater bridges make use of VLANs as far as I'm aware.

Nothing implicit. One VLAN is for the phone land line, another is for
TV, another is for internet (my guess).

This is just a small part of what my router calls:

Network Setting
Bridging Setup
Bridging
Filtering
Marking

https://paste.opensuse.org/pastes/7c7fef46eaef https://paste.opensuse.org/pastes/9acdc9974acd https://paste.opensuse.org/pastes/88d9c37538af https://paste.opensuse.org/1aece5657e7a
https://paste.opensuse.org/872479cefbdb
https://paste.opensuse.org/a827cc71d713


just try to explain what that does. A mistake, and my phone stops
working. And there are maybe hundreds of screens like that.


No, I am not actually interested. It is just an example of why I say
that the setup of my router by the ISP is complex.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07 01:10, Alan wrote:

On 2025-12-06 04:24, Carlos E.R. wrote:

On 2025-12-06 02:18, Alan wrote:

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

Since WaveDigger has a special query mode where you can enter a
single SSID
or BSSID, and instead of just returning that access point's
location, it
also pulls in the surrounding access points that Apple's Wi-Fi
Positioning
System has observed in the same area.... just... try this...

Linux:

1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

iwlist scan | grep "Address:\|SSID"

...

Once you have the BSSID, you can paste it into WaveDigger lookup tool. >>>> 1. Open the WaveDigger site:
-a-a-a https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
-a-a-a 11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
-a-a-a If you enable "include surrounding access points",
-a-a-a it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves
to a
new house, you can track them if they use their router at the new home. >>>

Except you won't know WHICH of the BSSIDs that are returned belong to
your neighbours.

-aFrom WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there
is no warranty that it is accurate.

Which means you cannot trust that any information returned is accurate.

Makes for a pretty bad way to track someone...

Much better than looking on the entire world. That's pretty good, actually.

...assuming you had some way to associate someone's identity with the
BSSID of their WiFi in the first place.

--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07 11:54, Carlos E.R. wrote:

On 2025-12-07 01:10, Alan wrote:

On 2025-12-06 04:24, Carlos E.R. wrote:

On 2025-12-06 02:18, Alan wrote:

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

Since WaveDigger has a special query mode where you can enter a
single SSID
or BSSID, and instead of just returning that access point's
location, it
also pulls in the surrounding access points that Apple's Wi-Fi
Positioning
System has observed in the same area.... just... try this...

Linux:

1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

iwlist scan | grep "Address:\|SSID"

...

Once you have the BSSID, you can paste it into WaveDigger lookup tool. >>>>> 1. Open the WaveDigger site:
-a-a-a https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
-a-a-a 11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
-a-a-a If you enable "include surrounding access points",
-a-a-a it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of them moves >>>>> to a
new house, you can track them if they use their router at the new
home.

Except you won't know WHICH of the BSSIDs that are returned belong
to your neighbours.

-aFrom WaveDigger (the site you didn't know about until I told you):

"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side of
the street.

May be 1-2 km away... doesn't mean they all are off. Just that there
is no warranty that it is accurate.

Which means you cannot trust that any information returned is accurate.

Makes for a pretty bad way to track someone...

Much better than looking on the entire world. That's pretty good, actually.

Except you first have to find a way to associate the BSSID with a
particular individual.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025/12/7 17:38:11, Jolly Roger wrote:

On 2025-12-06, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 19:56:5, Jolly Roger wrote:

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating? >>>> If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so >>> it stays.

I wasn't bitching

It's not about you.

In that case, I don't understand your comment.
--
J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf

"Scheisse," said Pooh, trying out his German.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025/12/7 16:6:36, Andy Burns wrote:

Marian wrote:

Here is how to opt out of the following databases

Going chinese? You've swapped into charset="big5" and the weird italic
font that usually uses.

I did wonder; his posts are appearing here (in Thunderbird) in a
different font to everyone else's. It's not italic, and I think it is monospaced; other than that it looks maybe a bit like Times but
stretched vertically.
--
J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07 21:47, Alan wrote:

On 2025-12-07 11:54, Carlos E.R. wrote:

On 2025-12-07 01:10, Alan wrote:

On 2025-12-06 04:24, Carlos E.R. wrote:

On 2025-12-06 02:18, Alan wrote:

On 2025-12-05 16:49, Marian wrote:

Chris wrote:

Since WaveDigger has a special query mode where you can enter a
single SSID
or BSSID, and instead of just returning that access point's
location, it
also pulls in the surrounding access points that Apple's Wi-Fi
Positioning
System has observed in the same area.... just... try this...

Linux:

1. Open a terminal
2. Type: sudo iwlist scan
3. Find your SSID in the output
4. Look for "Address:" lines
5. Copy the MAC address (format: AA:BB:CC:DD:EE:FF)

iwlist scan | grep "Address:\|SSID"

...

Once you have the BSSID, you can paste it into WaveDigger lookup
tool.
1. Open the WaveDigger site:
-a-a-a https://wavedigger.networksurvey.app/?tab=bssid
2. In the "BSSID" field, type your MAC address:
-a-a-a 11:22:33:AA:BB:CC
3. Click the "Lookup" or "Search" button.
4. The map will show the location of that access point.
-a-a-a If you enable "include surrounding access points",
-a-a-a it will also list nearby BSSIDs Apple has observed.

Once you have the BSSID of all your neighbors, if one of
them moves to a new house, you can track them if they use
their router at the new home.

Except you won't know WHICH of the BSSIDs that are returned belong
to your neighbours.

-aFrom WaveDigger (the site you didn't know about until I told you): >>>>>
"Access points shown may be 1-2km away from your click location."

So?

It showed mine just 20 or 30 metres to the west. At the other side
of the street.

May be 1-2 km away... doesn't mean they all are off. Just that there
is no warranty that it is accurate.

Which means you cannot trust that any information returned is accurate.

Makes for a pretty bad way to track someone...

Much better than looking on the entire world. That's pretty good,
actually.

Except you first have to find a way to associate the BSSID with a
particular individual.

Sure.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/7 17:38:11, Jolly Roger wrote:

On 2025-12-06, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 19:56:5, Jolly Roger wrote:

On 2025-12-05, J. P. Gilliver <G6JPG@255soft.uk> wrote:

On 2025/12/5 17:37:43, Jolly Roger wrote:

E-mail sent to this address may be devoured by my ravenous SPAM
filter. I often ignore posts from Google. Use a real news client
instead.

I'm guessing that was composed when Google Groups was still operating? >>>>> If it was, maybe you might want to amend it ...

The last person who bitched about this signature is a resident troll, so >>>> it stays.

I wasn't bitching

It's not about you.

In that case, I don't understand your comment.

Not sure what to tell you.
--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-07 22:11, J. P. Gilliver wrote:

On 2025/12/7 16:6:36, Andy Burns wrote:

Marian wrote:

Here is how to opt out of the following databases

Going chinese? You've swapped into charset="big5" and the weird italic
font that usually uses.

I did wonder; his posts are appearing here (in Thunderbird) in a
different font to everyone else's. It's not italic, and I think it is monospaced; other than that it looks maybe a bit like Times but
stretched vertically.

No, the font used is chosen locally by your client, which I take to be Thunderbird. TB can use a different font for each different charset.

Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit
Content-Language: en-GB

I'm not familiar with this choice.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

Which means you cannot trust that any information returned is accurate. >>>>
Makes for a pretty bad way to track someone...

Much better than looking on the entire world. That's pretty good,
actually.

Except you first have to find a way to associate the BSSID with a
particular individual.

Sure.

I just want the people here to understand that when your BSSID is in
Apple's database, and if you live in a rural area (such as I do),
then your GPS coordinates returned to 8 decimal places... is you.

If you move, then they can track where you moved.

For example, an enterprising coder could query the Apple WPS database for
all routers that moved between locations to put them into a database.

Then they could sell that database to professionals who target people who
just moved. That's only one example, as I'm not that type of person.

It could be more nefarious in that with Apple's insecure WPS database, you
can *target* individuals, which again, I don't advocate but it can be done.

But the fact is you can be tracked anywhere in the world if you use the
same router, which very often people who have moved will easily do.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

You're trying claim that using an internet database of anonymous
information is a more serious risk than looking out of your own window.

I get it you are desperate to defend Apple to the death, no matter what.

You're claiming that the telephone books we all used to have are a serious privacy risk worth of a class action suit. LMAO.

Why is it that you disagree with all the security professionals, Chris?

For example, if you moved away, but if you re-used your router, then I
would know EXACTLY where you lived, if you moved to another sparse location >> such as mine is.

That's a lot of "ifs".

It's only one if, which is if you re-use your router, you are tracked.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

As you well know the scenarios shown are disasters or warzones. Which
aren't of relevance to civilians as they have far more serious issues to worry about.

I get it that you defend Apple to the death, no matter what.
So I understand why you're so desperate to minimize this security flaw.

They also report that 0.06% of all APs moved month to month. That's a
really poor hit rate for "tracking" people.

Any imaginative person can think of many instances where having a database
of all the people who moved and exact where from and to, is useful.

Let's just say California wanted to find all the people who moved from California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

I almost had a heart attack when I saw how clearly I could identify each
and every one of my neighbors by their exact location and BSSID, Chris.

That is the exact point of it. It would be a pretty terrible service if it couldn't identify unique buildings within 40 acre plots. lol.

I get it that you are desperate to claim always that Apple is perfect.
But the fact I can be tracked to 8 decimal places can't be excused.

I already provided plenty of quotes from security professionals on this.

If you want to continue your absurd desperate attempt to defend everything Apple does, to the death, no matter what, please find at least one security professional on record for agreeing with your dismissal of the problem set.

All of us can be tracked. And it's not just me saying it.
Read the papers, Chris. Read them.

Literally says 0.06% of APs move . That's nowhere near "all of us".

If I was a Sheriff in a county of California that wanted to track all the people who moved from a different county of California, I could track them.

I'm not advocating tracking, as you must know, but what I'm pointing out to
you is that I understand that you defend Apple to the death, no matter
what, using absurd arguments that are so nonsensical as to be ridiculous.

Why don't you find a security pro who agrees with your point of view?
(Even all the Apple-centric publications decried Apple for this.)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

Marian wrote:

In the early days the WRT-54G had enough memory to flash DD-WRT on it

Still have one kicking around ... not powerful enough for anything
useful these days.

Hi Andy,

I just checked. I've still got two "kicking around" (but currently unused).
<https://i.postimg.cc/qMhQRkJN/linksys-wrt-54g.jpg>

Over time, the "old" router becomes the "last used" router, in which case
the venerable Linksys WRT-54G that we cut out teeth on, is "really old".

My point to whomever it was that decried the complexity of setting up a
router, is that we all went through that learning curve many years ago.

We've all likely "bricked" a router, and, in my neighborhood, people give
me perfectly good routers that they bricked & I use TFTP to unbrick 'em.
<https://i.postimg.cc/5t4Nhkwx/transceiver01.jpg>

Whenever people retire their WISP, they give me their Ubiquiti Rocket M5
radios also, so I must have a dozen of them sprinkled around the yard.
<https://i.postimg.cc/RZXNZBCQ/transceiver02.jpg>

Some of my radios are so powerful they can connect to Wi-Fi 10 miles away.

They're all the same when it comes to router setup, although the
professional equipment has a bunch of neat tools for spectrum analysis.

The point being I agreed with those who said that we all overcame the "complexity" over the decades since we've been setting up routers forever.

BTW, the only time I "explicitly" ran into "virtual interfaces" was when setting up an old router on DD-WRT as a bridge repeater & client bridge.

I needed that because my Windows desktop from 2009 doesn't have a Wi-Fi
card, so I used an Ethernet cable to connect the eth0 port of the Windows
PC to the old WNR834Bv2 router which connected wirelessly to the AP.

I forget if it was set up as a client bridge or as a bridge repeater, but
the advantage was that I got an "extra" access point out of the deal.
<https://i.postimg.cc/rpw270T5/virtual-interfaces.jpg>

Note the "_nomap" on that image which is years old, as all my SSIDs have
_nomap on them, except for the virtual LANs, it turned out, but that's
because I couldn't figure out how to adjust the DD-WRT software for it.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

I agree with Char Jackson, who has helped me over the years to set up old
Linksys & Netgear routers on DD-WRT as bridges (and as bridge repeaters).

It is simple if someone takes the effort of describing what you have to configure in the new router. Not that easy if you have to reverse
engineer the old router and it has no comments nor help. Just the
obscure short name of a setting.

I must exclaim that I AGREE with Carlos, since I never disagree with
anyone, no matter who they are, who presents a logically sensible view.

We've all struggled to understand what a given switch meant when setting up
a router, where I remember, I even struggled when I moved into the
mountains to figure out which port of a POE goes to the radio versus
router. After scores of POEs, over time, we forget we had to learn it.

However...

There is one really good thing that came up only in the last year or so.
You can now ask AI/LLM how to set up your router & it will help you do it.

In all those years, I haven't explicitly run into VLANs but implicitly many >> guest networks and repeater bridges make use of VLANs as far as I'm aware.

Nothing implicit. One VLAN is for the phone land line, another is for
TV, another is for internet (my guess).

This is just a small part of what my router calls:

Network Setting
Bridging Setup
Bridging
Filtering
Marking

https://paste.opensuse.org/pastes/7c7fef46eaef https://paste.opensuse.org/pastes/9acdc9974acd https://paste.opensuse.org/pastes/88d9c37538af https://paste.opensuse.org/1aece5657e7a https://paste.opensuse.org/872479cefbdb https://paste.opensuse.org/a827cc71d713

just try to explain what that does. A mistake, and my phone stops
working. And there are maybe hundreds of screens like that.

No, I am not actually interested. It is just an example of why I say
that the setup of my router by the ISP is complex.

The RTF8225VW Router Smart WiFi 6 Go is Movistar's latest
Askey-manufactured router whose configuration guide is here.
<https://itigic.com/movistar-router-smart-wifi-6-manual-configuration-guide/>

The bridge mode support apparently lets you connect a neutral router (like TP-Link or Asus) to manage your network, avoiding double NAT.
<https://algoentremanos.com/como-configurar-router-movistar-smart-wifi-6-go-rtf8225vw-modo-bridge/>

Moviestart can push the firmware updates if you don't want to do it.
<https://comunidad.movistar.es/discussions/soporte-fibra-optica/ultimo-firmware-router-smart-wifi-go-router-askey-rtf8225vw/5181231>

You appear to be using bridge mode which is optional.
a. Advanced Settings > Internet > Bridge Mode.
b. Then connect your home router to the RTF8225VW.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

For example, if you moved away, but if you re-used your router, then I
would know EXACTLY where you lived, if you moved to another sparse location >> such as mine is.

That's a lot of "ifs".

I just realized why you and I are so tremendously different, Chris.
You have no imagination.

You can't take apart a situation.
You can't analyze that situation.

You have no tools in your brain for figuring out what isn't explicitly said (where you can't figure out even how easy it is to abuse public databases).

There's only one "if" in this scenario, for example.

Assume this is the problem set:
Someone wants to know all the people who moved to his town
in the last year from Gillette Wyoming, including renters.

How hard do you think it would be for him to get that data out of the
highly insecure Apple WPS database, Chris (keeping in mind you get 400
access point BSSIDs in every query according to security researchers).

HINT: Security researchers proved it already.
<https://www.cs.umd.edu/~dml/papers/wifi-surveillance-sp24.pdf>
"In this work, we show that Apples WPS implementation
can easily be abused to create a serious privacy threat
on a global scale."
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:> No, the font used is chosen locally by your client,
which I take to be

Thunderbird. TB can use a different font for each different charset.

Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit
Content-Language: en-GB

I'm not familiar with this choice.

Andy found a flaw in my newsreader, which is a custom unique newsreader.

In that newsreader, there's one thing I've never figured out, which is how fonts work in Usenet (since most lines in my header are completely random).

As you know, I have a unique newsreader which is simply telnet with gVim.
The scripts don't care what fonts are used. It's just a line to telnet.

The header lines not added by the nntp server are added by my scripts.
But they're essentially random.

I got the lines, long ago, from scraping Usenet for header lines.
So some newsreaders tended to have one set of font lines, while other newsreaders tended to have a different set of font lines. It's random.

They change whenever I flip a switch to the next dictionary lookup.
I'll do that right now so that you can see different header lines.

I have no idea how the header lines look to the recipient though.
Nor how the fonts are interpreted as they're always sent the same.

But nothing has changed in that I'm still using telnet with gVim.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

Here is how to opt out of the following databases

Going chinese? You've swapped into charset="big5" and the weird italic
font that usually uses.

Hi Andy,

Maybe you can explain what happens with fonts as I've never understood how
they show up for people like you who are on the receiving end of my posts.

I write the content in gVim and I send it off with telnet.
Everything in the header related to the newsreader is essentially random.

Specifically, whatever the header "says" about fonts, is random.
It's not "completely" random as the header lines are "scraped".

That is, long ago I created a dictionary of headers which themselves were scraped from existing posts randomly selected across the Usenet spectrum.

Whenever I want to change the headers for privacy reasons, I just flip a
switch and a different set of (essentially random) headers is inserted.

Given telnet is doing the sending, I have no idea how the "fonts" show up.
Can you explain how the system of fonts works?

Does the random header described above affect how YOU see my fonts?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-08 03:14, Marian wrote:

Carlos E.R. wrote:

I agree with Char Jackson, who has helped me over the years to set up old >>> Linksys & Netgear routers on DD-WRT as bridges (and as bridge repeaters). >>>

It is simple if someone takes the effort of describing what you have to
configure in the new router. Not that easy if you have to reverse
engineer the old router and it has no comments nor help. Just the
obscure short name of a setting.

I must exclaim that I AGREE with Carlos, since I never disagree with
anyone, no matter who they are, who presents a logically sensible view.

We've all struggled to understand what a given switch meant when setting up
a router, where I remember, I even struggled when I moved into the
mountains to figure out which port of a POE goes to the radio versus
router. After scores of POEs, over time, we forget we had to learn it.

However...

There is one really good thing that came up only in the last year or so.
You can now ask AI/LLM how to set up your router & it will help you do it.

In all those years, I haven't explicitly run into VLANs but implicitly many >>> guest networks and repeater bridges make use of VLANs as far as I'm aware. >>

Nothing implicit. One VLAN is for the phone land line, another is for
TV, another is for internet (my guess).

This is just a small part of what my router calls:

Network Setting
Bridging Setup
Bridging
Filtering
Marking

https://paste.opensuse.org/pastes/7c7fef46eaef
https://paste.opensuse.org/pastes/9acdc9974acd
https://paste.opensuse.org/pastes/88d9c37538af
https://paste.opensuse.org/1aece5657e7a
https://paste.opensuse.org/872479cefbdb
https://paste.opensuse.org/a827cc71d713


just try to explain what that does. A mistake, and my phone stops
working. And there are maybe hundreds of screens like that.


No, I am not actually interested. It is just an example of why I say
that the setup of my router by the ISP is complex.

The RTF8225VW Router Smart WiFi 6 Go is Movistar's latest
Askey-manufactured router whose configuration guide is here.
<https://itigic.com/movistar-router-smart-wifi-6-manual-configuration-guide/>

That's the normal user setup (which I already know), it doesn't explain anything about the non documented setup of things like those in the
photos I posted above. There are hundreds of non documented settings
needed to adapt a generic router to work for them.

The bridge mode support apparently lets you connect a neutral router (like TP-Link or Asus) to manage your network, avoiding double NAT.
<https://algoentremanos.com/como-configurar-router-movistar-smart-wifi-6-go-rtf8225vw-modo-bridge/>

Sure.

Moviestart can push the firmware updates if you don't want to do it.
<https://comunidad.movistar.es/discussions/soporte-fibra-optica/ultimo-firmware-router-smart-wifi-go-router-askey-rtf8225vw/5181231>

You appear to be using bridge mode which is optional.
a. Advanced Settings > Internet > Bridge Mode.
b. Then connect your home router to the RTF8225VW.

No, I am not using bridge mode. I'm using the normal default mode as it
comes out of the box, prepared to work with telef||nica, then added a few things, like my SSID/Password, dhcp range to use, what ports I want translated, etc.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

They also report that 0.06% of all APs moved month to month. That's a
really poor hit rate for "tracking" people.

Any imaginative person can think of many instances where having a database
of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

Let's just say California wanted to find all the people who moved from California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Go on then. If it's so trivial, why don't you do it?

Show us with step by step instructions how many *people* - as you claim -
moved to FL from CA in the last six months.

You have a week. If you can't then I call bullshit.

I know what will happen, however. You won't even try. You will cry, shout
and stomp your feet blaming everyone else apart from yourself. Just like a
big baby.

You'll not hear from me until next week so as to not direct you from this important privacy risk study.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

Marian wrote:

Maybe you can explain what happens with fonts as I've never understood
how
they show up for people like you who are on the receiving end of my
posts.

The receiver controls the font, but modified based on certain charsets,
e.g. Chinese tend to use "big5" and Thunderbird will use either a YaHei
or SimSun font for that, which always looks like a low quality scratchy
font on my machines ... someone else described it as "stretched
vertically Times Roman"

<https://fontsgeek.com/fonts/SimSun-Regular>

I write the content in gVim and I send it off with telnet.
Everything in the header related to the newsreader is essentially random.

Specifically, whatever the header "says" about fonts, is random.
It's not "completely" random as the header lines are "scraped".

Maybe any scraped sample headers that you randomly include into postings should exclude those with charset big5, or koi8 (similar for russian)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-08 03:32, Marian wrote:

Carlos E.R. wrote:> No, the font used is chosen locally by your client, which I take to be

Thunderbird. TB can use a different font for each different charset.

Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit
Content-Language: en-GB

I'm not familiar with this choice.

Andy found a flaw in my newsreader, which is a custom unique newsreader.

In that newsreader, there's one thing I've never figured out, which is
how fonts work in Usenet (since most lines in my header are completely random).

As you know, I have a unique newsreader which is simply telnet with gVim.
The scripts don't care what fonts are used. It's just a line to telnet.

The header lines not added by the nntp server are added by my scripts.
But they're essentially random.

I got the lines, long ago, from scraping Usenet for header lines.
So some newsreaders tended to have one set of font lines, while other newsreaders tended to have a different set of font lines. It's random.

They change whenever I flip a switch to the next dictionary lookup.
I'll do that right now so that you can see different header lines.

I have no idea how the header lines look to the recipient though.
Nor how the fonts are interpreted as they're always sent the same.

But nothing has changed in that I'm still using telnet with gVim.

But you have to be careful about what your random headers do to us. You
should not use random headers in things like the charset.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-08 00:10, Marian wrote:

Carlos E.R. wrote:

Which means you cannot trust that any information returned is accurate. >>>>>
Makes for a pretty bad way to track someone...

Much better than looking on the entire world. That's pretty good,
actually.

Except you first have to find a way to associate the BSSID with a
particular individual.

Sure.

I just want the people here to understand that when your BSSID is in
Apple's database, and if you live in a rural area (such as I do),
then your GPS coordinates returned to 8 decimal places... is you.

If you move, then they can track where you moved.

Sure.

For example, an enterprising coder could query the Apple WPS database for
all routers that moved between locations to put them into a database.

Then they could sell that database to professionals who target people who just moved. That's only one example, as I'm not that type of person.

It could be more nefarious in that with Apple's insecure WPS database, you can *target* individuals, which again, I don't advocate but it can be done.

But the fact is you can be tracked anywhere in the world if you use the
same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-08 08:54, Chris wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

They also report that 0.06% of all APs moved month to month. That's a
really poor hit rate for "tracking" people.

Any imaginative person can think of many instances where having a database >> of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

Let's just say California wanted to find all the people who moved from
California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Go on then. If it's so trivial, why don't you do it?

Show us with step by step instructions how many *people* - as you claim - moved to FL from CA in the last six months.

You have a week. If you can't then I call bullshit.

I know what will happen, however. You won't even try. You will cry, shout
and stomp your feet blaming everyone else apart from yourself. Just like a big baby.

You'll not hear from me until next week so as to not direct you from this important privacy risk study.

His point is correct, though. An interested party could dig out this information, even if Arlen doesn't come out with code to do it.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

Maybe you can explain what happens with fonts as I've never understood
how
they show up for people like you who are on the receiving end of my
posts.

The receiver controls the font, but modified based on certain charsets,
e.g. Chinese tend to use "big5" and Thunderbird will use either a YaHei
or SimSun font for that, which always looks like a low quality scratchy
font on my machines ... someone else described it as "stretched
vertically Times Roman"

<https://fontsgeek.com/fonts/SimSun-Regular>

Hi Andy,

Thanks for your help, now, and over the years as I respect your acumen.

I really have no idea how fonts are handled since I don't overtly do
anything other than randomize the headers scraped from Usenet posts.

However...

I think I have an idea what happened, since the post you said was in
Chinese fonts was no different, on my side, than any other post from me.

But...

I very often copy-and-paste from documents.

In that case, the characters pasted can include em-dashes, curly quotes, non-breaking hyphens, non-breaking spaces, and other crazy characters.

Some show up as crazy inside of gVim so I have a chance to fix them.
Others don't.

Maybe one of those crazy unicode funky characters showed up that is not in
the 95 characters found on a normal US/UK/EU QWERTY keyboard perhaps?

I write the content in gVim and I send it off with telnet.
Everything in the header related to the newsreader is essentially random. >>>
Specifically, whatever the header "says" about fonts, is random.
It's not "completely" random as the header lines are "scraped".

Maybe any scraped sample headers that you randomly include into postings should exclude those with charset big5, or koi8 (similar for russian)

Here is a script that removes many of the "funky" characters which creep up when I copy and paste from a published source (web pages or research docs).

It uses Notepad++ shortcuts.xml to convert funky characters to 7-bit ASCII.

<Macro name="ASCII" Ctrl="yes" Alt="no" Shift="no" Key="66">
<!-- Normalize dashes -->
<Action type="3" message="1601" sParam="&#x2010;" /><Action type="3" message="1602" sParam="-" />
<Action type="3" message="1601" sParam="&#x2012;" /><Action type="3" message="1602" sParam="-" />
<Action type="3" message="1601" sParam="&#x2013;" /><Action type="3" message="1602" sParam="-" />
<Action type="3" message="1601" sParam="&#x2014;" /><Action type="3" message="1602" sParam="-" />
<Action type="3" message="1601" sParam="&#x2212;" /><Action type="3" message="1602" sParam="-" />

<!-- Normalize quotes -->
<Action type="3" message="1601" sParam="&#x2018;" /><Action type="3" message="1602" sParam="&apos;" />
<Action type="3" message="1601" sParam="&#x2019;" /><Action type="3" message="1602" sParam="&apos;" />
<Action type="3" message="1601" sParam="&#x201C;" /><Action type="3" message="1602" sParam="&quot;" />
<Action type="3" message="1601" sParam="&#x201D;" /><Action type="3" message="1602" sParam="&quot;" />
<Action type="3" message="1601" sParam="`" /><Action type="3" message="1602" sParam="&apos;" />

<!-- Invisible characters ? strip -->
<Action type="3" message="1601" sParam="&#x200C;" /><Action type="3" message="1602" sParam="" />
<Action type="3" message="1601" sParam="&#x200B;" /><Action type="3" message="1602" sParam="" />
<Action type="3" message="1601" sParam="&#xFEFF;" /><Action type="3" message="1602" sParam="" />

<!-- Symbols -->
<Action type="3" message="1601" sParam="&#x2192;" /><Action type="3" message="1602" sParam="->" />
<Action type="3" message="1601" sParam="&#x00B0;" /><Action type="3" message="1602" sParam="deg" />
<Action type="3" message="1601" sParam="&#x00A9;" /><Action type="3" message="1602" sParam="(C)" />
<Action type="3" message="1601" sParam="&#x2122;" /><Action type="3" message="1602" sParam="(TM)" />
<Action type="3" message="1601" sParam="&#x00AE;" /><Action type="3" message="1602" sParam="(R)" />
</Macro>
--
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

But nothing has changed in that I'm still using telnet with gVim.

But you have to be careful about what your random headers do to us. You should not use random headers in things like the charset.

Hi Carlos,

I appreciate that you explained that the charset header, which I've never really ever looked at in earnest, may affect what it does to your
newsreader.

I have a dictionary for every header line, where it's a mix-and-match
affair to pair the character-set header line with the rest of the header.

What is a good single character set line that will be friendly to you?
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

etc.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

Any imaginative person can think of many instances where having a database >> of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

My AP BSSID is me. It's nobody else. It's me. To 8 decimal places, it's me. They have my name. My address. Everything. My BSSID is me.

Why do you think I redacted my BSSID in the screenshots I provided you?
<https://i.postimg.cc/C5Pcb6RQ/decimal.jpg>

I even published a tutorial for how you can track BSSID's, Chris.
I published that tutorial on Saturday. To prove the point it's easy.

Let's just say California wanted to find all the people who moved from
California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Go on then. If it's so trivial, why don't you do it?

Show us with step by step instructions how many *people* - as you claim - moved to FL from CA in the last six months.

You have a week. If you can't then I call bullshit.

You are nuts. It's so trivial that you must be nuts to not realize it is.
I did it already. I already wrote the code. I already published the code.

I published the code on Saturday already.
It takes any number of BSSIDs and tracks them.

I am a bit dismayed that your argument defending Apple to the death,
no matter what, is so baseless, that I already published the code.

I know what will happen, however. You won't even try. You will cry, shout
and stomp your feet blaming everyone else apart from yourself. Just like a big baby.

You are nuts. I already posted the code long ago to this very newsgroup.
I wrote the tutorial for God's sake. You're nuts, Chris. Seriously. Nuts.

You claim I won't do what I already did for God's sake. You're nuts Chris.

You'll not hear from me until next week so as to not direct you from this important privacy risk study.

I've concluded you completely lack fundamental imagination skills, Chris.
You have no concept of how this code can be used to track people, do you?

From: Marian <marianjones@helpfulpeople.com>
Newsgroups: alt.comp.os.windows-10,alt.internet.wireless,alt.comp.microsoft.windows,alt.comp.os.windows-11
Subject: Tutorial: Query the Apple database with Python for your access point BSSID
Date: Sat, 6 Dec 2025 10:55:40 -0700
Message-ID: <10h1qmr$2alo$1@nnrp.usenet.blueworldhosting.com>
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

But the fact is you can be tracked anywhere in the world if you use the
same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

I agree with anyone, no matter who they are, who posits a sensibly logical statement, where I would heartily agree with you that if you hand back the router to the telco, then you can't be tracked by subsequent use of it.

However...

The argument made by the security researchers is valid that they tracked "longitudinal" movements over the course of a year using Apple WPS.
<https://par.nsf.gov/servlets/purl/10540853>

The researchers argue that Apple makes it trivial to collect millions of
router locations which they can track on a massive scale because there are
no security controls whatsoever (not even a login!) for the Apple WPS db.

It doesn't take much of an imagination to understand how dangerous that is.

If Apple honored the "_nomap" & the "hidden SSID" it wouldn't be so bad.
But Apple clearly does not honor their own rules (which I can prove).
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

You'll not hear from me until next week so as to not direct you from this
important privacy risk study.

His point is correct, though. An interested party could dig out this information...

We have to understand that Apple trolls defend Apple ot the death, no
matter what. They do that using the first thing that comes to their mind.

It doesn't occur to them HOW Apple' WPS database is DIFFERENT from the
others, since to them, Apple can do no wrong & Apple doesn't plead guilty.

So, to them, Apple hasn't been convicted of a crime, and hence, Apple is perfect and Apple can do no wrong. Worse, even when Apple loses their class action lawsuits, since Apple never accepts guilt, to the Apple trolls,
Apple is again perfect because it's impossible for Apple to not be.

They even claim that the billion-dollar penalties that Apple incurs are
mere "drops in the bucket" because they claim Apple is always above the law simply because Apple is one of the richest companies on the planet.

We already proved it's trivial for me to write the python script to query
any number of BSSIDs, and, in fact, the proof is that I already wrote it.
From: Marian <marianjones@helpfulpeople.com>
Newsgroups: alt.comp.os.windows-10,alt.internet.wireless,alt.comp.microsoft.windows,alt.comp.os.windows-11
Subject: Tutorial: Query the Apple database with Python for your access point BSSID
Date: Sat, 6 Dec 2025 10:55:40 -0700
Message-ID: <10h1qmr$2alo$1@nnrp.usenet.blueworldhosting.com>

But even if "I" didn't write the script to query for the locaqtion of any number of BSSIDs, it doesn't prove anything if I didn't write that script.

To Chris, had I not written that script, it "proves to him" that this
"thread" that security researchers talk about, doesn't exist.

WTF?

What kind of strange person thinks that way?

If I *wanted* to track people (and I don't!), I could write the script most likely that queries the entire world - but why would "I" want to do that?

And, the fact that I don't want to do that is NOT proof that it can't be
done.

Yet, to an Apple troll who defends Apple to the death, no matter what,
using whatever absurd excuse first comes to mind, if I didn't write that
script that I already wrote, then, to Apple trolls, that proves there is no security flaw in Apple's WPS database (even though there clearly is).

What kind of strange person thinks that way?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

You appear to be using bridge mode which is optional.
a. Advanced Settings > Internet > Bridge Mode.
b. Then connect your home router to the RTF8225VW.

No, I am not using bridge mode. I'm using the normal default mode as it comes out of the box, prepared to work with telef<nica, then added a few things, like my SSID/Password, dhcp range to use, what ports I want translated, etc.

Thanks for letting us know, as bridge mode isn't something most of us have
used frequently, although I've set up routers as bridges when I have a
desktop that doesn't have a Wi-Fi card but which only has an RJ45 port.

1. The Windows 10 PC "thinks" it's using the Ethernet port.
2. But that is connected to the router which is set up as a bridge.
3. Then the router bridges to the Wi-Fi access point far away from the PC.

It's been a while and people like Char Jackson know this stuff way better
than I do, but bridges do "funny things" sometimes.

As far as I can figure out, in my situation with a desktop & bridge
1. My PC sees only a wired Ethernet connection.
It has no concept of Wi-Fi SSIDs or BSSIDs because it's not running
through a Wi-Fi NIC driver.

2. The bridge router acts as a wireless client to the upstream Wi-Fi
access point. It associates with the AP using the AP's SSID and BSSID,
just like a laptop would.

3. On the Ehernet side of the bridge, it appears to be a standard Ethernet
interface to the PC. It does not expose the SSID/BSSID to the wired
client as the PC can see only MAC-level Ethernet frames.

Nowadays I use a USB dongle as the Wi-Fi to the Windows 10 PC.
It acts differently than the bridge did because the USB Wi-Fi dongle acts
as a Wi-Fi NIC.

So I haven't used bridges in a while and I never really understood them.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

the post you said was in
Chinese fonts was no different, on my side, than any other post from me.

Presumably you have a collection of posts which you "harvest" headers
from? Maybe remove any posts with charset="big5" or charset="koi8" in
the headers from the collection ...

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. <robin_listas@es.invalid> wrote:

On 2025-12-08 08:54, Chris wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

They also report that 0.06% of all APs moved month to month. That's a
really poor hit rate for "tracking" people.

Any imaginative person can think of many instances where having a database >>> of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

Let's just say California wanted to find all the people who moved from
California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Go on then. If it's so trivial, why don't you do it?

Show us with step by step instructions how many *people* - as you claim -
moved to FL from CA in the last six months.

You have a week. If you can't then I call bullshit.

I know what will happen, however. You won't even try. You will cry, shout
and stomp your feet blaming everyone else apart from yourself. Just like a >> big baby.

You'll not hear from me until next week so as to not direct you from this
important privacy risk study.

His point is correct, though. An interested party could dig out this information, even if Arlen doesn't come out with code to do it.

I disagree. Just because a router moves doesn't mean a particular person
has moved . Or vice versa.

Trying to infer this kind of information is also not as trivial as Donald claims.

In addition, in the above scenario, the tax authorities would have far
better information at their disposal on actual people rather than some
vague technical proxy. A MAC is not a person. Not yet at least ;)

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Any imaginative person can think of many instances where having a database >>> of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

My AP BSSID is me. It's nobody else. It's me. To 8 decimal places, it's me. They have my name. My address. Everything. My BSSID is me.

Lol. Your name is a MAC address? I can see why you'd not want to disclose
that.

Your zip code is also "you". Is a database of zip codes that all online retailers have access to equally a serious privacy risk?

Why do you think I redacted my BSSID in the screenshots I provided you? <https://i.postimg.cc/C5Pcb6RQ/decimal.jpg>

Understandably, you don't want to share your home address to the wider internet. We have additional information so can link you with the address.

I even published a tutorial for how you can track BSSID's, Chris.
I published that tutorial on Saturday. To prove the point it's easy.

Your "tutorial" was simply a lock-up table. There is no tracking involved.
Like the majority of your tutorials, it was superfluous. Sufficient instructions already existed on the github.

Let's just say California wanted to find all the people who moved from
California to Florida who retired to ask them to pay their 401K taxes.

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Go on then. If it's so trivial, why don't you do it?

Show us with step by step instructions how many *people* - as you claim -
moved to FL from CA in the last six months.

You have a week. If you can't then I call bullshit.

You are nuts. It's so trivial that you must be nuts to not realize it is.
I did it already. I already wrote the code. I already published the code.

Ha ha ha! This is a new low for you. You're plagiarising other people's
code now?

I published the code on Saturday already.
It takes any number of BSSIDs and tracks them.

No it doesn't. The github script (not your code) only reports the location currently in the db. There is no history.

I am a bit dismayed that your argument defending Apple to the death,
no matter what, is so baseless, that I already published the code.

I know what will happen, however. You won't even try. You will cry, shout
and stomp your feet blaming everyone else apart from yourself. Just like a >> big baby.

You are nuts. I already posted the code long ago to this very newsgroup.
I wrote the tutorial for God's sake. You're nuts, Chris. Seriously. Nuts.

You claim I won't do what I already did for God's sake. You're nuts Chris.

Thanks for confirming your babyish attitude. Rather than rise to the
challenge, you deflect and attack.

What you don't understand, because you're not a scientist, is that a study worthy of publication - albeit as a preprint - is a serious amount of work. Just because they were able to do it, as a proof of concept, does not mean
any Shmo can do the same "trivially".

Unless you can demonstrate in detail a search of all floridians who moved
from california in the last six months only using their BSSIDs, I call
bullshit on your claims. You're fear mongering.

Having said that, it is crazy that Apple don't limit calls to their WPS db
like google do.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Carlos E.R. wrote:

But the fact is you can be tracked anywhere in the world if you use the
same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

I agree with anyone, no matter who they are, who posits a sensibly logical statement, where I would heartily agree with you that if you hand back the router to the telco, then you can't be tracked by subsequent use of it.

However...

The argument made by the security researchers is valid that they tracked "longitudinal" movements over the course of a year using Apple WPS. <https://par.nsf.gov/servlets/purl/10540853>

Unfortunately, they give almost no details on what this year-long
longitudinal study was. Unlike their month-long study which was sampled
daily.

They also make reference to a six-month study for mobile routers with no specific details.

In their month-long they find that 15% of APs were "unstable" or
disappeared, 0.06% moved more than 1km and the median distance travelled
was 4km. That means 50% of APs 4km or less over the month.

Am obvious thing they should have done was to remove the mobile routers
from the global analysis. Makes interpretation harder.

Unlike you they acknowledge the APs aren't people, despite the poor
grammar.

"While there is not necessarily a 1-to-1 relationship
between Wi-Fi routers and users, home routers typically only have several."

The researchers argue that Apple makes it trivial to collect millions of router locations which they can track on a massive scale because there are
no security controls whatsoever (not even a login!) for the Apple WPS db.

Yeah, that's a daft design decision.

It doesn't take much of an imagination to understand how dangerous that is.

Likewise an overactive imagination can catastrophise. A sense of proportionality is useful, here.

If Apple honored the "_nomap" & the "hidden SSID" it wouldn't be so bad.
But Apple clearly does not honor their own rules (which I can prove).

You have n=1. That's barely an anecdote.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. <robin_listas@es.invalid> wrote:

On 2025-12-08 00:10, Marian wrote:

[...]

But the fact is you can be tracked anywhere in the world if you use the same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

And the old router might be re-used by someone else, which would lead
'Arlen' to the erroneous conclusion that you had moved to the place
where that someone lives. Way to go!
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris <ithinkiam@gmail.com> wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Any imaginative person can think of many instances where having a database
of all the people who moved and exact where from and to, is useful.

Not people. WAPs.

My AP BSSID is me. It's nobody else. It's me. To 8 decimal places, it's me. They have my name. My address. Everything. My BSSID is me.

Lol. Your name is a MAC address? I can see why you'd not want to disclose that.

I thought that 'Arlen' had a wife, but apparently she is insignificant
and hence his BSSID is him. Fits right in with his administration's
agenda.

I'll ask my wife which half of our BSSID is mine

[...]
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

My AP BSSID is me. It's nobody else. It's me. To 8 decimal places, it's me. >> They have my name. My address. Everything. My BSSID is me.

Lol. Your name is a MAC address? I can see why you'd not want to disclose that.

You trolls make the most absurd arguments that only you would concoct.
You actually believe someone said their MAC address was their name.

If I said I had a penicillin pill in my pocket, you'd claim it's just a
pill because your brain can't fathom what you can do with that pill.

I realize neither you nor Frank has the IQ necessary for even something as
base as a college education, so I find it disturbing I have to explain
this.

Your absurd arguments are backed up by exactly zero security professionals.

Your zip code is also "you". Is a database of zip codes that all online retailers have access to equally a serious privacy risk?

Jesus Christ. This is what happens when you deal with people with a low IQ.

The arguments from you and Frank are so absurd that I don't have the
patience to explain to you that a pill in my pocket can do more things than just be a pill.

To your low IQ brain, and to that of Frank, a pill in my pocket is just a
small object. If I say 'I have a pill in my pocket,' that doesn't tell you much. If that pill is penicillin, suddenly it has a specific power.

To your low IQ brains, you and Frank, it's just a white pill.
Nothing more. Nothing less.

Who is that strange but you.
Both of you understand nothing.

Why do you think I redacted my BSSID in the screenshots I provided you?
<https://i.postimg.cc/C5Pcb6RQ/decimal.jpg>

Understandably, you don't want to share your home address to the wider internet. We have additional information so can link you with the address.

All you'd need is my BSSID and you'd have the coordinates to my bedroom.

I even published a tutorial for how you can track BSSID's, Chris.
I published that tutorial on Saturday. To prove the point it's easy.

Your "tutorial" was simply a lock-up table. There is no tracking involved. Like the majority of your tutorials, it was superfluous. Sufficient instructions already existed on the github.

Huh? Again & again, I admit I have trouble dealing with people like you &
Frank whose IQ is so low, no college would waste their time admitting you.

That python script can look up any number of BSSIDs, Chris.
You can't fathom that?

What is so strange with you that you can't think a script can have multiple BSSIDs input into it in a list (which I showed how to do in the tutorial)?

Who is that strange?
Nobody, right?

I don't have the people skills necessary to explain to people with such a
low IQ that they can't understand you can feed a list of BSSIDs to a python script.

You are nuts. It's so trivial that you must be nuts to not realize it is.
I did it already. I already wrote the code. I already published the code.

Ha ha ha! This is a new low for you. You're plagiarising other people's
code now?

Jesus Christ. You and Frank have such a low IQ that you claim that
everything posted is plagiarized. What kind of strange person does that?

I wrote the wrapper in the tutorial Chris that does the BSSID lookup.
The GitHub code isn't that wrapper. It's just the CLI.

That you don't understand that is hard for me to explain becuase your IQ is
so low as to require people skills I don't possess to explain something
that trivial to you.

All your opinions are absurd, Chris.
Your IQ is so low you can't understand a wrapper around a CLI for example.

Who is that stupid?

I published the code on Saturday already.
It takes any number of BSSIDs and tracks them.

No it doesn't. The github script (not your code) only reports the location currently in the db. There is no history.

The script is trivial, Chris.

Your IQ is too low to understand that "tracking" is just running the script
a few times. It's shocking that I have to explain something that trivial.

Here's a wrapper to track the moving location of any given set of BSSIDs.
This is a permanent record a malefactor can sell over & over to bad guys.

# bssid.py
import sys
import time

# Example "BSSID database" with changing locations
bssid_database = {
"AA:BB:CC:11:22:33": [
{"name": "BSSID", "location": "GPS A"},
{"name": "BSSID", "location": "GPS B"},
{"name": "BSSID", "location": "GPS C"},
]
}

def lookup_bssid(bssid_id, step):
# simulate movement by returning different locations over time
if bssid_id in bssid_database and step < len(bssid_database[bssid_id]):
return bssid_database[bssid_id][step]
return None

def main():
bssid_ids = sys.argv[1:]
log = []

# open a log file for writing
with open("bssid_log.txt", "w") as logfile:
for step in range(3): # simulate 3 queries over time
timestamp = time.strftime("%Y-%m-%d %H:%M:%S")
for bssid_id in bssid_ids:
result = lookup_bssid(bssid_id, step)
if result:
entry = {"id": bssid_id, "time": timestamp, "location": result["location"]}
log.append(entry)
line = f"[{timestamp}] Found {result['name']} at {result['location']}\n"
print(line.strip())
logfile.write(line)
else:
line = f"[{timestamp}] bssid {bssid_id} not found\n"
print(line.strip())
logfile.write(line)
time.sleep(1) # pause to simulate time passing

# Diff successive locations
logfile.write("\n--- Movement Diff ---\n")
print("\n--- Movement Diff ---")
for bssid_id in bssid_ids:
locations = [entry["location"] for entry in log if entry["id"]
== bssid_id]
for i in range(1, len(locations)):
if locations[i] != locations[i-1]:
diff_line = f"{bssid_id} moved from {locations[i-1]} to {locations[i]}\n"
print(diff_line.strip())
logfile.write(diff_line)

if __name__ == "__main__":
main()

You claim I won't do what I already did for God's sake. You're nuts Chris.

Thanks for confirming your babyish attitude. Rather than rise to the challenge, you deflect and attack.

You're nuts Chris. Your IQ is so low that you claimed if I won't track
people, nobody can. Who is that stupid, Chris? Seriously? Who?

Normal people with a normal intelliect don't think, the fact I don't feel
like expending energy tracking people means it can't be done.

Only you strange Apple trolls would make an absurd claim like that.
Seriously, Chris. You have a problem with an extremely abnormally low IQ.

That's not an insult.
It's an expression of exasperation.

You're nuts.
Nobody would claim that absurd claim but you and Frank Slootweg.

I don't own the people skills to explain to people like you and Frank
Slootweg that the fact I don't feel like tracking people does NOT mean it
can't be done.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg wrote:

and hence his BSSID is him.

Your IQ is too low to understand that "tracking" is just running the script
a few times. It's shocking that I have to explain something that trivial.

Here's a wrapper to track the moving location of any given set of BSSIDs.
This is a permanent record a malefactor can sell over & over to bad guys.

# bssid.py
import sys
import time

# Example "BSSID database" with changing locations
bssid_database = {
"AA:BB:CC:11:22:33": [
{"name": "BSSID", "location": "GPS A"},
{"name": "BSSID", "location": "GPS B"},
{"name": "BSSID", "location": "GPS C"},
]
}

def lookup_bssid(bssid_id, step):
# simulate movement by returning different locations over time
if bssid_id in bssid_database and step < len(bssid_database[bssid_id]):
return bssid_database[bssid_id][step]
return None

def main():
bssid_ids = sys.argv[1:]
log = []

# open a log file for writing
with open("bssid_log.txt", "w") as logfile:
for step in range(3): # simulate 3 queries over time
timestamp = time.strftime("%Y-%m-%d %H:%M:%S")
for bssid_id in bssid_ids:
result = lookup_bssid(bssid_id, step)
if result:
entry = {"id": bssid_id, "time": timestamp, "location": result["location"]}
log.append(entry)
line = f"[{timestamp}] Found {result['name']} at {result['location']}\n"
print(line.strip())
logfile.write(line)
else:
line = f"[{timestamp}] bssid {bssid_id} not found\n"
print(line.strip())
logfile.write(line)
time.sleep(1) # pause to simulate time passing

# Diff successive locations
logfile.write("\n--- Movement Diff ---\n")
print("\n--- Movement Diff ---")
for bssid_id in bssid_ids:
locations = [entry["location"] for entry in log if entry["id"]
== bssid_id]
for i in range(1, len(locations)):
if locations[i] != locations[i-1]:
diff_line = f"{bssid_id} moved from {locations[i-1]} to {locations[i]}\n"
print(diff_line.strip())
logfile.write(diff_line)

if __name__ == "__main__":
main()


I don't own the people skills to explain to people like Chris and Frank Slootweg that the fact I don't feel like tracking people does NOT mean it
can't be done.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

the post you said was in
Chinese fonts was no different, on my side, than any other post from me.

Presumably you have a collection of posts which you "harvest" headers
from? Maybe remove any posts with charset="big5" or charset="koi8" in
the headers from the collection ...

Hi Andy,

I looked at my dictionaries and those words NEVER appear in them.

That makes sense since I didn't change anything for the one post that you noticed the Chinese fonts. You have to believe me on that. I didn't do it.

So you're really looking in the wrong place for the problem.
Almost certainly the problem is either how my newsserver forwards things on
my side, or how your newsserver/newsreader receives things on your side.

I think what must have happened is:
a. I copied and pasted text that contained funky characters.
b. Somehow, your newsreader saw that as a Chinese character set.

I do not understand how fonts propagate from my telnet session to my news server to your news server to your newsreader though.

But something in *that* coding and decoding caused the Chinese fonts on
your side since I have no header with those words (and you can prove it by looking at the header of that particular post, for example).

One fact we can check is to ask if ANYONE ELSE saw Chinese fonts?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg wrote:

But the fact is you can be tracked anywhere in the world if you use the
same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

And the old router might be re-used by someone else, which would lead 'Arlen' to the erroneous conclusion that you had moved to the place
where that someone lives. Way to go!

If Frank is trying to intimate that this news about Apple's highly insecure
WPS system can't track people, then I'm going to have to disagree with him.

Frank hates me, which is fine, since this is Usenet and we all have a thick skin. Frank even declares everyone he happens to hate, happens to be me.

He does it all the time (and I just sit back and let it run off my skin).

Frank told us years ago he was never able to get into a college, so I
should treat him gently when he makes his absurd statements to attack me.

All I will ask of Frank, on behalf of everyone he is trolling right now,
is for Frank to simply find just one security researcher who agrees with
him.

Find just One.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

The argument made by the security researchers is valid that they tracked
"longitudinal" movements over the course of a year using Apple WPS.
<https://par.nsf.gov/servlets/purl/10540853>

Unfortunately, they give almost no details on what this year-long longitudinal study was. Unlike their month-long study which was sampled daily.

They also make reference to a six-month study for mobile routers with no specific details.

In their month-long they find that 15% of APs were "unstable" or
disappeared, 0.06% moved more than 1km and the median distance travelled
was 4km. That means 50% of APs 4km or less over the month.

Am obvious thing they should have done was to remove the mobile routers
from the global analysis. Makes interpretation harder.

I get it that you Apple trolls defend Apple to the death, no matter what.

But I will agree with anyone, no matter who they are, when they make
logically defensible statements, even if historically they are Apple
trolls.

There are clearly two components to their claim of tracking users.
1. You need the BSSIDs (which they claim Apple gives them in the millions)
2. You need to track the BSSID (which is trivial, and all of us proved it)

With respect to your assessment of the paper, I would agree with you!
<https://par.nsf.gov/servlets/purl/10540853>
<https://arxiv.org/abs/2405.14975>

The authors describe the month-long study clearly (10 million BSSIDs
sampled daily), but the year-long corpus is only mentioned in passing as a massive collection of over 2 billion BSSIDs used to illustrate case
studies.

Unlike you they acknowledge the APs aren't people, despite the poor
grammar.

"While there is not necessarily a 1-to-1 relationship
between Wi-Fi routers and users, home routers typically only have several."

Again I get it that you're an Apple troll so you're desperate to make
absurd claims which make sense only to you, in that you claim "APs aren't people" (which nobody would disagree with).

It's no longer shocking that I am forced to patiently expalin to you Apple trolls what nobody who owns a synapse would dispute, which is that the
tracking can track your movements even as an access point is an access
point.

It's kind of like having to explain to you what penicillin is.
a. You Apple trolls would claim it's just a tablet.
b. How can a tablet cure anything?

You Apple trolls actually believe that saying an absurd nonsensical
argument such as "penicillin is just a tablet" and "AP's aren't people", negates the curing (in the case of penicillin) & the tracking.

What kind of rather strange person thinks the way you Apple trolls do?
Only to you is an absurd argument enough to negate all the science in the world.

Why don't you Apple troll spend a few minutes tracking down a security professional who agrees with you instead of wasting our valuable time.

Hint: No professional on the planet agrees with you. And we know that.

They also make reference to a six-month study for mobile routers with no specific details.

In their month-long they find that 15% of APs were "unstable" or
disappeared, 0.06% moved more than 1km and the median distance travelled
was 4km. That means 50% of APs 4km or less over the month.

Am obvious thing they should have done was to remove the mobile routers
from the global analysis. Makes interpretation harder.

I will agree with anyone nho matter who they are, even if they're a known
Apple troll, if they make a sensibly logical statement, which you just did.

I agree with you so much that you'll note when you yourself asked me for tracking examples, I refused to use as an obvious example mobile routers.

They're just to easy to track with Apple's insecure WPS database.
So I ignored them completely until now, when you bothered to mention them.

I agree with you that the tracking of mobile routers by BSSID is so trivial
as to not even need to be stated, and that it isn't the major problem here.

The researchers argue that Apple makes it trivial to collect millions of
router locations which they can track on a massive scale because there are >> no security controls whatsoever (not even a login!) for the Apple WPS db.

Yeah, that's a daft design decision.

I agree with anyone who makes a logically sensible statement so I agree
with you.

The problem is that is what is DIFFERENT between Apple & Google WPS dbs.

I don't know _why_ Apple made it so that anyone can do two things:
1. The researchers "say" they collected "billions" of AP location data
2. Then, we all tested our own BSSIDs where anyone can track them

Apple prioritized ubiquitous, accurate location services over locking down
the WPS Wi-Fi database. That decision made both large-scale research and individual BSSID lookups possible, and now researchers are highlighting the privacy risks.

It doesn't take much of an imagination to understand how dangerous that is.

Likewise an overactive imagination can catastrophise. A sense of proportionality is useful, here.

I understand how desperate you are to claim Apple is above the law and that Apple has enough money to break the law at will and that Apple can do no
wrong, no matter what. I get it Chris.

But find just one security researcher who agrees with your assessment.
Find just one.

Note to people who don't know about Apple trolls: They hold strong opinions that nobody else on the entire planet holds. They are the only ones.

*So "find just one" is a simple test the Apple trolls always fail.*

If Apple honored the "_nomap" & the "hidden SSID" it wouldn't be so bad.
But Apple clearly does not honor their own rules (which I can prove).

You have n=1. That's barely an anecdote.

I get it you Apple trolls are desperate to deprecate any & all facts.
You actually *hate* that Apple designed such a shitty WPS system.

But you can't simply say "Apple designed a shitty WPS system".
You feel you are forced to defend Apple's shitty WPS system.

Which you'll defend to the death, no matter what.
Using the first thing that comes to your mind.

Which is always absurd.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

I looked at my dictionaries and those words NEVER appear in them.

That makes sense since I didn't change anything for the one post that you noticed the Chinese fonts. You have to believe me on that. I didn't do it.

So you're really looking in the wrong place for the problem.
Almost certainly the problem is either how my newsserver forwards things on my side, or how your newsserver/newsreader receives things on your side.

I think what must have happened is:
a. I copied and pasted text that contained funky characters.
b. Somehow, your newsreader saw that as a Chinese character set.

It's not particularly important by now, but if you look at your message

<https://al.howardknight.net/?ID=176540312200>

it does contain big5, that's what triggered fonts, if it remains a
mystery, that doesn't bother me ...

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Andy Burns wrote:

It's not particularly important by now, but if you look at your message

<https://al.howardknight.net/?ID=176540312200>

it does contain big5, that's what triggered fonts, if it remains a
mystery, that doesn't bother me ...

Hmmm... thanks for looking since I was so sure I didn't add it that I
didn't even bother to look. Now I'm looking at your reference
<https://al.howardknight.net/?ID=176540312200>
MIME-Version: 1.0
Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit

Yet, my dictionaries only have things that are far more generic, like
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit

MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

So, let's leave it as a "mystery" to me, since I didn't add it.
Like I said, I never understood the Usenet character set directive.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

Like I said, I never understood the Usenet character set directive.

This is a test of Chinese characters...

From: yourname@example.com
Newsgroups: alt.test
Subject: |.++#T<o <---chinese characters are here
Date: Wed, 10 Dec 2025 21:56:00 -0800
Message-ID: <12345@news.example.com>
Content-Type: text/plain; charset=big5
Content-Transfer-Encoding: 8bit
Lines: 12

|o4On@!+?-N+ Big5 +s+X-||.++#T<oiC<---chinese characters are here
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-10 13:26, Marian wrote:

Frank Slootweg wrote:

But the fact is you can be tracked anywhere in the world if you use the >>>> same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

-a And the old router might be re-used by someone else, which would lead
'Arlen' to the erroneous conclusion that you had moved to the place
where that someone lives. Way to go!

If Frank is trying to intimate that this news about Apple's highly insecure WPS system can't track people, then I'm going to have to disagree with him.

Frank hates me,

LOL!

That's so cute!

You think anyone cares enough about you to hate you!
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-11 05:53, Marian wrote:

Andy Burns wrote:

It's not particularly important by now, but if you look at your message

<https://al.howardknight.net/?ID=176540312200>

it does contain big5, that's what triggered fonts, if it remains a
mystery, that doesn't bother me ...

Hmmm... thanks for looking since I was so sure I didn't add it that I
didn't even bother to look. Now I'm looking at your reference <https://al.howardknight.net/?ID=176540312200>
MIME-Version: 1.0
Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit

The server to which you upload the post can do its own changes.
--
Cheers, Carlos.
ESEfc-Efc+, EUEfc-Efc|;
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Frank Slootweg wrote:

But the fact is you can be tracked anywhere in the world if you use the >>> same router, which very often people who have moved will easily do.

Considering that here the router is often provided by the Telco, when
you move you have to hand over the old router, and get a new one with
the new contract at the new destination.

And the old router might be re-used by someone else, which would lead 'Arlen' to the erroneous conclusion that you had moved to the place
where that someone lives. Way to go!

If Frank is trying to intimate that this news about Apple's highly insecure WPS system can't track people, then I'm going to have to disagree with him.

Frank hates me, which is fine, since this is Usenet and we all have a thick skin. Frank even declares everyone he happens to hate, happens to be me.

Frank doesn't hate you. Frank hates very, very few people. For you,
the needle doesn't even move.

He does it all the time (and I just sit back and let it run off my skin).

Yeah, *right*! That's why you insult and lie as soon as someone proves
you wrong, "you just sit back and let it run off your skin". Sure!

Frank told us years ago he was never able to get into a college,

Frank never told you or anybody that, because it's false [1]. Frank repeatedly challenged you to provide proof and of course you never did,
you just continue to lie.

BTW, did I already mention that, like you often allege, I also had "a
high profile job in Silicon Valley"? :-)

so I
should treat him gently when he makes his absurd statements to attack me.

Proving you wrong is not an attack.

All I will ask of Frank, on behalf of everyone he is trolling right now,
is for Frank to simply find just one security researcher who agrees with
him.

Again the appealing to authority fallacy. Anyway, no real 'security researcher' would say or imply that a BSSID is effectively pointing to
an individual. As has already been repeatedly mentioned, that you
misinterpret what your 'security researchers' say is nobody's problem,
but yours.

[1] Not that it matters. Apparently "excellent education" and "high
IQ" isn't all that meaningful.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Frank Slootweg wrote:

and hence his BSSID is him.

Your IQ is too low to understand that "tracking" is just running the script
a few times. It's shocking that I have to explain something that trivial.

Apparently *your* IQ is too low to realize that I never said anything
about tracking, nor about "the script".

I advise you to stock up on your army of straw men, you don't want to
risk running out, do you!?

[...]
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

N++oN++ON++@N+++?-NN++ Big5 N++sN++XN++N++N++N++N+++#TN++N++N++C<---chinese characters are here

Unreadable, because your charset headers are random and faked, they do
not correspond to the contents of the text. This is a bug in your
scripts, they should send the charset headers that are true and
correspond to your actual text encoding. Otherwise, our readers will try
to display your posts and fail to do the correct rendering.

Hi Carlos,

Thanks for letting me know as I never understood charsets in headers.
"Content-Type: text/plain; charset=UTF-8
"

Looking it up, apparently typically the posting client (newsreader)
sets the charset in the outgoing header, so it's up to me to set it.

When I type a message, I only use ASCII code points 0x20 through 0x7E
(the 95 printable keyboard characters); so it's not usually an issue.

So that's why 99.9% of my posts don't have any charset issues.

The problem comes when I paste into the article from elsewhere.
Often there are characters in that pasted text which are not ASCII.

What I can do is scrub each message via the XML substitution below.

<?xml version="1.0" encoding="UTF-8" ?>
<!-- shortcuts.xml, ctrl+b, Macro > ASCII, Version 1.1 -->
<!-- version 1.2, added backtick, degree, and unicode arrow -->
<!-- version 1.3, added copyright, registered and trademark -->
<NotepadPlus>
<InternalCommands>
<Shortcut id="43009" Ctrl="no" Alt="no" Shift="no" Key="0" />
</InternalCommands>
<Macros>
<Macro name="ASCII" Ctrl="yes" Alt="no" Shift="no" Key="66">
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2010;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- === NEW: Handle SOH (ASCII 0x01) === -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x0001;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<!-- Replace SOH with nothing (strip it) -->
<Action type="3" message="1602" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<!-- === END SOH block === -->


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2012;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2013;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2014;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2212;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2018;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2019;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201C;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam='&quot;' />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201D;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam='&quot;' />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200C;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&#x2a;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200B;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200C;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200D;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2060;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#xFEFF;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00A0;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2007;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x202F;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2011;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x0F0C;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2018;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2019;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201C;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam='&quot;' />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201D;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam='&quot;' />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2026;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="..." />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&amp;#151;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&amp;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2014;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2013;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&zwnj;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2022;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&#x002A;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x8722;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="&amp;" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x11f;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="g" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#8201;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="x" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#xe1;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="a" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x161;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="s" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />



<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x11b;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam="e" />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />



<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2713;" />

<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />

<Action type="3" message="1602" wParam="0" lParam="0" sParam=" " />

<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />

<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />


<!-- === START: Extra mappings === -->
<!-- Apostrophe lookalikes -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2032;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x02BC;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Extra dash variants -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Backtick to ASCII single quote -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="`" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Unicode Arrow (U+2192) to ASCII dash greaterthan -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2192;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="->" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- degree symbol to the word deg -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00B0;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="deg" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- copyright symbol to the letter (C) -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00A9;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(C)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Trademark (U+2122) to (TM) -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2122;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(TM)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Registered (U+00AE) to (R) -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00AE;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(R)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- === END: Extra mappings === -->
</Macro>

</Macros>
<UserDefinedCommands>
<Command name="Get PHP help" Ctrl="no" Alt="yes" Shift="no" Key="112">https://www.php.net/$(CURRENT_WORD)</Command>
<Command name="Wikipedia Search" Ctrl="no" Alt="yes" Shift="no" Key="114">https://en.wikipedia.org/wiki/Special:Search?search=$(CURRENT_WORD)</Command>
<Command name="Open file in another instance" Ctrl="no" Alt="yes" Shift="no" Key="117">$(NPP_FULL_FILE_PATH) $(CURRENT_WORD) -nosession -multiInst</Command>
</UserDefinedCommands>
<PluginCommands />
<ScintillaKeys />
</NotepadPlus>
--
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

What I can do is scrub each message via the XML substitution below.

I wrote a tutorial and posted it to the Windows newsgroups, for
substituting all the funky characters to the 95 keyboard characters.

From: Marian <marianjones@helpfulpeople.com>
Newsgroups: alt.comp.os.windows-10,alt.comp.os.windows-11,alt.comp.microsoft.windows
Subject: Tutorial: Notepad++ shortcuts.xml macro converts unicode to the 95-keyboard ASCII characters
Date: Thu, 11 Dec 2025 09:42:48 -0700
Message-ID: <10hesa9$2q1m$1@nnrp.usenet.blueworldhosting.com>

Examples of the substitutions are many kinds of these characters:
Hyphens: - - - - - -
Quotes: ' ' " " 'backtick'
Ellipsis: ...
Bullets: *
Zero-widtha: ''' (these may look invisible)
Spaces:
Symbols: 90deg (C) (TM) (R)
Arrowa: ->
Literals: - &amp;#151;
Diacritics: g s e a
SOH: [U+0001 here]
etc.

Here's the shortcuts.xml file that resulted from that tutorial just now.
It's tested against all the characters listed in the file comments.

<?xml version="1.0" encoding="UTF-8" ?>
<!-- Notepad++ shortcuts.xml version 1p1 20251211 -->
<!-- Use model: ctrl+A (select all), ctrl=B (convert) -->
<!-- -->
<!-- 1700 start search -->
<!-- 1601 set search string (funky character) -->
<!-- 1625 clear replace buffer -->
<!-- 1602 set replacement string (ASCII equivalent) -->
<!-- 1702 run replace all -->
<!-- 1701 end -->
<!-- -->

<NotepadPlus>
<InternalCommands>
<Shortcut id="43009" Ctrl="no" Alt="no" Shift="no" Key="0" />
</InternalCommands>

<Macros>
<Macro name="ASCII" Ctrl="yes" Alt="no" Shift="no" Key="66">

<!-- U+2010 HYPHEN ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2010;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2011 NON-BREAKING HYPHEN ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2011;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2012 FIGURE DASH ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2012;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2013 EN DASH ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2013;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2014 EM DASH ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2014;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2212 MINUS SIGN ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2212;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2018 LEFT SINGLE QUOTE ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2018;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2019 RIGHT SINGLE QUOTE ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2019;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+201C LEFT DOUBLE QUOTE ? "\"" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201C;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&quot;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+201D RIGHT DOUBLE QUOTE ? "\"" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x201D;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&quot;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2026 HORIZONTAL ELLIPSIS ? "..." -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2026;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="..." />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2022 BULLET ? "*" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2022;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="*" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+200B ZERO WIDTH SPACE ? "" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200B;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+200C ZERO WIDTH NON-JOINER ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200C;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+200D ZERO WIDTH JOINER ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x200D;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2060 WORD JOINER ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2060;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+FEFF BOM ? "" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#xFEFF;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+00A0 NO-BREAK SPACE ? " " -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00A0;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam=" " />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2007 FIGURE SPACE ? " " -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2007;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam=" " />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+202F NARROW NO-BREAK SPACE ? " " -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x202F;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam=" " />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+00B0 DEGREE SIGN ? "deg" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00B0;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="deg" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+00A9 COPYRIGHT SIGN ? "(C)" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00A9;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(C)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2122 TRADE MARK SIGN ? "(TM)" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2122;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(TM)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+00AE REGISTERED SIGN ? "(R)" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00AE;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="(R)" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+2192 RIGHT ARROW ? "->" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x2192;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="->" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- BACKTICK ? "'" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="`" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&apos;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Literal &zwnj; ? "-" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&zwnj;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="-" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- Literal &amp;#151; ? "&" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&amp;#151;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="&amp;" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+011F LATIN SMALL LETTER G WITH BREVE ? "g" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x011F;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="g" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+0161 LATIN SMALL LETTER S WITH CARON ? "s" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x0161;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="s" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+011B LATIN SMALL LETTER E WITH CARON ? "e" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x011B;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="e" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+00E1 LATIN SMALL LETTER A WITH ACUTE ? "a" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x00E1;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="a" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

<!-- U+0001 SOH ? "" -->
<Action type="3" message="1700" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1601" wParam="0" lParam="0" sParam="&#x0001;" />
<Action type="3" message="1625" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1602" wParam="0" lParam="0" sParam="" />
<Action type="3" message="1702" wParam="0" lParam="768" sParam="" />
<Action type="3" message="1701" wParam="0" lParam="1609" sParam="" />

</Macro>
</Macros>

<UserDefinedCommands>
<Command name="Get PHP help" Ctrl="no" Alt="yes" Shift="no" Key="112">https://www.php.net/$(CURRENT_WORD)</Command>
<Command name="Wikipedia Search" Ctrl="no" Alt="yes" Shift="no" Key="114">https://en.wikipedia.org/wiki/Special:Search?search=$(CURRENT_WORD)</Command>
<Command name="Open file in another instance" Ctrl="no" Alt="yes" Shift="no" Key="117">$(NPP_FULL_FILE_PATH) $(CURRENT_WORD) -nosession -multiInst</Command>
</UserDefinedCommands>

<PluginCommands />
<ScintillaKeys />
</NotepadPlus>

Note that funky Chinese characters can still slip paste me as I have
to recognize them & choose a conversion for them to put in the macro.

Let me know what I missed so we can improve the macro for the team!
--
I invest energy in composing Usenet posts because I care greatly about people getting full & complete information so we move our tribal knowledge forward.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

it does contain big5, that's what triggered fonts, if it remains a
mystery, that doesn't bother me ...

Hmmm... thanks for looking since I was so sure I didn't add it that I
didn't even bother to look. Now I'm looking at your reference
<https://al.howardknight.net/?ID=176540312200>
MIME-Version: 1.0
Content-Type: text/plain; charset="big5"
Content-Transfer-Encoding: 8bit

The server to which you upload the post can do its own changes.

Thanks for your help and from the help of Andy, where I want to be very
clear that I've never really understood this charset header stuff. :(

What I'll do, moving forward, is when I copy from another source, I will
run it thru my macro (see other post with the macro) to clean it up.

That way the text I post will always be clean ASCII using only the
95 keyboard characters, so the charset header line won't matter.

I need to figure out (later) how to script it so that everything
I submit thru telnet to the nntp server goes thru the conversion.

But for now, what I can do is this (ugly) sequence:
control+x (copy the text from the news article)
Win+n (bring up Notepad++ using the App Paths registry key)
control+v (paste the text from the news article into Notepad++)
control+a (if it's not already all selected)
control+b (convert it by running the macro provided in this thread)
control+x (cut it out of Notepad++)
control+v (paste it back into gVim)
control+s (send the gVim text to Usenet via telnet to my nntp server)

It's actually not so bad because it's just button taps.
But I agree when I control-send from gVim, I should just run it
thru the conversion sequence at that point in time.

That's for later, as every time I touch my scripts, I break something.
But thanks to you and Andy for helping out, as I care about it all.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025/12/11 15:19:40, Frank Slootweg wrote:
[Huge argument, in which I have no interest, snipped]

Proving you wrong is not an attack.

_That_ line has gone straight into my quotes file!
[more snip]
--
J. P. Gilliver. UMRA: 1960/<1985 MB++G()ALIS-Ch++(p)Ar++T+H+Sh0!:`)DNAf
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

Hint: No professional on the planet agrees with you. And we know that.

Argument to authority fallacy noted.

Request of both Chris & Frank...

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just
a number" when we're talking about privacy, please find just one security researcher on the planet who agrees with your strongly held privacy claim.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

J. P. Gilliver wrote:

Proving you wrong is not an attack.

_That_ line has gone straight into my quotes file!

Request of both Chris & Frank...

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just
a number" when we're talking about privacy, please find just one security researcher on the planet who agrees with your strongly held privacy claim.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

The BSSID would be the same, but the SSID would change (I would be
careful to do a factory reset to the router before returning it).

We can make a list of consumer routers which allow the BSSID to be changed.

Note that almost all (if not all) routers allow the internal-facing BSSID
to be changed but we're talking about the externally-facing BSSID (which is
the BSSID associated with the access point SSID that needs to be changed).

We'd still need to flash that consumer router with OpenWrt, DD-WRT, Tomato, etc., though, because typical firmware doesn't allow that BSSID to change.

Worse, even if we use custom router firmware, the chipset driver still has
to expose the ability to override the hardware MAC.

For example, Broadcom's closed-source drivers don't expose MAC override reliably while Atheros/Qualcomm chipsets open drivers allow setting custom
MAC addresses per interface. Mediatek chipsets generally allow MAC override
in OpenWrt, since drivers are open source.

So, for example, any Netgear routger with a Broadcom chipset will be problematic if I want to change my SSID every year (or so).

But a Netgear R7800 (Nighthawk X4S AC2600), for example, uses Qualcomm
IPQ8065 SoC + QCA9984 radios which are fully supported by OpenWrt.

Likewise with the Netgear R7500v2 (Qualcomm IPQ8064 SoC + QCA9880 radios)
and the Netgear WNDR3700 / WNDR3800 (Atheros AR7161 SoC + AR9220/AR9223
radios) and the Netgear R6100 (Qualcomm-Atheros AR9344 SoC) routers.

My router (Netgear Nighthawk AX12 12-Stream Tri-Band AX WiFi Router Model RAX200) is using the Broadcom chipset (BCM49408 SoC) unfortunately.

In the future, I'm going to only buy routers that allow the outward-facing
SSID to change, which basically means no router with Broadcom chipsets.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg <this@ddress.is.invalid> wrote:

so I
should treat him gently when he makes his absurd statements to attack me.

Proving you wrong is not an attack.

It is to those with thin skins.

[1] Not that it matters. Apparently "excellent education" and "high
IQ" isn't all that meaningful.

Oh, but it is. Anyone using those terms is likely highly superficial and
vain.



--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Hint: No professional on the planet agrees with you. And we know that.

Argument to authority fallacy noted.

Request of both Chris & Frank...

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just
a number" when we're talking about privacy, please find just one security researcher on the planet who agrees with your strongly held privacy claim.

And what would that achieve? It's the equivalent of a playground argument dissolving into "my dad is bigger than your dad."

Being dependent on someone else's opinion is weak.

Why don't you engage with the criticism and defend your own argument with evidence? You like to call yourself a scientist. Now's your chance to act
like one.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

In addition, in the above scenario, the tax authorities would have far
better information at their disposal on actual people rather than some
vague technical proxy. A MAC is not a person. Not yet at least ;)

To equate the government with random companies selling your identification
for a buck is probably something most people wouldn't directly do.

I wouldn't put it past the government, but I wonder what kind of repressive regime Chris must be living under to equate the government with Apple?

There's a huge difference in the government's power over you versus
Apple's. Well, at least for a normal person. Maybe not for Chris. :)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg wrote:

Apparently *your* IQ is too low to realize that I never said anything

Frank,

You couldn't even get into college, so don't cry to me about your low IQ.
Your entire life people told you that you're stupid. Don't blame me.

I didn't even bring up this absurd quote from you, Frank, about politics:
"Fits right in with his administration's agenda."

Chris did the same thing.

I've never said a good word about Trump in my life, nor about Biden.
Nor about Hillary. Nor about Kamala. Nor about any politicians, Frank.

Just as I'm too smart to be religious (save for in a foxhole), I don't
believe a word any politicians spew during their election speech rhetoric.

And yet, you and Chris, having no arguyment whatsoever, claim for some
whacko reasons only known to you, that I'm some kind of Trump supporter?

What is wrong with you and Chris Frank?
You are both rather strange people indeed.

Find in all my thousands of posts on Usenet, anything good I've ever said
about ANY politician, let along those of "this administration".

Find just one.


HINT: The fact that Franks' (and Chris') only defense of their own
illogical view of the BSSID:GPS pair not locating a household by calling me
a "Trump supporter" speaks for itself, does it not?

Who is that stupid?
Specifically, who on earth says that
*If you want BSSID:GPS privacy, then you're a Trump supporter?*

What kind of strange person says that?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

Let's remember your claim. You said:

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Your code is nowhere near this.

Your lack of intelligence shows up in your lack of imagination.

For example, the fact I do not feel like tracking people, somehow, to you, means that people can't be tracked.

WTF?

What kind of strange person makes such an illogical non-sensical claim?


The security researchers proved it can be done.
That is all the proof you need.

Plus, the researchers showed they could get BILLIONS of GPS:BSSID pairs.
And I showed you can easily track them (as did those same researchers).

Your claim is it can't be done (because I didn't do it).
That's so illogical and non sensical that I have to question your IQ.

Of course it can be done.
Whether or not I choose to do it.

What kind of strange person calls me (of all people!) a "Trump supporter" simply because I refuse to write a script to literally track real people?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Carlos E.R. wrote:

You trolls make the most absurd arguments that only you would concoct.
You actually believe someone said their MAC address was their name.

You will not convince anyone by calling people trolls just because they
do not agree with you. It rather makes us abandone the issue.

His claim is I'm a "Trump supporter" because I want privacy from Apple.
Frank Slootweg made the same claim.

I've never said a good word about ANY politician (let alone Trump), but
even if I had, what does privacy from Apple's WPS have to do with Trump?

You tell me.

Is that Chris & Frank trolling or not?
And, how does their "Trump supporter" argument sit with you, Carlos?

Remember, I'm arguing that they can track households via the BSSID:GPS pair
and they're saying it's "just a number".

Even if you disagree with my argument, how can you possibly agree with
theirs?

Why don't you question them calling me a "Trump supporter"?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Tyrone wrote:

My AP BSSID is me. It's nobody else. It's me. To 8 decimal places, it's me. >>

But no one but you knows which BSSID belongs to you.

You should know by now that you should not confuse

I get it you Apple trolls defend Apple to the death, no matter what.
Alan Baker, Alan Browne, Chris, Haemactylus, -hh, Jeorg Lorenz,
JF Mezei, Jolly Roger, Lewis, nospam, Tom Elam, Tyrone, Your Name

But do NONE of you understand a GPS location to your house, is your house?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just >> a number" when we're talking about privacy, please find just one security
researcher on the planet who agrees with your strongly held privacy claim.

And what would that achieve?
Being dependent on someone else's opinion is weak.
Why don't you engage with the criticism and defend your own argument with evidence? You like to call yourself a scientist. Now's your chance to act like one.

I get it you Apple trolls always defend Apple to the death, no matter what.

Alan Baker, Alan Browne, Chris, Haemactylus, -hh, Jeorg Lorenz,
JF Mezei, Jolly Roger, Lewis, nospam, Tom Elam, Tyrone, Your Name

All I'm asking you to do is what I've done, which is quote reliable
references that back up your claim that a BSSID:GPS pair is, to you,
*Just a Number*

Name just one security reseaqrcher on the planet who agrees with you.
*Name Just One*

HINT: You Apple trolls always fail this simple credibility test.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

should treat him gently when he makes his absurd statements to attack me. >>

Proving you wrong is not an attack.

It is to those

You and Frank both called me a "Trump supporter" because I care about
privacy and because I understand the power of a BSSID:GPS pairing.

What is the logic in your repetitive claims?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

Let's remember your claim. You said:

It would be trivial, using Apple's WPS system, to find everyone in any
given county in Florida who recently moved there from California.

Your code is nowhere near this.

Your lack of intelligence shows up in your lack of imagination.

For example, the fact I do not feel like tracking people, somehow, to you, means that people can't be tracked.

You said it was "trivial". So far your efforts show it's far from it, which
is my point. You make such grandiose claims, Donald, and then you TACO from backing them up.

This is yet another example.


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Carlos E.R. wrote:

You trolls make the most absurd arguments that only you would concoct.
You actually believe someone said their MAC address was their name.

You will not convince anyone by calling people trolls just because they
do not agree with you. It rather makes us abandone the issue.

His claim is I'm a "Trump supporter" because I want privacy from Apple.

Please evidence where that happened anywhere than inside your head.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Carlos E.R. wrote:

In addition, in the above scenario, the tax authorities would have far
better information at their disposal on actual people rather than some
vague technical proxy. A MAC is not a person. Not yet at least ;)

To equate the government with random companies selling your identification for a buck is probably something most people wouldn't directly do.

I wouldn't put it past the government, but I wonder what kind of repressive regime Chris must be living under to equate the government with Apple?

You're the one who brought up identifying recently moved californians to
pay their 401k taxes.

There's a huge difference in the government's power over you versus
Apple's. Well, at least for a normal person. Maybe not for Chris. :)

Ah but you said this was "trivial" and used sheriffs as another example.


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just >>> a number" when we're talking about privacy, please find just one security >>> researcher on the planet who agrees with your strongly held privacy claim. >>

And what would that achieve?
Being dependent on someone else's opinion is weak.
Why don't you engage with the criticism and defend your own argument with
evidence? You like to call yourself a scientist. Now's your chance to act
like one.

I get it you Apple trolls always defend Apple to the death, no matter what.

Alan Baker, Alan Browne, Chris, Haemactylus, -hh, Jeorg Lorenz,
JF Mezei, Jolly Roger, Lewis, nospam, Tom Elam, Tyrone, Your Name

All I'm asking you to do is what I've done, which is quote reliable references that back up your claim that a BSSID:GPS pair is, to you,
*Just a Number*

Name just one security reseaqrcher on the planet who agrees with you.
*Name Just One*

HINT: You Apple trolls always fail this simple credibility test.

This subthread tells you all you need to know about our Donald.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

[Lies, false claims, etc. deleted.]

HINT: The fact that Franks' (and Chris') only defense of their own
illogical view of the BSSID:GPS pair not locating a household

Acknowledgement of *our* argument duly noted.

QED.

[More of the same lies, etc. deleted.]
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 2025-12-13 04:09, Chris wrote:

Marian <marianjones@helpfulpeople.com> wrote:

Chris wrote:

If you truly believe your oft-stated opinion that a BSSID:GPS pair is "just

Alan Baker, Alan Browne, Chris, Haemactylus, -hh, Jeorg Lorenz,
JF Mezei, Jolly Roger, Lewis, nospam, Tom Elam, Tyrone, Your Name

Bizarre that I'm mentioned on a topic that I've never opined on!

This subthread tells you all you need to know about our Donald.

They used to put such into appropriate wards with big hefty men and
syringe equipped nurses to keep under control. Play dreary classical
music, etc...
--
"It would be a measureless disaster if Russian barbarism overlaid
the culture and independence of the ancient States of Europe."
Winston Churchill

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Frank Slootweg wrote:

Acknowledgement of *our* argument duly noted.

Hi Frank,

I noticed you ran the netsh command so I want to let you know I wasn't
aware, until recently, that the results depend on what's in the cache.

I wrote a query of the Windows newsgroup, asking if anyone knows of a way
to run that netsh command so that a full output occurs every single run.

From: Marian <marianjones@helpfulpeople.com>
Newsgroups: alt.comp.os.windows-10
Subject: How to show ALL nearby Wi-Fi AP's BSSID every time
Date: Sat, 13 Dec 2025 20:01:13 -0700
Message-ID: <10hl99p$1d1l$1@nnrp.usenet.blueworldhosting.com>

Essentially, we get a more full output if we run the netsh command moments after we force our wifi adapter to reset than if it was already running.

For example, this only reports what's in the cache (AFAICT):
netsh wlan show networks mode=bssid
While this "can" force a refresh of that cache (AFAICT):
netsh wlan refresh && netsh wlan show networks mode=bssid

Although *toggling* the wifi adapter seems to garner the fullest results.

Since I always strive to add value to the tribal knowledge of the team,
below is my "netconnect" script to which I will add the scan after toggle.

@echo off
REM This is v1p2 of C:\data\sys\batch\netconnect.bat
REM Resets Wi-Fi to a consistent state after unexpected loss
REM v1p0 20251029
REM elevates to admin
REM toggles Wi-Fi to put it into a consistent state after reboot
REM then connects to a given named SSID
REM v1p1 20251101
REM added conditional checks and retries
REM v1p2 20251102
REM added loop to verify State/SSID and retry until truly connected

:: --- Elevate to admin if not already ---
>nul 2>&1 net session
if %errorlevel% neq 0 (
echo Requesting administrative privileges...
powershell -Command "Start-Process '%~f0' -Verb RunAs"
exit /b
)

:: Use "netsh interface show interface" to get adapter name
set adapter=Wi-Fi
:: Assumption is that the ssid:password has already been saved
set ssid=your.ssid_nomap

:: The saved SSID profile is used for credentials.
echo [%date% %time%] Toggling Wi-Fi adapter...
netsh interface show interface name=%adapter%

REM Disable the adapter (to set to a consistent state)
netsh interface set interface name=%adapter% admin=disable
timeout /t 5 >nul

REM Enable the adapter (to set to the desired state)
netsh interface set interface name=%adapter% admin=enable
timeout /t 10 >nul

echo Attempting to connect to %ssid%...

REM Connect to the specified SSID after adapter is fully enabled
powershell -Command "Enable-NetAdapter -Name '%adapter%' -Confirm:$false"
timeout /t 5 >nul

REM Added loop to verify State/SSID and retry until truly connected
set retries=3
:retry
echo Connecting to %ssid%...
netsh wlan connect name=%ssid%
timeout /t 5 >nul

for /f "tokens=2 delims=:" %%A in ('netsh wlan show interfaces ^| findstr /C:"State"') do (
set state=%%A
)
for /f "tokens=2 delims=:" %%A in ('netsh wlan show interfaces ^| findstr /C:"SSID" ^| findstr /V "BSSID"') do (
set currentSSID=%%A
)

set state=%state: =%
set currentSSID=%currentSSID: =%

if /I "%state%"=="connected" if /I "%currentSSID%"=="%ssid%" (
echo Connected successfully to %ssid%.
goto done
) else (
set /a retries-=1
if %retries% gtr 0 (
echo Not connected yet. Retrying...
timeout /t 5 >nul
goto retry
) else (
echo Connection failed after multiple attempts.
)
)

:done

echo [%date% %time%] Done. Check your connection status.
echo Final adapter status:
netsh interface show interface name=%adapter%
netsh wlan show interfaces
pause
:: end of C:\data\sys\batch\netconnect.bat
--
I invest energy in composing Usenet posts because I care greatly about people getting full & complete information so we improve our knowledge.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

Essentially, we get a more full output if we run the netsh command moments after we force our wifi adapter to reset than if it was already running.

I added a better output summary. I tried to get a RSSI histogram,
but it was just too cumbersome; so I backed off & just added counts.

It's a bummer that Windows isn't reliable in outputting all the
access points nearby in a single command, but this works reasonably.

@echo off
REM This is C:\data\sys\batch\netscan.bat version 2p1
REM Logs the fullest list possible of all nearby Wi-Fi APs
REM v1p0 20251213 outputs wifi adapter AP cache to a log file
REM v1p1 20251213 disconnects/reconnects Wi-Fi, then outputs AP cache
REM v1p2 20251213 captures multiple snapshots for the fullest AP list
REM v1p3 20251213 captures multiple AP scans with timestamps for each
REM v1p4 20251213 build a consolidated summary of the full list of AP's
REM v1p5 20251213 count the unique BSSIDs and SSIDs found in the AP scan
REM v1p6 20251213 add a summary of BSSIDs and SSIDs found per scan
REM v1p7 20251213 add a signal-strength histogram via PowerShell
REM v1p8 20251213 separate scan results into files for better counts
REM v1p9 20251213 tried to create histogram using PowerShell but failed
REM v2p0 20251213 reverted to 1p6 and created tmp files to fix counts
REM v2p1 20251213 added per-scan BSSID counts along with the SSID counts
REM Note: Without admin, we can only toggle known Wi-Fi profiles
REM Note: Use netconnect.bat for a more powerful adapter reset with admin

setlocal enabledelayedexpansion
set ssid=ymca.pool_nomap
set "logdir=C:\data\sys\log"
if not exist "%logdir%" mkdir "%logdir%"

for /f %%A in ('wmic os get localdatetime ^| find "."') do set dt=%%A
set "ts=%dt:~0,8%_%dt:~8,6%"
set "logfile=%logdir%\wifiscan_%ts%.log"

echo === Wi-Fi scan session started at %date% %time% === >> "%logfile%"

REM 1) Disconnect from current SSID
echo [%date% %time%] Disconnecting Wi-Fi...
netsh wlan disconnect
timeout /t 12 >nul

echo === Scan A (disconnected state) at %date% %time% === >> "%logfile%"
netsh wlan show networks mode=bssid > "%logdir%\scanA.tmp"
type "%logdir%\scanA.tmp" >> "%logfile%"
echo --- End of Scan A --- >> "%logfile%"

REM 2) Reconnect to target SSID
echo [%date% %time%] Reconnecting to %ssid%...
netsh wlan connect name=%ssid%
timeout /t 15 >nul

echo === Scan B (after reconnect) at %date% %time% === >> "%logfile%"
netsh wlan show networks mode=bssid > "%logdir%\scanB.tmp"
type "%logdir%\scanB.tmp" >> "%logfile%"
echo --- End of Scan B --- >> "%logfile%"

REM 3) Wait longer for background scan to complete
timeout /t 20 >nul
echo === Scan C (delayed snapshot) at %date% %time% === >> "%logfile%"
netsh wlan show networks mode=bssid > "%logdir%\scanC.tmp"
type "%logdir%\scanC.tmp" >> "%logfile%"
echo --- End of Scan C --- >> "%logfile%"

REM 4) Build consolidated summary (union of SSIDs and BSSIDs with counts)
echo === Consolidated AP Summary (union of all scans) === >> "%logfile%"

REM Unique SSIDs
echo --- Unique SSIDs --- >> "%logfile%"
type "%logdir%\scanA.tmp" "%logdir%\scanB.tmp" "%logdir%\scanC.tmp" | findstr /R /C:"^SSID" | sort /unique > "%logdir%\ssid.tmp"
type "%logdir%\ssid.tmp" >> "%logfile%"
for /f %%C in ('type "%logdir%\ssid.tmp" ^| find /c /v ""') do set ssidcount=%%C
echo Total unique SSIDs: %ssidcount% >> "%logfile%"

REM Unique BSSIDs
echo --- Unique BSSIDs --- >> "%logfile%"
type "%logdir%\scanA.tmp" "%logdir%\scanB.tmp" "%logdir%\scanC.tmp" | findstr /R /C:"BSSID" | sort /unique > "%logdir%\bssid.tmp"
type "%logdir%\bssid.tmp" >> "%logfile%"
for /f %%C in ('type "%logdir%\bssid.tmp" ^| find /c /v ""') do set bssidcount=%%C
echo Total unique BSSIDs: %bssidcount% >> "%logfile%"

REM Per-scan SSID counts
echo --- Per-scan SSID counts --- >> "%logfile%"
for /f %%C in ('findstr /C:"SSID" "%logdir%\scanA.tmp" ^| find /c "SSID"') do set scanAcount=%%C
for /f %%C in ('findstr /C:"SSID" "%logdir%\scanB.tmp" ^| find /c "SSID"') do set scanBcount=%%C
for /f %%C in ('findstr /C:"SSID" "%logdir%\scanC.tmp" ^| find /c "SSID"') do set scanCcount=%%C
echo Scan A SSIDs: %scanAcount% >> "%logfile%"
echo Scan B SSIDs: %scanBcount% >> "%logfile%"
echo Scan C SSIDs: %scanCcount% >> "%logfile%"

REM Per-scan BSSID counts (new in v2p1)
echo --- Per-scan BSSID counts --- >> "%logfile%"
for /f %%C in ('findstr /C:"BSSID" "%logdir%\scanA.tmp" ^| find /c "BSSID"') do set scanAbssid=%%C
for /f %%C in ('findstr /C:"BSSID" "%logdir%\scanB.tmp" ^| find /c "BSSID"') do set scanBbssid=%%C
for /f %%C in ('findstr /C:"BSSID" "%logdir%\scanC.tmp" ^| find /c "BSSID"') do set scanCbssid=%%C
echo Scan A BSSIDs: %scanAbssid% >> "%logfile%"
echo Scan B BSSIDs: %scanBbssid% >> "%logfile%"
echo Scan C BSSIDs: %scanCbssid% >> "%logfile%"

del "%logdir%\scanA.tmp" "%logdir%\scanB.tmp" "%logdir%\scanC.tmp" "%logdir%\ssid.tmp" "%logdir%\bssid.tmp"

echo === Wi-Fi scan session finished at %date% %time% === >> "%logfile%"
echo Log written to %logfile%
pause

REM end of C:\data\sys\batch\netscan.bat
--
Helping others & learning from them is what this Usenet ng is all about.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

You said it was "trivial". So far your efforts show it's far from it, which is my point. You make such grandiose claims, Donald, and then you TACO from backing them up.

It was trivial.
However, it took me the good part of a half hour to figure it out.

Here's how to query Apple's insecure WPS database for hundreds of
BSSID:GPS location pairs, simply by feeding the database one BSSID.

0. python apple_bssid_locator.py 11:22:33:AA:BB:CC
only gives you a single BSSID:GPS pair accurate to 8 decimal places.
1. Edit apple_bssid_locator.py in the previous GitHub download package.
<https://github.com/darkosancanin/apple_bssid_locator>
2. Note that query_bssid() has the following limitation built in:
apple_wloc.return_single_result = 1 (i.e., "yes")
3. Then in process_result(), the code loops through apple_wloc.wifi_devices
and extracts only those with a location field. It builds a dictionary of
{BSSID: (lat, lon)}.
4. In main(), unless you pass --all, it only prints the coordinates for
the one BSSID you asked about.
5. However, Apple's API actually returns a cluster of nearby APs
(hundreds of BSSIDs) when you don't restrict it from doing so.
6. To get *hundreds* of nearby BSSID:GPS pairs, simply change the
def query_bssid(bssid, output_file="results.txt") as shown below.
9. Now run the python script again:
python apple_bssid_locator.py 11:22:33:AA:BB:CC --all
10. You'll get *hundreds* of access point location pairs now!

def query_bssid(bssid, output_file="results.txt"):
apple_wloc = AppleWLoc_pb2.AppleWLoc()
wifi_device = apple_wloc.wifi_devices.add()
wifi_device.bssid = bssid
apple_wloc.unknown_value1 = 0
apple_wloc.return_single_result = 0 # request ALL results
serialized_apple_wloc = apple_wloc.SerializeToString()
length_serialized_apple_wloc = len(serialized_apple_wloc)

headers = {'User-Agent':'locationd/1753.17 CFNetwork/889.9 Darwin/17.2.0'}
data = b"\x00\x01\x00\x05"+b"en_US"+b"\x00\x13"+b"com.apple.locationd"+b"\x00\x0a"+b"8.1.12B411"+b"\x00\x00\x00\x01\x00\x00\x00" + bytes((length_serialized_apple_wloc,)) + serialized_apple_wloc
r = requests.post('https://gs-loc.apple.com/clls/wloc', headers=headers, data=data)

apple_wloc = AppleWLoc_pb2.AppleWLoc()
apple_wloc.ParseFromString(r.content[10:])

# Build dictionary of results
results = {}
with open(output_file, "w") as f:
for wifi_device in apple_wloc.wifi_devices:
if wifi_device.HasField('location'):
lat = wifi_device.location.latitude * 1e-8
lon = wifi_device.location.longitude * 1e-8
mac = format_bssid(wifi_device.bssid)
results[mac] = (lat, lon)
f.write(f"{mac}\t{lat}\t{lon}\n")

print(f"Saved {len(results)} entries to {output_file}")
return results

Note that we can plot those ~400 entries on a map with Python's folium
library so you can visually explore the cluster instead of scrolling.
--
Apple "says" they care about your privacy; but their actions
show that they don't follow their own privacy policies.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian wrote:

Note that we can plot those ~400 entries on a map with Python's folium library so you can visually explore the cluster instead of scrolling.

It's trivial to display all the results.txt BSSID:GPS pairs on a local map!

Download the folium source archive <https://pypi.org/project/folium/#files> <https://files.pythonhosted.org/packages/c7/76/84a1b1b00ce71f9c0c44af7d80f310c02e2e583591fe7d4cb03baecd0d3f/folium-0.20.0.tar.gz>
Name: folium-0.20.0.tar.gz
Size: 109932 bytes (107 KiB)
SHA256: A0D78B9D5A36BA7589CA9AEDBD433E84E9FCAB79CD6AC213ADBCFF922E454CB9

C:\app\archiver\7zip\7z.exe xfolium-0.20.0.tar.gz
C:\app\archiver\7zip\7z.exe x folium-0.20.0.tar
xcopy /E /I folium-0.20.0\folium C:\app\os\python\Lib\site-packages\folium
53 files copied
C:\app\os\python\python.exe -c "import folium; print(folium.__version__)"

Download the latest branca release from PyPI: <https://pypi.org/project/branca/#files> https://files.pythonhosted.org/packages/32/14/9d409124bda3f4ab7af3802aba07181d1fd56aa96cc4b999faea6a27a0d2/branca-0.8.2.tar.gz
Name: branca-0.8.2.tar.gz
Size: 27890 bytes (27 KiB)
SHA256: E5040F4C286E973658C27DE9225C1A5A7356DD0702A7C8D84C0F0DFBDE388FE7 C:\app\archiver\7zip\7z.exe x branca-0.8.2.tar.gz
C:\app\archiver\7zip\7z.exe x branca-0.8.2.tar

xcopy /E /I branca-0.8.2\branca C:\app\os\python\Lib\site-packages\branca

10 files copied
C:\app\os\python\python.exe -c "import branca; print(branca.__version__)"

Download Jinja2 source archive
<https://pypi.org/project/Jinja2/#files> https://files.pythonhosted.org/packages/df/bf/f7da0350254c0ed7c72f3e33cef02e048281fec7ecec5f032d4aac52226b/jinja2-3.1.6.tar.gz
Name: jinja2-3.1.6.tar.gz
Size: 245115 bytes (239 KiB)
SHA256: 0137FB05990D35F1275A587E9AEE6D56DA821FC83491A0FB838183BE43F66D6D C:\app\archiver\7zip\7z.exe x Jinja2-3.1.6.tar.gz
C:\app\archiver\7zip\7z.exe x Jinja2-3.1.6.tar
xcopy /E /I Jinja2-3.1.6\src\jinja2 C:\app\os\python\Lib\site-packages\jinja2 26 files copied
C:\app\os\python\python.exe -c "import jinja2; print(jinja2.__version__)"

Since this is getting tedious, I'll install pip:
C:\app\os\python\python.exe -m ensurepip

And then I'll install the rest of the dependencies.
C:\app\os\python\python.exe -m pip install markupsafe C:\app\os\python\python.exe -m pip install numpy
C:\app\os\python\python.exe -m pip install xyzservices

Test:
C:\app\os\python\python.exe -c "import folium; print(folium.__version__)" C:\app\os\python\python.exe -c "import folium; m = folium.Map(location=[0,0], zoom_start=2); m.save('test_map.html'); print('OK')"

python plot_bssid.py
Map saved to bssid_map.html

start msedge "C:\app\os\python\apple_bssid_locator\bssid_map.html"
Voila! Up to 400 nearest access points on the map in a single query.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marian <marianjones@helpfulpeople.com> wrote:

Marian wrote:

Note that we can plot those ~400 entries on a map with Python's folium
library so you can visually explore the cluster instead of scrolling.

It's trivial to display all the results.txt BSSID:GPS pairs on a local map!

Download the folium source archive <https://pypi.org/project/folium/#files> <https://files.pythonhosted.org/packages/c7/76/84a1b1b00ce71f9c0c44af7d80f310c02e2e583591fe7d4cb03baecd0d3f/folium-0.20.0.tar.gz>
Name: folium-0.20.0.tar.gz
Size: 109932 bytes (107 KiB)
SHA256: A0D78B9D5A36BA7589CA9AEDBD433E84E9FCAB79CD6AC213ADBCFF922E454CB9

C:\app\archiver\7zip\7z.exe xfolium-0.20.0.tar.gz
C:\app\archiver\7zip\7z.exe x folium-0.20.0.tar
xcopy /E /I folium-0.20.0\folium C:\app\os\python\Lib\site-packages\folium
53 files copied
C:\app\os\python\python.exe -c "import folium; print(folium.__version__)"

Download the latest branca release from PyPI: <https://pypi.org/project/branca/#files> https://files.pythonhosted.org/packages/32/14/9d409124bda3f4ab7af3802aba07181d1fd56aa96cc4b999faea6a27a0d2/branca-0.8.2.tar.gz
Name: branca-0.8.2.tar.gz
Size: 27890 bytes (27 KiB)
SHA256: E5040F4C286E973658C27DE9225C1A5A7356DD0702A7C8D84C0F0DFBDE388FE7 C:\app\archiver\7zip\7z.exe x branca-0.8.2.tar.gz
C:\app\archiver\7zip\7z.exe x branca-0.8.2.tar

xcopy /E /I branca-0.8.2\branca C:\app\os\python\Lib\site-packages\branca

10 files copied
C:\app\os\python\python.exe -c "import branca; print(branca.__version__)"

Download Jinja2 source archive
<https://pypi.org/project/Jinja2/#files> https://files.pythonhosted.org/packages/df/bf/f7da0350254c0ed7c72f3e33cef02e048281fec7ecec5f032d4aac52226b/jinja2-3.1.6.tar.gz
Name: jinja2-3.1.6.tar.gz
Size: 245115 bytes (239 KiB)
SHA256: 0137FB05990D35F1275A587E9AEE6D56DA821FC83491A0FB838183BE43F66D6D C:\app\archiver\7zip\7z.exe x Jinja2-3.1.6.tar.gz
C:\app\archiver\7zip\7z.exe x Jinja2-3.1.6.tar
xcopy /E /I Jinja2-3.1.6\src\jinja2 C:\app\os\python\Lib\site-packages\jinja2 26 files copied
C:\app\os\python\python.exe -c "import jinja2; print(jinja2.__version__)"

Since this is getting tedious, I'll install pip:
C:\app\os\python\python.exe -m ensurepip

And then I'll install the rest of the dependencies. C:\app\os\python\python.exe -m pip install markupsafe C:\app\os\python\python.exe -m pip install numpy
C:\app\os\python\python.exe -m pip install xyzservices

Test:
C:\app\os\python\python.exe -c "import folium; print(folium.__version__)" C:\app\os\python\python.exe -c "import folium; m =
folium.Map(location=[0,0], zoom_start=2); m.save('test_map.html'); print('OK')"

python plot_bssid.py
Map saved to bssid_map.html

start msedge "C:\app\os\python\apple_bssid_locator\bssid_map.html"
Voila! Up to 400 nearest access points on the map in a single query.

I mean, it's great you're really getting into this and enjoying sharing
your workings, however, this doesn't address your original "trivial" claim. You're still only exploring one (known) BSSID at a time. Even on a loop.

The truly non-trivial bit is expanding to all of california and all of
florida unknown BSSIDs then doing a temporal mapping between the two.

I get it. It's very easy to underestimate the complexity of data questions.


Professionally I work with a lot academic researchers and they always get a real shock at how time consuming (and therefore expensive) doing real-world data analyses is. They often think coming up with the question is the
difficult bit. It really isn't.

The UOM paper,, for example, collected data over 22/23 and was published in
May 24. That'll give you an idea of how long this stuff takes.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Chris wrote:

Voila! Up to 400 nearest access points on the map in a single query.

I mean, it's great you're really getting into this and enjoying sharing
your workings, however, this doesn't address your original "trivial" claim. You're still only exploring one (known) BSSID at a time. Even on a loop.

Hi Chris,

Please read this post very carefully as I don't have time to teach you.

I'm renovating a home for a relative so I won't have a lot of time to
devote to patiently teaching you, at least for the next few weeks.

Anyone with any imagination whatsoever already has guessed at the method
that Erik Rye and David Levin used to identify BILLIONS of GPS:BSSID pairs.

It's trivial. You already know I just got hundreds. All I have to do is
"walk" those from the outskirts to expand outward radially from my home.

Do you seriously think anyone who knows how to code can't do that?

The truly non-trivial bit is expanding to all of california and all of florida unknown BSSIDs then doing a temporal mapping between the two.

You lack imagination, Chris. Probably you've never ever coded perhaps?

Read this quote:
"Using a program written in Go and running on Linux, Rye
brute-force guessed a large number of BSSID numbers until he
eventually hit a real one, for which the WPS API endpoint
gifted him a set of other BSSIDs near to it. Once you start
getting hits, you can do what's called 'snowball sampling'
and just feed those back in, and continuously sample over
and over," he explains. Over a period of less than a week,
we were able to amass about half a billion unique BSSIDs."
<https://www.darkreading.com/endpoint-security/apple-geolocation-api-exposes-wi-fi-access-points-worldwide>

Are you seriously claiming this is difficult to do for a coder?

I get it. It's very easy to underestimate the complexity of data questions.

Chris,

You seriously lack imagination. It's trivial. I say it's trivial, and I already proved it's trivial. If you force me to write the "snowball code",
I can, but I am not at all interested in tracking everyone in the world.

Professionally I work with a lot academic researchers and they always get a real shock at how time consuming (and therefore expensive) doing real-world data analyses is. They often think coming up with the question is the difficult bit. It really isn't.

Chris,
I modified the python scripts to get up to 400 BSSID:GPS pairs at a time.

That gives me a long list in the "results.txt" file which anyone can
reproduce given I gave you the code modification in a prior post, right?

Do you seriously claim that it's at all difficult to pick a BSSID:GPS pair
and do it again? And then again? And again?

The only stumbling block is that I'll have a large file containing BILLIONS
of GPS:BSSID pairs, starting from my home and then radiating outward.

The UOM paper,, for example, collected data over 22/23 and was published in May 24. That'll give you an idea of how long this stuff takes.

Have you ever published a paper in a peer-reviewed journal, Chris?
I have. It takes time. Plus, it's not the only thing you're doing.

So for you saying something that illogical is why I claim that you will
pick any inane excuse to defend Apple to the death, no matter what.

It took me a week, elapsed time, to write the modifications to get the BSSID:GPS pair, but I am doing other things. So are they.

And even if they weren't doing other things, writing a research paper and getting it peer reviewed takes a lot of time since they're talking about
Apple and you can rest assured Apple's lawyers are all over that paper.

Anyway, I got a response from Apple via their RADAR system, and they said
they couldn't reproduce my issue but they removed my BSSID:GPS from WPS.

It's funny. I worked with developers for decades. Since I didn't file the
RADAR tracking report myself, I don't know what was said in it, but this suddenly got more serious as I gave Apple plenty of time to fix this bug.
--
As you know, I always respond to people in the same manner as they to me.
--- Synchronet 3.21a-Linux NewsLink 1.2