| ▲ | Airpass – Easily overcome WiFi time limits(airpass.tiagoalves.me) |
| 321 points by herbertl 4 days ago | 217 comments |
| |
|
| ▲ | classichasclass a day ago | parent | next [-] |
| Alternatively, if you don't want to run the whole Electron app, the money is this line: sudo.exec("/System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport en0 -z && ifconfig en0 ether `openssl rand -hex 6 | sed 's/\(..\)/\1:/g; s/.$//'`",
|
| |
| ▲ | paxys 20 hours ago | parent | next [-] | | 200 bytes for the business logic. 47MB for the UI & boilerplate around the business logic. I get that this may be the easiest way to develop and publish an application today, but it's sad that this is the direction we have taken in recent years. | | |
| ▲ | aeonik 20 hours ago | parent | next [-] | | Modern app bloat in one analogy: Business logic size: ~20 bytes
Total app size: ~47 MB = 47,000,000 bytes Bloat factor: 47,000,000 / 20 = 2,350,000 Let’s scale this up and say the business logic is 1 pound. Then the whole app would weigh:
1 lb × 2,350,000 = 2,350,000 pounds What weighs ~2.35 million pounds? - A fully loaded Boeing 747-8: ~987,000 lbs
- Another fully loaded 747-8: ~987,000 lbs
- A blue whale: ~330,000 lbs
TOTAL: ~2,304,000 lbsThe business logic is like shipping a 1 lb object (a book, a flash drive, whatever) by loading it into two fully loaded 747s and strapping a blue whale on top. Just to run 20 bytes of logic. | | |
| ▲ | WD-42 19 hours ago | parent | next [-] | | This is a cool visualization, thanks. | | |
| ▲ | aquafox 19 hours ago | parent | next [-] | | On a related note: Transporting a human in a car is (in relation to weight and size) like using a standard shopping cart to transport two 1L bottles of water. So the next time you walk through a pedestrian area, imagine everyone carrying a bag would use a shopping cart instead. That would be a huge traffic jam -- exactly like what you see on the road! | | |
| ▲ | WD-42 18 hours ago | parent [-] | | I've been pretty aware of this ever since I became a cyclist. I will ride down to the corner store to pick up a six pack and some chips, throw them in a backpack and ride back. It's easy. I see people driving their cars to do the same thing. All that weight and space for a 6 bottles of beer. There is massive waste all around us. | | |
| ▲ | spiritplumber 4 hours ago | parent | next [-] | | A long time ago in San Antonio TX I was pulled over by the cops while biking back to my little apartment with a bunch of groceries. They were unwilling to believe that an adult would leave the car home to get groceries by bicycle. (I'm from Italy originally). | | |
| ▲ | bjelkeman-again 8 minutes ago | parent [-] | | We experienced the same when we walked down the hill to go shopping in Laguna Niguel, CA. Stopped by cops for walking to the store. Nothing more happened. |
| |
| ▲ | lostlogin 17 hours ago | parent | prev | next [-] | | There is also the time component. Off peak and with a decent sized backpack (change of clothes, laptop, food etc) it takes me the same time to go 6km as it does to drive it. At peak it’s 1/4 to 1/3rd the time. Cars are slow around town. | |
| ▲ | ornornor 7 hours ago | parent | prev | next [-] | | Getting a trailer (burley cargo in this case, but applies more generally) has been a game changer. I can even bike to ikea and bring back flat packed furniture with it. Or do the weekly groceries. The trailer can carry up to 100lbs iirc (I have an e-bike) Short errands are much nicer with a bike: less effort than walking, much faster than walking, no parking headache at destination, cool breeze in your hair, and free (no gas, insurance, parking, tickets…) | |
| ▲ | tengwar2 15 hours ago | parent | prev | next [-] | | It's a reasonable solution, but let's not forget that simply walking is often at least as good a solution in many countries. | |
| ▲ | bongodongobob 17 hours ago | parent | prev [-] | | Those people could be driving from 20 minutes away or on their way home from work, or running other errands or picking kids up from school or any number of things. Good for you though. | | |
|
| |
| ▲ | sheepscreek 18 hours ago | parent | prev [-] | | I like your username, and what happened to WD-41? | | |
| |
| ▲ | BobbyTables2 16 hours ago | parent | prev | next [-] | | Excellent point! And to top it off, the dual flights and whale would need complex orchestration too! We just call it Kubernetes… | |
| ▲ | anon7000 19 hours ago | parent | prev | next [-] | | Well, if you COULD ship something across the world on a private 747 with extra features to protect your cargo, and it has nearly no environmental downside and has no meaningful downside vs a smaller airplane… you’d probably do it! There’s no incentive in software to get a smaller, more efficient plane, and plenty of incentive to use the big thing for free that has all the extra features | | |
| ▲ | GTP 18 hours ago | parent | next [-] | | > it has nearly no environmental downside and has no meaningful downside I think this is not the case. E.g., we replace our computers every few years, but not because the new ones can do things that you can't do with your current computer. It's because the software you use to do the same things keeps getting more resource-hungry. | | |
| ▲ | iknowstuff 17 hours ago | parent [-] | | Its called externalized cost and its as real in software as it is IRL | | |
| ▲ | GTP 17 hours ago | parent [-] | | So the cost is there, it's just not paid (directly) by the developer. But we all end up paying someone else's externalized cost, included said developer that is paying some other developers' externalized costs. | | |
| ▲ | aziaziazi 3 hours ago | parent | next [-] | | Consider also the missed market opportunity: my personal devices are 13yo laptop and 9yo phone. If an app isn’t compatible or makes it lag, I delete it and download a competing one. I’m not alone, and yes: I have money to spend on your app. I just don’t want/need to upgrade hardware that often. | |
| ▲ | josephg 12 hours ago | parent | prev | next [-] | | Yeah. I’ve been thinking of writing a blog post doing the math on that. If I spend $2000 on a computer, and that gets me a certain amount of ram and cpu and so on, we can figure out a dollar figure on that bloat. Then multiply by the number of people who use a piece of software (eg slack) and we’d get a figure for the externalised cost of a piece of software. | |
| ▲ | jorvi 6 hours ago | parent | prev [-] | | Worst offender being Google, who toggled on VP8 / VP9 decoding on YouTube despite the vast majority of devices only having h264 hardware decode. The aggregate waste in battery wear and watts spent is pretty staggering when you think about it, all so google could spend a few cents less per 100 streams. |
|
|
| |
| ▲ | dented42 18 hours ago | parent | prev | next [-] | | That analogy doesn’t really work here. Because there is a downside. It’s slow, takes up a ton of memory, lots of disk space… When you have so many processes on a modern machine competing for resources, when every app chooses to be bloated and slow it really adds up. | | |
| ▲ | leptons 18 hours ago | parent | next [-] | | It doesn't "take up a ton of memory" and if you think 47MB is "a lot of disk space" then maybe you need a bigger disk. Most laptops have at least 250GB, so this program would take up about 0.0188% of disk space, which is frankly not a lot. I had PDF files way larger than that. And you only need to run it once, you do not need to keep it loaded and running all the time, so it doesn't "take up a ton of memory". | | |
| ▲ | lostlogin 17 hours ago | parent | next [-] | | This is how we have ended up with huge cars and huge houses etc. Storing huge volumes of unneeded junk isn’t solved by have more space. Store less junk. | | |
| ▲ | leptons 15 hours ago | parent [-] | | You can live however you want to live. I will live however I want to. 47MB is not worth worrying about, at all. |
| |
| ▲ | BobbyTables2 16 hours ago | parent | prev | next [-] | | 47MB is about 3x the space once required by a widely used commercial graphical operating system. It was even enough to also include Microsoft Word with plenty of space left. How far we’ve fallen. | | |
| ▲ | leptons 16 hours ago | parent | next [-] | | You're living in the past. Hard drives are now up to 36TB. Hard drives are always getting bigger. 47MB isn't worth worrying about, at all. | | |
| ▲ | mlhpdx 8 hours ago | parent | next [-] | | This is such a weird rationalization. You’d sell a kidney to be a 10x developer but making an app 1000000x smaller isn’t worth a thought? Maybe that’s why the former hasn’t happened. | |
| ▲ | wolpoli 4 hours ago | parent | prev | next [-] | | While it is true that hard drives have large amount of storage, it is unlikely that are any Mac with a 36TB hard drive attached that needs to overcome WiFi time limit. | |
| ▲ | superb_dev 9 hours ago | parent | prev [-] | | Yup and those 36TB are cheap and common! Right? |
| |
| ▲ | charcircuit 12 hours ago | parent | prev [-] | | 47 MiB only costs $0.0002. What has fallen is storage price. |
| |
| ▲ | anonymars 17 hours ago | parent | prev [-] | | These crappy WiFi portals are known for having ample download speeds too, right? |
| |
| ▲ | dtech 18 hours ago | parent | prev [-] | | That is more a tragedy of the commons thing. For each individual app the comparison holds true | | |
| ▲ | IgorPartola 18 hours ago | parent | next [-] | | And since we do have app stores as gate keepers, this could easily be remedied by the app stores. They wouldn’t even have to penalize you. Just put a score on there for app size (and app responsiveness) compared to the median in that category. Put this near the star rating from the reviews. Executives don’t generally care that you as an engineer want to reduce an app size by 10% but they really really care about how the app looks on the app stores because that’s what they show to people and what they are judged on. | |
| ▲ | kulahan 18 hours ago | parent | prev [-] | | Tragedy of the commons or just a really bad industry? |
|
| |
| ▲ | BobbyTables2 16 hours ago | parent | prev | next [-] | | People usually think that but when it comes to attack surface, change management, upgrade issues, etc —- the extra stuff isn’t entirely free… Upgrades shouldn’t ever break things, bugs and vulnerabilities never exist, and Rube-Goldberg machines should work 100% reliably day in and day out. Unfortunately reality doesn’t work that way… | | | |
| ▲ | lostlogin 17 hours ago | parent | prev | next [-] | | > Well, if you COULD ship something across the world on a private 747 with extra features to protect your cargo Qatar might even give you a plane! | |
| ▲ | numpad0 7 hours ago | parent | prev | next [-] | | This has to be Soviet Shoe Factory Principle in action, not just ignored negative externalities. Everyone relies on shipping more code for their employment, rather than more values, which incentivizes that behavior. 1: https://wiki.c2.com/?SovietShoeFactoryPrinciple | |
| ▲ | phyzome 5 hours ago | parent | prev [-] | | I think you're conflating "no incentive" (which might be true) with "no downsides" (which is not). |
| |
| ▲ | shepherdjerred 16 hours ago | parent | prev | next [-] | | How many 747's can the average person fit on the 128GB+ smartphone in their pocket? | |
| ▲ | jofla_net 18 hours ago | parent | prev | next [-] | | says more about sociology, really. | |
| ▲ | foxglacier 15 hours ago | parent | prev | next [-] | | Human time is money in software, more analogous to mass in physical goods. So you should calculate the time savings for all the people using the app vs entering the code themselves. Mass is a nonsense analogy that doesn't reveal anything useful. | |
| ▲ | paxcoder 19 hours ago | parent | prev | next [-] | | While I appreciate criticizing bloat (why are we packing Chromium in every app again?), I would like to warn against watching every "pound". Images, for example, "weigh" a lot more than code but that doesn't mean they don't serve a purpose and add value. That being said, the fact that quick maths can give you a 6 orders of magnitude difference between functional code and the package is probably reason for concern. | |
| ▲ | BestHackerOnHN 8 hours ago | parent | prev | next [-] | | OMG you win HackerNews today with this comment! Super HackerNews!!! | |
| ▲ | bognition 15 hours ago | parent | prev [-] | | This is an absurd way to think of this. Following this same train of thoughts for humans: The business logic for humans is a single reproductive cell. A single sperm weighs 2.3 x 10^-11 grams. If the average male weighs 75kg the. The bloat ratio for a human male is 3.2x10^15 Getting back to the app there is huge value in not needing to run the command yourself. Sure it’s wrapped in a UI that comes with “bloat” but honestly who cares. When was the last time someone needed to worry about hard drive space, when it comes to a 40mb file. | | |
| ▲ | m11a 15 hours ago | parent | next [-] | | Well, the apps often come bundled with a bunch of other stuff. Automatic updates, background workers, telemetry … All of which sucks up your compute resources and battery. Repeat for every such little utility app you have on your Mac. Some may implement that random stuff inefficiently (eg very frequent telemetry), which sucks even more. Some of it may even be wrong, vibe coded, or copy pasted. Personally, puts me off installing random utility apps, even if the single utility would be useful. | |
| ▲ | Dylan16807 7 hours ago | parent | prev [-] | | In the human analogy, the human has to be the entire computer too. It's all functional, not much bloat. For the app, the computer is external. It really is bloat. |
|
| |
| ▲ | dbalatero 18 hours ago | parent | prev | next [-] | | To be fair, the author didn't make this to impress people with byte optimizations, they probably just wanted to publish an app quickly that is useful, and was familiar enough with Electron or JS to do so. | |
| ▲ | righthand 19 hours ago | parent | prev | next [-] | | It’s not the easiest way just the most evangelized. A Qt app even would be a few lines of code, but we’ve done a good job scaring people that learning other languages is bad because we can’t ship features fast enough with non-evangelized frameworks. | | |
| ▲ | anthk 17 hours ago | parent [-] | | Even TCL/TK would be smaller. | | |
| ▲ | righthand 16 hours ago | parent [-] | | Every framework under the sun gives you a `main()` func to call your program code. But if all you’ve ever used is blogs telling you how to hack together an electron app, you’d probably assume electron was the gold standard for simplicity sake but in reality is the gold standard for Google’s sake (and whatever marketing company’s). |
|
| |
| ▲ | ryandrake 19 hours ago | parent | prev | next [-] | | I so strongly wish more developers gave even a single shit about this. The current state of desktop app development is truly an embarrassment. | | |
| ▲ | LauraMedia 36 minutes ago | parent | next [-] | | There is a deeper problem in this: The DX for native applications is too annoying, undocumented or hard for most people. I tried to build some of my tools without Electron, it's always a battle of multiple documentations for multiple systems and creating a bespoke system or having to deal with UI documentations that are glorified API references without examples. The last few tools I built used PhotinoNET, which gave me an electron-esque framework but not bundling it's own chromium, instead using the browser already on the system. And even that required a complicated build script so I can just export a simple flatpak, exe and dmg... | |
| ▲ | malnourish 6 hours ago | parent | prev [-] | | Who is embarrassed? What are the realized harms? |
| |
| ▲ | mistercow 19 hours ago | parent | prev | next [-] | | I keep thinking that this could be solved by just building Electron into the OS as a shared framework so we don't have to have a separate copy for every app, but the more I dig into it, the more I realize I'm just reinventing the web browser. | | |
| ▲ | thisislife2 18 hours ago | parent | next [-] | | There is something called the "WebView" in all the major platforms. The idea is that it allows you to use the browser engine only for creating the UI. But people complain its not "enough" because it is not the same on all the platform (it is if you use it just for UI), restricts access to some browser APIs (ignoring the fact that the OS often offers the same, even and more APIs) and Javascript (a crappy language for creating software applications). | |
| ▲ | paxys 18 hours ago | parent | prev | next [-] | | You are describing PWAs, but they'll never have the same API access & permissions as a native app. | | |
| ▲ | mistercow 2 hours ago | parent [-] | | Yeah, and I think it’s worth asking why there. Why do we not just have a standard for PWAs with privileged OS access? There are two obvious answers. The first is portability. And sure, but Electron provides an answer here, so why can’t we provide one with PWAs? We could even have OSes define this interface for different browsers to target in a standardized way. Yes, you need platform specific code, but that’s often the situation with Electron too. The other answer is security. But how is Electron / any other installed app any better? Because we require more explicit consent before installing a “real” app than for installing a PWA? OK so, just let’s just do that for PWAs too. |
| |
| ▲ | mixmastamyk 19 hours ago | parent | prev [-] | | Tauri: https://tauri.app/ |
| |
| ▲ | lxgr 19 hours ago | parent | prev | next [-] | | Wow, they optimized the minimal Electron app down to 47 MB? | |
| ▲ | kzrdude 13 hours ago | parent | prev | next [-] | | And notice the other abstraction too. This is not 'an app to change MAC address' but an app to 'overcome WiFi time limits'. | |
| ▲ | ncr100 12 hours ago | parent | prev | next [-] | | Cough, AI Training Models, Cough There's great power in abstraction. Disagree? Your point is that an operating system, and its shell, all running on a machine, and a collection of apps, are somehow smaller than a wrapper application. I'm curious the amount of bytes the entire stack, minus the chrome which is the complaint I believe, how many bytes that is. I would say probably a gig. | |
| ▲ | thwarted 18 hours ago | parent | prev | next [-] | | Those who don't learn /usr/bin are destined to reinvent it, poorly. | | |
| ▲ | tomrod 18 hours ago | parent [-] | | What does this mean? I've always understood /usr/bin to be the storage dump for system binaries. Do you see or use it another way? | | |
| ▲ | GTP 18 hours ago | parent [-] | | They likely mean that you already have in there all what is needed to change your laptop WiFi card's MAC address, without needing an additional application. |
|
| |
| ▲ | unixhero 18 hours ago | parent | prev | next [-] | | Yes but you need a space station OS (Unix) to enjoy the terseness of 47-200 bytes of business logic. ps: I love both space stations and Unix | | |
| ▲ | amlib 12 hours ago | parent | next [-] | | The solution to this problem requires you to interact with the OS, so a solution that requires tools found in the OS itself isn't a bad one. Its so simple you can have a script triggered by a desktop shortcut and be done with it. That all said, a simple GUI API provided by the OS for simple programs like this would be nice, just to give the user better feedback on the process. Is it done? Is it doing anything? Did it run correctly? Etc.. Zenity on linux kinda does that but is not guaranteed to be installed... | |
| ▲ | yjftsjthsd-h 14 hours ago | parent | prev [-] | | I guess, but the OS is a fixed cost that you already have |
| |
| ▲ | CommenterPerson 19 hours ago | parent | prev [-] | | Are they doing something additional with the 47MB - 200 bytes? Like selling you to the brokers? | | |
| |
| ▲ | rafram 21 hours ago | parent | prev | next [-] | | Why does a Mac-only app that shows a menu bar icon and a notification popup need to be Electron…? That’s 30 lines of Swift, max. | | |
| ▲ | k4rli 3 hours ago | parent | next [-] | | Looks like ai-generated bloat. It even has deps for deb+rpm builds yet is mac only. Honestly would not expect anything more from js devs who use macs/windows. I see this so often. | |
| ▲ | jeroenhd 20 hours ago | parent | prev | next [-] | | If you don't know Swift, but do know Electron, it's easier to do it in 30 lines of Javascript. People who don't like the developers work can always write and publish their own application, of course. | | |
| ▲ | whatevaa 20 hours ago | parent [-] | | It's hard work writing free stuff for others, much easier to criticise stuff instead of getting your hands dirty. | | |
| ▲ | pwdisswordfishz 5 hours ago | parent [-] | | It's hard work learning programming tools and optimizing, much easier to use a one-size-fits all framework that wastes the end-user's resources. |
|
| |
| ▲ | palata 20 hours ago | parent | prev | next [-] | | Electron is an overkill way to not have to learn how to do stuff properly, if you ask me. And people love not to learn. | | |
| ▲ | WJW 19 hours ago | parent [-] | | Send in a PR then? | | |
| ▲ | ipaddr 17 hours ago | parent [-] | | A pr that deletes the repo and bans the person from github? | | |
| ▲ | WJW 17 hours ago | parent [-] | | No a PR that actually makes the world a better place. Be the change you want to see and all that. | | |
|
|
| |
| ▲ | SR2Z 20 hours ago | parent | prev | next [-] | | If you want a frontend for you app, you probably just use Electron and get it over with in a few minutes instead of digging through the docs for Qt or some other framework. Is it worth it? Probably not, since this is a single-platform app to start with, but JS+HTML are easy to theme and customize, and Qt is... not quite as simple. | | |
| ▲ | rafram 20 hours ago | parent | next [-] | | Where did you get Qt from? This is, again, a Mac-only app that doesn’t even have any windows. It’s just a menu bar icon and a notification. That’s incredibly simple to build with plain old Cocoa and Swift. | | | |
| ▲ | righthand 19 hours ago | parent | prev | next [-] | | No one has to dig through electron docs though right? There is nothing simple about an electron app regardless how little logic you personally programmed on top of it. | |
| ▲ | juancroldan 20 hours ago | parent | prev [-] | | Now that you can build such an app with AI in under 20 minutes with a manageable codebase you can properly understand and control, I don't think that's a good excuse anymore | | |
| ▲ | whatevaa 20 hours ago | parent | next [-] | | If you don't know the language, how can you properly understand and control it? | | | |
| ▲ | paxys 20 hours ago | parent | prev [-] | | > with a manageable codebase you can properly understand and control Yeah, that definitely describes every AI codebase I have seen.. |
|
| |
| ▲ | outofpaper 21 hours ago | parent | prev | next [-] | | People forget to think about Swift let alone tools like Platypus. | |
| ▲ | thisislife2 18 hours ago | parent | prev | next [-] | | It doesn't need to be - on macOS, it could even just as well have been a simple Xbar Plug-In! ( https://xbarapp.com/ ). | | |
| ▲ | rafram 17 hours ago | parent [-] | | Or Alfred script, Raycast plugin, Shortcuts shortcut, shell alias, and the list goes on. There are a lot of decent options; "50+ MB Electron app" is, in my opinion, not one. |
| |
| ▲ | WJW 19 hours ago | parent | prev | next [-] | | Talk is cheap. If it's so easy, I'm sure the author would welcome a PR :) | | |
| ▲ | CamperBob2 18 hours ago | parent [-] | | I mean, these days, you ask an LLM and it spits out code that will, for something this simple, probably work the first time. | | |
| |
| ▲ | gopher_space 17 hours ago | parent | prev | next [-] | | Is ActionScript still a thing on Macs? I feel like that tech was almost criminally overlooked while being the backbone for a lot of processing pipelines back in the day. | | |
| ▲ | rafram 16 hours ago | parent | next [-] | | It (AppleScript) is, and you can actually write JS instead these days, with a criminally underdocumented Objective-C bridge (JXA). | | |
| ▲ | al_borland 3 hours ago | parent | next [-] | | I was preparing for the death of AppleScript and was shocked when I stumbled around their addition of JS a few years back. I thought that would have been big enough news to hit my radar when it happened, or that Apple would have made a big deal about it at WWDC. Of course, that would require them to fully support AppleScript in their newer apps, while instead they seem to really only care about Shortcuts, since that’s easier to sell on mobile, I assume. | |
| ▲ | latexr 11 hours ago | parent | prev | next [-] | | > with a criminally underdocumented Objective-C bridge The documentation is the Objective-C docs, I use those all the time. You do need to understand the basics of how to translate from the Objective-C APIs to what JXA (or AppleScript) expects, but once it clicks you can do it for essentially anything with the same logic. | |
| ▲ | gopher_space 16 hours ago | parent | prev [-] | | Ahh thanks! Went down a brief rabbit hole with JXA and had forgotten how opaque Apple is when you're developing for them. |
| |
| ▲ | mattl 17 hours ago | parent | prev [-] | | You mean AppleScript? |
| |
| ▲ | ajsnigrutin 21 hours ago | parent | prev | next [-] | | 1) the dev only had a hammer and he nailed the screw in 2) the dev has 64gigs of ram and a newest CPU and doesn't care about performance issues for people on older computers... that's why you need gigs of ram just to read a weather report online. | |
| ▲ | encom 20 hours ago | parent | prev [-] | | Because that's all anyone knows, and PC development is dead. >content-length: 47262814 Sigh... |
| |
| ▲ | greyface- 9 hours ago | parent | prev | next [-] | | This will generate a multicast MAC 50% of the time, which will usually work, but can theoretically cause problems if there's a multicast-aware Ethernet bridge in your path. Ideally, the LSB of the first octet should be fixed to 0 to indicate a unicast address. https://en.wikipedia.org/wiki/MAC_address#Unicast_vs._multic... | |
| ▲ | tommoor 19 hours ago | parent | prev | next [-] | | Nice, added it as a bash alias. alias randommac='sudo /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport en0 -z && sudo ifconfig en0 ether $(openssl rand -hex 6 | sed "s/../&:/g; s/:$//")'
| | |
| ▲ | commandersaki 18 hours ago | parent [-] | | So I tried this out on macOS 26 and the `airport` command is no longer there. There is a `airportd.sb` file, which appears to be some permissions based thing in s-expression/LISP. Weird. Edit: Spun up a macOS 15 VM and I got this: WARNING: The airport command line tool is deprecated and will be removed in a future release.
For diagnosing Wi-Fi related issues, use the Wireless Diagnostics app or wdutil command line tool. I guess they weren't kidding. | | |
| ▲ | bc569a80a344f9c 18 hours ago | parent | next [-] | | Looking around briefly, you can replace it with this: `networksetup -setairportpower en0 on && [... set MAC ...] && networksetup -setairportpower en0 off` I think it's pretty safe to assume that modern Macs will always have en0 as the WiFi adapter, but if you wanted, you could use `networksetup -listnetworkserviceorder` to find the associated device. | | |
| ▲ | JonathonW 17 hours ago | parent | next [-] | | Modern Macs do not always have en0 as the WiFi adapter (it's en1 on current iMacs and on the Mac Studio; en0 is the ethernet jack). But you're unlikely to be taking one of the machines that has built-in ethernet to the airport or coffeeshop. | | |
| ▲ | bc569a80a344f9c 17 hours ago | parent [-] | | Duh, also true on my Mac Mini. But yeah, “modern Mac laptops” probably makes the statement correct enough and still describes the entire set of targets. |
| |
| ▲ | commandersaki 6 hours ago | parent | prev [-] | | So this doesn't work if your wifi nic is associated with an SSID. `airport -z` disassociates the SSID. Can't seem to find a CLI command to do the same in macOS 26, but I haven't looked too hard either. |
| |
| ▲ | msdrigg 17 hours ago | parent | prev [-] | | Airport has been deprecated for a year or two. Here's an article talking about its deprecation and its relatively nonfunctional replacement: wdutil https://www.intuitibits.com/2024/03/14/goodbye-airport/ |
|
| |
| ▲ | Alifatisk 21 hours ago | parent | prev | next [-] | | I feel like using Electron for such a little thing is way overkill. The newer laptops are very powerful so I don't think anyone would have any performance issues, but on older macbooks, having too many little Electron apps running in the background makes the fan go brrrrrrrr | |
| ▲ | virtualritz 20 hours ago | parent | prev | next [-] | | And you could ask an LLM to whip up the Swift code or whatever to wrap this line into a Dock app etc., if you want that convenience. | |
| ▲ | hk1337 21 hours ago | parent | prev | next [-] | | What exactly is that doing? Is there some backend limitation for WiFi interfaces that making it think it’s Ethernet is faster? | | |
| ▲ | sodality2 21 hours ago | parent [-] | | It just resets the MAC address, making the router believe it's a new device, thus not subject to the "x minute" free WiFi. | | |
| ▲ | dizhn 20 hours ago | parent [-] | | That won't circumvent the sms code requirement most free wifi services use. | | |
| ▲ | catlifeonmars 20 hours ago | parent | next [-] | | I have never seen this before | | |
| ▲ | ssl-3 13 hours ago | parent | next [-] | | I've only seen it once. I was doing some work in a small-ish county jail/sheriff's office in the States. As part of that work, I needed some Internet access. Because jail (thick, reinforced walls and lots of steel) the cell phone coverage was basically shit -- otherwise I'd have just used my phone like I would normally have done approximately anywhere else. It was a fun dance: Requesting access via wifi, getting sent a code via SMS, and then going outside, turning off wifi to establish an actually-working network connection, retrieving the code (yay Google Voice), and then going back inside, turning on wifi, entering the code, and actually using it. There was some other detail (perhaps relating to very short timeouts or re-registration issues or MAC randomization) at some stage of the operation that seemed extra-insulting, but my mind has forgotten whatever it was. I have no idea what this song and dance was intended to provide, prevent, or enforce. | | |
| ▲ | fc417fc802 12 hours ago | parent [-] | | > I have no idea what this song and dance was intended to provide, prevent, or enforce. Describes far more corporate IT policy than it ought to. |
| |
| ▲ | rafram 17 hours ago | parent | prev | next [-] | | It's required by law in some countries, and it leads to some very funny chicken-and-egg situations with airport WiFi. Istanbul Airport added a workaround: a physical passport scanner that stores your info and generates a code as an alternative to SMS verification. The whole thing just feels like a VPN ad. | |
| ▲ | dizhn 18 hours ago | parent | prev | next [-] | | There's at least one country with laws that say you have to keep track of national ID numbers (and times) if you want to provide wifi service. | |
| ▲ | popularonion 19 hours ago | parent | prev [-] | | Never seen it in the US, but it was fairly common when I was on vacation in Europe |
| |
| ▲ | rixed 7 hours ago | parent | prev | next [-] | | Or the voucher obtained by scanning your boarding pass in some airports. | |
| ▲ | rs186 19 hours ago | parent | prev [-] | | I think they are extremely rare, and I would rather just use my mobile data instead of giving them my phone number. Definitely does not happen on "free trials" on in-flight Wi-Fi for obvious reasons. | | |
| ▲ | dizhn 17 hours ago | parent [-] | | A now deleted comment reminded me that this is mostly for in-flight wifi where it makes much more sense. Mostly no SMS there either. |
|
|
|
| |
| ▲ | MattSayar 10 hours ago | parent | prev | next [-] | | The best part is right after the money line: 'Please check ' + issues_url + ' for help.' where issues_url is a github.com link. How are you going to check GitHub if you can't connect to WiFi in the first place? | |
| ▲ | cozzyd 19 hours ago | parent | prev | next [-] | | the hilarious thing is it shells out for the random mac... | |
| ▲ | preciousoo 13 hours ago | parent | prev | next [-] | | Is this possible on mobile (read iPhone) devices without root? | |
| ▲ | 101008 17 hours ago | parent | prev [-] | | Wow. Don't you need to pay a Apple license as well to distribute apps in Macs? | | |
| ▲ | tengwar2 15 hours ago | parent [-] | | Not for Mac. MacOS is an open garden: there is an app store; or you can install signed apps (requires Apple cooperation); or you can install unsigned applications. MacOS gives you a nudge to the app store (which has genuine advantages) and a much stronger nudge away from unsigned non-app-store apps, but it is still an open garden. iOS is closed garden, which makes some sense for the security guarantees it can give for financial applications. |
|
|
|
| ▲ | ammar2 21 hours ago | parent | prev | next [-] |
| Glad this feature is built into most modern operating systems these days. For MacOS (Sequoia+) you can just forget the network and reconnect to get a new MAC address [1]. Android's documentation for if it decides to generate a new address per connection is a little vague [2], but I'm guessing forgetting and reconnecting works as well, you may also need to flip the "Wi-Fi non-persistent MAC randomization" bit in developer settings. On Windows, flipping the "Random hardware address" switch seems to cause it to generate a new seed/address for me. [1] https://support.apple.com/en-euro/102509 [2] https://source.android.com/docs/core/connect/wifi-mac-random... |
| |
| ▲ | lxgr 19 hours ago | parent | next [-] | | Per [1], this only works once per 24 hours on new iOS/macOS versions, and only once per two weeks on older ones though. | |
| ▲ | km3r 20 hours ago | parent | prev | next [-] | | Yeah I had to flip the developer setting toggle, but worked flawlessly for my flight (American Airlines has a watch an ad for 20 minutes of free internet that only works once per MAC) | | |
| ▲ | fendale 17 hours ago | parent [-] | | Are you saying that on IOS 18 if you enable developer mode then each time you forgot the network it gets a new Mac? But without developer mode it does not get a new Mac each time you forget it? The Apple docs linked elsewhere in this thread suggest it only gets a new Mac once per 24 hours when you forget the network normally. I’m going on a long boat trip in the next week where this trick might work for me if so! |
| |
| ▲ | userbinator 9 hours ago | parent | prev | next [-] | | I have a generic Android phone from many years ago where the manufacturer didn't even bother to program the WiFi NVRAM, so every time you load and unload the driver, you get a new randomly generated MAC address. Interesting that that has become a feature these days. | |
| ▲ | bapak 21 hours ago | parent | prev [-] | | I think the rotating address is limited to 3, right? The script here generates one at random. |
|
|
| ▲ | purplehat_ 20 hours ago | parent | prev | next [-] |
| Here's an equivalent little script for Debian Linux (but should work on most distros), based on classhasclass's comment: NEW_MAC=$(printf '02:%02x:%02x:%02x:%02x:%02x\n' $((RANDOM%256)) $((RANDOM%256)) $((RANDOM%256)) $((RANDOM%256)) $((RANDOM%256)))
sudo ip link set wlan0 down
sudo ip link set wlan0 address "$NEW_MAC"
sudo ip link set wlan0 up
You should replace `wlan0` with whatever you see in `ip link show` for your wireless interface, for me it is `wlp0s20f3`. I replaced the `openssl rand` command because it was generating some invalid MACs; this is hopefully only valid ones. |
| |
| ▲ | righthand 19 hours ago | parent [-] | | KDE Plasma has a “Random” button next to the MAC address field in the Network Manager UI. I’m on Debian Testing so not sure when it was added. |
|
|
| ▲ | vachina 19 hours ago | parent | prev | next [-] |
| I used to strap 20 virtual eths to my Linux box because my dorm gave only like 512kbps per account, and then aggregated the 20 interfaces. |
| |
| ▲ | xrisk 18 hours ago | parent [-] | | How was the auth done? And for that matter what logic did the traffic shaping use? | | |
| ▲ | vachina 8 hours ago | parent [-] | | Auth is username/password over captive portal. You could pay for more bandwidth. The system was so pwned I ended up giving myself unlimited bandwidth. |
|
|
|
| ▲ | o_____________o 21 hours ago | parent | prev | next [-] |
| Alternatively for Mac, https://github.com/halo/LinkLiar |
| |
|
| ▲ | mannyv 20 hours ago | parent | prev | next [-] |
| If you really want to screw with these set your MAC address to 00:00:00:00:00:00 It’s an illegal address, but most equipment will take it because test devices occasionally come from the factory with that MAC. But higher level stuff might barf on it because it’s technically illegal. |
| |
| ▲ | totetsu 13 hours ago | parent | next [-] | | I tired this once and it bypassed the captive portal and time limits entirely | |
| ▲ | varenc 8 hours ago | parent | prev [-] | | alas, macOS refuses: $ sudo ifconfig en0 ether 00:00:00:00:00:01
ifconfig: ioctl (SIOCAIFADDR): Can't assign requested address
edit: but this worked on my external NIC! Network wasn't happy though and DHCP didn't work. Ubiquiti had a funny note about this MAC: "Officially Xerox, but 0:0:0:0:0:0 is more common" |
|
|
| ▲ | kazinator 21 hours ago | parent | prev | next [-] |
| This has been an option in Android network settings forever: randomize your MAC. I think it's enabled by default now?
It's a basic privacy feature; you can be fingerprinted by your device's MAC. |
| |
| ▲ | jck 21 hours ago | parent | next [-] | | Yep. Android does this by default, but each ssid gets a randomized MAC which persists. It is still straightforward to trigger a MAC change manually tho. It is useful for privacy but imo useless for the public wifi limits use case since they almost always require an OTP via SMS to log in. | | |
| ▲ | rahimnathwani 19 hours ago | parent | next [-] | | For devices running Android 11 or higher, users can enable non-persistent MAC randomization globally for all Wi-Fi networks (that have MAC randomization enabled) through the developer options screen. The option to enable non-persistent MAC randomization for all profiles is found at Settings > Developer Options > Wi-Fi non-persistent MAC randomization.
| |
| ▲ | matsemann 19 hours ago | parent | prev | next [-] | | Could you describe how? Quick searching doesn't show it to be "straightforward" as far as I can find. | |
| ▲ | tengwar2 15 hours ago | parent | prev | next [-] | | OTP via SMS: depends on the country. These days it's not very common in the UK. They often ask for an email address, but my experience is that most of the time they don't check it for validity. | |
| ▲ | hhh 21 hours ago | parent | prev [-] | | you have both options in ios/macos, fixed random mac per ssid, and rotating |
| |
| ▲ | NoahZuniga 21 hours ago | parent | prev | next [-] | | No, this setting randomizes your MAC address between networks, but you keep the same MAC for a specific network. So if you want the network to think you're a new user, you'll need to change this specific network MAC address, and this isn't a setting enabled by default (and oftentimes is not even a setting) | | |
| ▲ | khimaros 19 hours ago | parent [-] | | GrapheneOS has per-connection (as an alternative to per-network) randomization which is enabled by default | | |
| |
| ▲ | netsharc 21 hours ago | parent | prev | next [-] | | It's also in the Apple devices, you just have to "forget network" and reconnect for the device to tell the network of its new fake MAC address. | |
| ▲ | alt227 18 hours ago | parent | prev [-] | | How does that work with MAC address conflicts and clashes? I naively thought every MAC address had to be unique. | | |
| ▲ | BobbyTables2 16 hours ago | parent | next [-] | | They must be unique in a LAN segment. And only the lower 3 bytes in a MAC are “unique” as the upper 3 are the vendor ID and relatively fixed. In practice people put fewer than 256 devices on networks (class C), so they have less than 1/65536 possibility of complete failure. And far less because they have a mix of OUIs. But yeah, if you put a few hundred or thousand security cameras or other device from a single vendor, all on the same network, conflicts are certainly possible. MAC conflicts are also a bit nasty to troubleshoot, and less obvious than IP conflicts. | |
| ▲ | diggan 17 hours ago | parent | prev [-] | | There are like 50 trillion possible addresses, unlikely to clash in one network :) |
|
|
|
| ▲ | netik 20 hours ago | parent | prev | next [-] |
| The trivial defense against this is time limited passwords for Wifi access. Deny all access until a valid password is entered, only permit that password and MAC address pair for n minutes. Buy a coffee, get a new password, etc. |
| |
| ▲ | pimlottc 19 hours ago | parent | next [-] | | On a technical level it’s trivial, but you’re taking about having a shop replace their wifi router and/or update firmware, create some way for staff to see the current password and/or integrate with POS systems to print it on the receipt, update signage, etc. Hardly trivial for the average non-techie business owner. | |
| ▲ | reaperducer 19 hours ago | parent | prev [-] | | So "trivial" that this is how it was done years ago, but then coffee shops gave up on it because it turned it not to be so trivial after all. Their employees' time is more effectively spent making coffee than repeatedly providing low-level tech support for random password problems. |
|
|
| ▲ | tptacek 15 hours ago | parent | prev | next [-] |
| Or you could just comply with the terms you tacitly agree to when using these services. Use this stuff or don't, but if you do, you don't get to complain about GPL infringement anymore. |
|
| ▲ | glerk 21 hours ago | parent | prev | next [-] |
| Alternatively, disconnect from the wifi, use this command and reconnect: sudo ifconfig en0 ether 02:11:22:33:44:55 Just ran into this on icelandair. |
| |
| ▲ | pcl 20 hours ago | parent [-] | | That’ll buy you one new turn of the crank; you’ll need to change numbers once every expiration period. | | |
| ▲ | glerk 20 hours ago | parent [-] | | Pretty sure the electron app has the same limitation (popover notification says “join the network again for free wifi”, besides you wouldn’t be able to change the mac address if the network interface were actively in use) |
|
|
|
| ▲ | avidiax a day ago | parent | prev | next [-] |
| I feel this would be more useful as a utility to manage your MAC addresses. That would let you, for example, clone a MAC address or IP address between your computer and a phone, and maybe automatically resolve contention. That way, you can split purchased WiFi (such as on a plane) between multiple devices. |
| |
| ▲ | userbinator 9 hours ago | parent | next [-] | | That way, you can split purchased WiFi (such as on a plane) between multiple devices. You need a router for that, which fortunately is built in to most phones and computers these days. | |
| ▲ | jagged-chisel 17 hours ago | parent | prev [-] | | That’s only going to work on one device at a time. Don’t think that your phone and laptop with identically MAC addresses are going to magically share the connection. |
|
|
| ▲ | neilv 8 hours ago | parent | prev | next [-] |
| This kind of thing can be a useful tool, including for privacy&security use cases that the page doesn't mention. But be conscious and thoughtful when using it. Some terms to consider whether they apply to a particular use include "unauthorized access", "circumvention", and "theft of service". |
|
| ▲ | josh_carterPDX 7 hours ago | parent | prev | next [-] |
| This reminded me of an old app that would scan the MAC addresses of devices already connected to a paid WiFi network. You would then just change your MAC to one that already paid for the WiFi, and then reset it once you were done. |
| |
| ▲ | WJW 3 hours ago | parent | next [-] | | Wouldn't that lead to interference with the original device using that MAC address? Ie both of you getting packets meant for the other etc? | | |
| ▲ | rafram 4 minutes ago | parent [-] | | Yes. It’s a bad (maybe even illegal?) thing to do. The victim device will start losing packets, and it’ll look to them like the network is just unreliable. Eventually they give up and disconnect, and you take full control. |
| |
| ▲ | bibelo 4 hours ago | parent | prev [-] | | tried that in a hotel in Paris and it worked |
|
|
| ▲ | balls187 17 hours ago | parent | prev | next [-] |
| Haven’t ever encountered any place that had a wifi time limit. In the late 2000’s internet cafes had time limits but that was enforced on their own devices. Is there a specific scenario where time limited wifi is common place? |
| |
| ▲ | mcshicks 17 hours ago | parent | next [-] | | I think the name refers to the limits some airlines have. JAL for instance offers one hour free on some flights. | | |
| ▲ | andy99 17 hours ago | parent [-] | | I was trying to understand how this could be used for flights. I've seen either having to enter your last name and seat, or loyalty plan number to get in-flight wifi. Are there really airline wifis that give every mac address a free amount of time? A lot of airlines now offer free "messaging" - usually just text on common messaging apps like WhatsApp. I've been meaning for years to write some kind of server that could give me useful functionality over chat messages. | | |
| |
| ▲ | josu 17 hours ago | parent | prev [-] | | Airplanes. Some airlines offer 30 minutes of free wifi or something. |
|
|
| ▲ | jmtulloss 13 hours ago | parent | prev | next [-] |
| This is exactly how I managed to get my dorm room’s internet turned off in college. My roommate was unimpressed with my cleverness. |
| |
|
| ▲ | nixpulvis 19 hours ago | parent | prev | next [-] |
| I used to use this little macOS script at coffee shops. https://gist.github.com/nixpulvis/d83c0ae70a4c3a06797b |
|
| ▲ | johnebgd 16 hours ago | parent | prev | next [-] |
| Reminds me of Perfigo Smart Access before Cisco bought them. Network security with a MAC address whitelist. If you knew a whitelisted computer you’d have the same access it permitted. This was back before captive portal took off… |
|
| ▲ | boston_clone 21 hours ago | parent | prev | next [-] |
| Can you not manually set your MAC address in the network configuration portion of macOS settings anymore? Does this not accomplish that same task, just with an abstracted layer of “randomness” for address generation? Another commenter already de-bloated the entire application into a bash one-liner |
| |
|
| ▲ | lrvick 17 hours ago | parent | prev | next [-] |
| Solved problem on linux for decades: https://gothub.dev.projectsegfau.lt/alobbs/macchanger |
|
| ▲ | polivier 20 hours ago | parent | prev | next [-] |
| On Linux you can use `macchanger` to change your MAC address from the terminal. |
|
| ▲ | deanc 18 hours ago | parent | prev | next [-] |
| A few years ago I saw a tip somewhere here on how to scan which MAC addresses are connected to nearby wifi and hijack their mac address and steal their internet connection. |
|
| ▲ | crustycoder 21 hours ago | parent | prev | next [-] |
| On android it can be toggled on If Developer Options are enabled. |
|
| ▲ | Beijinger 15 hours ago | parent | prev | next [-] |
| Like macchanger under Linux since 20 years? Must be cool to have an Apple I guess. |
|
| ▲ | ClawsOnPaws 17 hours ago | parent | prev | next [-] |
| Since this is only available for mac, couldn't this fairly easily be solved with shortcuts? |
|
| ▲ | cactusplant7374 a day ago | parent | prev | next [-] |
| Doesn't Mac already have this with rotating MAC addresses? I also ran into an access point that detected this and required me to turn it off to continue. |
| |
| ▲ | myself248 21 hours ago | parent [-] | | I wonder how it detected it. Perhaps the randomly-generated ones are mostly in invalid/unassigned MAC space? | | |
| ▲ | jasongill 21 hours ago | parent [-] | | There is a "local bit" in MAC addresses per RFC 7042, so MAC addresses that have their second character as E, A, 2 or 6 are "local" which effectively means "randomly selected by software". So my current macOS selected MAC address of 16:6a:d2:20:e6:eb is "local" due to the second digit in the address being 6 | | |
| ▲ | bapak 20 hours ago | parent | next [-] | | Oof, I wonder if this is the reason why I constantly have issues with my M1 Mac connecting to cafe hotspots. Regularly I find places that let me connect and then kick me off less than a minute later. | |
| ▲ | boston_clone 21 hours ago | parent | prev [-] | | I had no idea about this; generally i thought it was done by OUI like the GP suggested - they have a small cached table of valid OUIs and warn on prefixes not in that subset. Thanks for sharing! |
|
|
|
|
| ▲ | caioluders 17 hours ago | parent | prev | next [-] |
| Some python that clones other people mac + random
https://github.com/caioluders/mac_auto_cloner |
|
| ▲ | gsibble 12 hours ago | parent | prev | next [-] |
| WOAH. MAC address spoofing is some old school stuff. I got in trouble for it in college. I didn't realize you could spoof MAC addresses on....well....a Mac but it's not something I'd do lightly. |
|
| ▲ | ndgold 21 hours ago | parent | prev | next [-] |
| Nice little helper friend |
|
| ▲ | gsibble 12 hours ago | parent | prev | next [-] |
| If this site was really hackers, this wouldn't be considered news. |
|
| ▲ | satellite2 16 hours ago | parent | prev | next [-] |
| Fantastic. Now we're promoting script kiddies scamming airlines. That's a new low for hn |
| |
|
| ▲ | deadbabe 19 hours ago | parent | prev [-] |
| This is so unethical and no one gives a fuck, society crumbles when people just feel entitled to take more than their fair share. |
| |
| ▲ | chrisfosterelli 19 hours ago | parent | next [-] | | This is hacker news. Hacker ethos is rooted in the intellectual challenge of overcoming software systems and electronic hardware. It's the same ethos that stole long distance phone minutes, traded warez, and got free satellite channels. You don't have to do those things but you probably won't convince those who do that their 20 extra minutes of wifi will be the downfall of society. | | |
| ▲ | bigfatkitten 11 hours ago | parent [-] | | In reality it’s mostly VC/Big Tech news. Hacker ethos isn’t something we see much of around here. |
| |
| ▲ | gsibble 12 hours ago | parent | prev [-] | | Agreed. |
|
