My email is whatever shit protonpass comes up with when I generate a random alias.
Phone number is 3334445566
Name is: lol no
Gender is undisclosed
DoB is January 1st of the first year I can select. Otherwise, 1900
And income is 1.
That said...A wifi access point that requests that info is almost certainly not private for every other trackable thing you do with that wifi, however.
If it's an open WiFi (no WPA password) packets are not encrypted anyway, so anyone on this AP can easily see everything that comes through it. A decade ago, when most websites allowed plain HTTP, there was a Firefox extension which let you hijack the Facebook or Twitter session of anyone connected to an open WiFi with a couple of clicks.
Nowadays everything is hopefully encrypted at the application level, so while attackers can see where the data goes, they can't actually read it.
I usually use:
Email - nope@nah.com
Name - Nah Nope
Gender - prefer not to say
DoB - same as you
Phone - just random digits, or if I'm feeling spicy the phone number of a guy I used to be buddies with who fucked me over
Income - never been asked for this yet, probably go with something outlandish....like 1
I went to a restaurant recently that asked me to pay my bill with the QR code on the tablet. Scanned it, and the first thing it did was ask for my phone number to verify my "account" by sending me a code.
The server didn't understand that I wasn't going to do that, and they needed to run my credit card like normal or I wasn't paying.
That's why in some ways I don't mind that my country still pays for mobile data, because I just don't even bother at restaurants anymore "oh, I've run out of data, I can't scan that, here's my money"
Because of how severely covid lock downs hit our state, every single restaurant I've been to in the last 5 years has used a QR code to order and pay.
I have allergies, so this means I mostly just order black coffee when it's QR only.
I'm not giving you all of my personal details for an overpriced $5 black coffee. The result is that I sit there with my friends, fiddling my thumbs, not buying anything.
I'm often admin@websiteimsigning.into with a name of admin admin, a birth date of 01/01/1970 a phone number of 4041234567 and address of 123 main street anytown, USA
And then if they expect me to retrieve info from said email or phone number I simply move on
The professionals try to insert some xss attacks into the forms; or all kinds of quote and comma characters in case the data is exported as csv at some point :)
Bro, just one more piece of info bro. Come on bro, just one more piece of your personal info and I'll let you sign on to the "free" wifi. Bro come on bro, just one more piece of personal info, it's no big deal for some wifi bro.
Don't use random, invented data. That's wrong. Use the real data of a ceo or other executive from a company that spammed you. Or if you have the time find out who owns the mall and use their information.
info@, postmaster@, web@, abuse@, or any other mandated valid email addresses for the service that wants your data.
Any system that includes an SMTP server supporting mail relaying or delivery MUST support the reserved mailbox "postmaster" as a case-insensitive local name.
Rule of thumb on the Internet, if you can't see how it's payed for (subscriptions, ads, donations...) then you probably pay with your personal data.
Especially true for apps and games. "Play totally free, no annoying adds or in-app purchases" means "Here is a trojan horse pretending to be a game while farming every possible information from your device to sell to the highest bidder".
As I understand it Apple is fairly good privacy-wise (at least compared to others). I wouldn't 100% trust those cards, but I'm guessing they're pretty accurate.
There's something to be said for poisoning the data. Intentionally, and consistently, enter slightly wrong information into every form you can. If it leaks, it all corroborates, but with other wrong information.
It's definitely easier and more reliable to just pass tho.
But the trick with these is, in order to check email they need to connect you to the internet, even if just for a minute. If you just need the internet to sync the latest IMs and emails, that is good enough.
Here's a secret those free wifi providers don't want you to know: usually, they don't check your email or ask you to verify it, so you can just enter suckurmomsball@gmail.com
If they do show a second screen asking for an email, just create a tempmail adress on cellular and switch back to verify. It works 99.99% of the time.
Edit: you also don't have to enter any real personal information, how would they know?
I always use famous people, just in case someone is checking the data and assumes that Tom Cruise or Sydney Sweeney decided to stop in Cambridge for a quick bite to eat in Nandos before staying in the Travelodge.
I've never given a real email to these. I just bash the keys on my phones with random letters and decide whether it's going to be gmail, aol, or yahoo that day...
This is a beautifully simple solution! I hadn’t thought of that but I’ll have to keep it in mind.
Do you think you’d have to move closer to another AP? I do think a duplicate a MAC address might cause connectivity problems at least while connected to the same AP.
On some public networks, my Wireguard VPN just doesn't work. Although I can connect to my server using SSH, so I assume the network was configured to block certain ports or how else can it block VPN connections?
Many networks block UDP ports, which is what wireguard uses. If you can configure the serverside part of the VPN, you could try running it on port 123, which is used for the network time protocol (ntp), which also uses UDP and is open nearly everywhere
Are you familiar with Tailscale? I think it reverts to tunneling over WireGuard over HTTPS in cases like this — I might be wrong, but I might block UDP on myself to test this out.
You can save different identities using one password and then every time you sit down at your computer you can just make up new details for those identities in one password so that when you go to the mall, You're not always Chungus McGrungledunk, but sometimes they're going to be offering a free trial to, Faurtstick Blastschish or whatever name I give the email address I spin up for the purpose.
It's good to register a burner domain that you don't care about and once you have the processed enough different identities through it simply stop renewing it and sign up for new one.
In Australia we have an ISP that provides a Huawei USB back up. You can find unlocking instruction online. Works anywhere in Australia. SIM can be used in a generic wifi hot spot. People throw them outa lot as they frequently get over ordered. Lostcin post etc. I have 3.