Alright guys, so I'm staying at a hotel right now, not gonna say which one. I've basically done some security testing, they have a couple of critical open ports, FTP, and SSH open, unfiltered, able to be fucked over. I've tried packet sniffing on their network, to see if they encrypt their traffic at all, and of course they don't... Which is incredibly stupid seeing as this is a huge hotel, and there is a potential treasure trove of information waiting for a person with malicious intent to come along. I feel like going down to the office, and asking to speak with the hotel manager, and give them some tips on how they can improve their security. As I'm sure their reception desk uses the same wifi, so if they scan credit cards or what not, and transmit them over the wifi.... Well I'm sure you will know what can happen. However I took a look at their TOS regarding internet usage, and it looks like what I'm doing is Illegal, even though I have non-malicious intent. I am not sniffing their network anymore, and not attempting to break into their open ports. However being in the US on vacation, and not being a US citizen, I don't really feel like putting myself in danger. So what do GC, this is a multi-billion dollar hotel chain, that has very critical security flaws just out in the open. I've done this sort of thing before and have been threatened to be arrested and tried in court. The main difference is that I wasn't at the actual location, and was hiding myself. Anyone telling me to go malicious: Suck a dick.