{"id":8867,"date":"2018-10-26T09:00:41","date_gmt":"2018-10-26T16:00:41","guid":{"rendered":"https:\/\/www.privateinternetaccess.com\/blog\/?p=8867"},"modified":"2018-10-26T07:54:26","modified_gmt":"2018-10-26T14:54:26","slug":"california-banned-default-passwords-but-will-this-increase-security","status":"publish","type":"post","link":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/","title":{"rendered":"California Banned Default Passwords, But Will This Increase Security?"},"content":{"rendered":"<p>Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram a unique password for each individual device and that the user is required to change this password upon first login.<\/p>\n<p>Default passwords on IoT (internet-of-things) devices have plagued the technology industry for some time, and have resulted in many high profile attacks. Everything from cameras to sex toys have been shown to be vulnerable to attackers who simply google the default password the device is shipped with and use it to log in. These default passwords are often something simple that could be easily guessed, like \u201cpassword\u201d or \u201c1234\u201d. Vulnerable devices are often installed at the perimeter of a network, making them accessible from anywhere in the world. These external devices are especially vulnerable to attackers who automate worldwide attacks against them, resulting in joining them to botnets. In many cases, they are also used by attackers to pivot to internal hosts on a victim\u2019s network, effectively bypassing the firewall. This begs the question why users don\u2019t simply change these devices\u2019 passwords when they set them up. Some do, but far too often, users aren\u2019t aware of or are dismissive of the risks associated with default passwords. That\u2019s why there has been a push to force users to change the password when they first login to setup the device. This doesn\u2019t help, however, if the first login can be performed by a malicious entity armed with the default password who then changes it upon first login.<\/p>\n<p>These concerns are addressed within the new California law, and following the actions dictated by this law will likely result in increased IoT security in regards to specific threat models. For years, security researchers have sounded the alarm in regards to default passwords on network devices, with little traction. Now, as California forces manufacturers to tighten security, it would seem that we are finally getting somewhere.<\/p>\n<p>But are we really getting somewhere?<\/p>\n<p>The law specifies that each password must be unique. From a practical standpoint, this presents a challenge for manufacturers as they decide what methodologies and algorithms to use to generate these passwords. Even before this law, some device makers have risen to this challenge impressively, generating unique, complex passwords that would be very difficult to crack using a brute force attack. Others have not. Some manufacturer\u2019s algorithms have been shown to be highly insecure. The password in many cases is generated using some form or portion of the device\u2019s MAC address \u2013 a set of numbers associated with the device\u2019s NIC (network interface card). This MAC address is often displayed on the main login page of the device and can in many cases be used to reverse engineer the generated password. And the law doesn\u2019t say how unique this password must be. Can a factory manufacture 10,000 devices, each with a 4 digit passcode ranging from 0000 to 9999? That would be trivial for an attacker to brute force, using automated tools. What if the default password is complex, but the user changes it to \u201cpassword123\u201d because there are no password length\/complexity requirements?<\/p>\n<p>These types of laws are politicians\u2019 ways of attempting to show that they are doing something about the problem, but often result in compliance without security. Companies tend to follow the letter of the law, instead of the spirit. They may have dotted their i\u2019s and crossed their t\u2019s, to avoid lawsuits, but this often doesn\u2019t actually result in increased security for the consumer. It basically just means that now the consumer can\u2019t sue the manufacturer. Just look at the United States\u2019 HIPAA and HITECH healthcare compliance law. At a time when healthcare organizations are focused more than ever on compliance with federal law, the number of <a href=\"https:\/\/ocrportal.hhs.gov\/ocr\/breach\/breach_report.jsf\">healthcare breaches have skyrocketed<\/a>.<\/p>\n<p>As government compliance law fails to secure internet-connected devices, new models should be considered. Free markets tend to regulate themselves more effectively than those regulated by the state. As an example, security companies could provide certifications, or seals-of-approval to product manufacturers who commission their security testing services and receive a passing grade after rigorous testing. Consumers could choose to pay slightly more for products which are certified by reputable security vendors, or choose to save money and buy products which are potentially less secure. In this model, security vendors would be motivated to perform thorough testing in order to preserve their reputation. Manufacturers would also be motivated to procure security certifications for their products, in order to appeal to consumers who value security. Consumers would then benefit from the security expertise of reputable security vendors, instead of relying on politicians. In any case, nearly anything is better than allowing politicians who know little about technology \u2013 much less internet security \u2013 to issue mandates to technology companies. Here\u2019s hoping that the world will shift toward more decentralized models for internet security that can more effectively protect consumers from harm.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram a unique password for each individual device and that the user is required to change this password upon first login. Default passwords on IoT (internet-of-things) devices have plagued the technology industry for some &hellip; <a href=\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;California Banned Default Passwords, But Will This Increase Security?&#8221;<\/span><\/a><\/p>\n","protected":false},"author":27,"featured_media":8938,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_stopmodifiedupdate":false,"_modified_date":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-8867","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v26.9 (Yoast SEO v26.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>California Banned Default Passwords, But Will This Increase Security?<\/title>\n<meta name=\"description\" content=\"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"California Banned Default Passwords, But Will This Increase Security?\" \/>\n<meta property=\"og:description\" content=\"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\" \/>\n<meta property=\"og:site_name\" content=\"PIA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/privateinternetaccess\/\" \/>\n<meta property=\"article:published_time\" content=\"2018-10-26T16:00:41+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"James Gallagher\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/james1052\" \/>\n<meta name=\"twitter:site\" content=\"@buyvpnservice\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"James Gallagher\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\"},\"author\":{\"name\":\"James Gallagher\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/cbacc16d75f056444271970ff932ad83\"},\"headline\":\"California Banned Default Passwords, But Will This Increase Security?\",\"datePublished\":\"2018-10-26T16:00:41+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\"},\"wordCount\":840,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg\",\"articleSection\":[\"General Privacy News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\",\"name\":\"California Banned Default Passwords, But Will This Increase Security?\",\"isPartOf\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg\",\"datePublished\":\"2018-10-26T16:00:41+00:00\",\"description\":\"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram\",\"breadcrumb\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg\",\"width\":1200,\"height\":630,\"caption\":\"California Bans Default Passwords\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.privateinternetaccess.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"California Banned Default Passwords, But Will This Increase Security?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#website\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"name\":\"PIA\",\"description\":\"Online privacy news from around the world.\",\"publisher\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#organization\",\"name\":\"Private Internet Access\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"contentUrl\":\"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png\",\"width\":1200,\"height\":1200,\"caption\":\"Private Internet Access\"},\"image\":{\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/privateinternetaccess\/\",\"https:\/\/x.com\/buyvpnservice\",\"https:\/\/www.instagram.com\/piavpn\/\",\"https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/cbacc16d75f056444271970ff932ad83\",\"name\":\"James Gallagher\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63d4265d016e5f398b857e4191de3dc96b1ed41a8cc620ab1a575cdd62391f87?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63d4265d016e5f398b857e4191de3dc96b1ed41a8cc620ab1a575cdd62391f87?s=96&d=mm&r=g\",\"caption\":\"James Gallagher\"},\"description\":\"James Gallagher is an ethical hacker, musician and philosophical anarchism evangelist. He is an experienced penetration tester, providing adversary simulation consulting for organizations around the U.S. James recently completed 10 months living nomadically in a converted school bus with his family, hacking into networks from the wilderness. Armed with only his ukulele and laptop, he has a passion for a better world, where individuals and communities can thrive without the need for authoritarian models.\",\"sameAs\":[\"https:\/\/jamesonhacking.blogspot.com\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/james1052\"],\"url\":\"https:\/\/www.privateinternetaccess.com\/blog\/author\/james-gallagher\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"California Banned Default Passwords, But Will This Increase Security?","description":"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/","og_locale":"en_US","og_type":"article","og_title":"California Banned Default Passwords, But Will This Increase Security?","og_description":"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram","og_url":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/","og_site_name":"PIA","article_publisher":"https:\/\/www.facebook.com\/privateinternetaccess\/","article_published_time":"2018-10-26T16:00:41+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg","type":"image\/jpeg"}],"author":"James Gallagher","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/james1052","twitter_site":"@buyvpnservice","twitter_misc":{"Written by":"James Gallagher","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#article","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/"},"author":{"name":"James Gallagher","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/cbacc16d75f056444271970ff932ad83"},"headline":"California Banned Default Passwords, But Will This Increase Security?","datePublished":"2018-10-26T16:00:41+00:00","mainEntityOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/"},"wordCount":840,"commentCount":0,"publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg","articleSection":["General Privacy News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/","name":"California Banned Default Passwords, But Will This Increase Security?","isPartOf":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg","datePublished":"2018-10-26T16:00:41+00:00","description":"Last month, the State of California banned default passwords on network devices, starting January 1, 2020. This law mandates that manufacturers preprogram","breadcrumb":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#primaryimage","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/10\/cali-default-pass.jpg","width":1200,"height":630,"caption":"California Bans Default Passwords"},{"@type":"BreadcrumbList","@id":"https:\/\/www.privateinternetaccess.com\/blog\/california-banned-default-passwords-but-will-this-increase-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.privateinternetaccess.com\/blog\/"},{"@type":"ListItem","position":2,"name":"California Banned Default Passwords, But Will This Increase Security?"}]},{"@type":"WebSite","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#website","url":"https:\/\/www.privateinternetaccess.com\/blog\/","name":"PIA","description":"Online privacy news from around the world.","publisher":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.privateinternetaccess.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#organization","name":"Private Internet Access","url":"https:\/\/www.privateinternetaccess.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","contentUrl":"https:\/\/www.privateinternetaccess.com\/blog\/wp-content\/uploads\/2018\/07\/pialogowhitekglogo.png","width":1200,"height":1200,"caption":"Private Internet Access"},"image":{"@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/privateinternetaccess\/","https:\/\/x.com\/buyvpnservice","https:\/\/www.instagram.com\/piavpn\/","https:\/\/www.youtube.com\/channel\/UClyJZ47Rizb1xnwuKXDI0_w"]},{"@type":"Person","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/cbacc16d75f056444271970ff932ad83","name":"James Gallagher","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.privateinternetaccess.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63d4265d016e5f398b857e4191de3dc96b1ed41a8cc620ab1a575cdd62391f87?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63d4265d016e5f398b857e4191de3dc96b1ed41a8cc620ab1a575cdd62391f87?s=96&d=mm&r=g","caption":"James Gallagher"},"description":"James Gallagher is an ethical hacker, musician and philosophical anarchism evangelist. He is an experienced penetration tester, providing adversary simulation consulting for organizations around the U.S. James recently completed 10 months living nomadically in a converted school bus with his family, hacking into networks from the wilderness. Armed with only his ukulele and laptop, he has a passion for a better world, where individuals and communities can thrive without the need for authoritarian models.","sameAs":["https:\/\/jamesonhacking.blogspot.com\/","https:\/\/x.com\/https:\/\/twitter.com\/james1052"],"url":"https:\/\/www.privateinternetaccess.com\/blog\/author\/james-gallagher\/"}]}},"_links":{"self":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8867","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/users\/27"}],"replies":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/comments?post=8867"}],"version-history":[{"count":3,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8867\/revisions"}],"predecessor-version":[{"id":8870,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/posts\/8867\/revisions\/8870"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media\/8938"}],"wp:attachment":[{"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/media?parent=8867"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/categories?post=8867"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.privateinternetaccess.com\/blog\/wp-json\/wp\/v2\/tags?post=8867"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}