AIRBNB (WiFi/Internet) access legal liability.

Choppie

Active Member
Reaction score
47
Location
Boca Raton, FL USA
This is probably going to end up being more than just one question and I'm not sure if this should have been posted in some "networking" thread....but here goes. :-)

One of my clients (and I'm quite sure there will be others that will ping me regarding this) has a spare cottage they have converted into what they will now use for an AIRBNB rental. I'm in the process of setting them up with WiFi internet access. I'm running about 90FT of Cat5eDB inside a PVC pipe burried in Florida sand :-). The connection will be from their consumer account Comcast modem to a WAP that I will hide/secure (really good) within the cottage, all pretty simple stuff.

Here comes the fun stuff.

I've seen the many splash screens that all the restaurants with free WiFi will direct you to prior to giving you access to their internet, requiring you agree to some terms by clicking some OK button, like Starbucks for example but I'm sure its a service that will cost quite a bit. I've spent a DAY researching this and really only came up with too many different solutions. Contacting AIRBNB somehow will be my next endeavor. What I have found, is that many people are just creating a GUEST account on their WiFi and calling it a day. I've encountered some CRAZY people in my time and I really think having them use an exclusive network access is better. My idea is to setup a WAP to be ONLY used by those using the AIRBNB, and setting up a standard password naming scheme that they can use to change password after each rental.

I've looked into some of the ASUS routers with DD-WRT and openwrt firmware options, but none allow me to install some HTML file with an aggreement--it really sounds like it should be pretty stupid/simple but I have found no options.

After all my searching, I think I'm going to try just an Araknis WAP with a POE injector for power, and just have my client prepare a printed legal agreement that their renters must agree to and sign prior to accessing or using their WiFi. The reasons are obvious; so my client isn't legally liable for what ever BS the renters do online. Downloading child porn would blow open a whole can of worms and I want my client protected.

Another thought.... Could they just re-print the agreement that Comcast requires they follow, and pass that agreement down to the renters.... To me it seems simple enough but in today's world, I'm sure there are 500 laws being broken doing this.....

Yeah, I know, got a little long winded but I'm sure this is a needed topic as this AIRBNB keeps getting bigger.

:-) Quesion: Does anyone know of or use a service that provides a HOT-SPOT access with those splash screens (i guess I'll call it a system) that my client can signup for or implement without breaking the bank.

:-) Question: Is it ok to just print an agreement (maybe the Comcast agreement), have the renter sign it and give them a password for the WAP and call it a day.

I think I should (not broadcast) the SSID so there isn't an "easy" way to hack it.


Thanks guys, hands down, this is the best web form I've found....

NOTE; I'm using the smiley face's for bullet points....my idea I just invented today.. :-)

Thanks all...
 
I would not mention Comcast in any way....
Comcast likely has it in customer fine print this isn't allowed. Comcast would want to install a separate service to the rental and not piggyback it off of their consumer (non-business) plan.

I think you're over thinking the rest...
A simple isolated guest network is just fine. Just ensure the rentals network is isolated from the main house.
Have the renter sign the internet access agreement along with the other papers. No need to over-complicate it with a splash page for a single rental.

Another issue they may have....
What if the renters download illegal content? The owners are the ones that will get the notice. If it happens too many times, they lose service.
Their internet access agreement won't help as then you'd have to admit to Comcast that they were providing internet to a rental.
 
Yes, I see that now. Thinking on it more, all hotels call their clients guests, and all the consumer modems and routers clearly have options there for a "guest account". The people visiting, renting the ARIBNB can be called guests...i guess....right? So very basically, whom ever is paying the bill for internet access at that address, and chooses to share it on a guest account, but they are really the ones responsible for what happens.
 
Honestly, the legal wall you see at the big hotspots isn't there because of usage liability, it's there because of unintended exposure. If you look closely at most hotels, you'll notice the language is very different.

Basically they're asking you nicely not to use this for illegal purposes, and please don't surf porn in public that soccer mom over there will sue us. Said soccer mom can't say much if she's the one peeping through a window to see the screen.

Finally, I don't know how Comcast operates, but I know that Cox doesn't give a flying rip WTF goes on in their residential accounts. As long as your usage fits within the billing level of the service, you're fine. They know people use their stuff for AirBnB, and home offices, they don't care, they want customers.
 
I'd bet money that all residential ISP agreements, and I mean ALL, contain language which explicitly prohibits doing exactly what is happening. Even if the Internet service is not explicitly resold, as a line item on the invoice, I'm sure there's language intended to keep residential users from intentionally making it public.

That being said none of them are going to do diddly unless it's something that will get them in trouble. Like RIAA violations, DDoS attacks, etc. The later will attract attention. I made a mistake and let my land lady's, who lives below me, daughter use my Internet via WiFi while she stayed there for several months. Got a notice from the ISP within 2-3 weeks about illegally streaming/providing music and they;d turn it off if I didn't do anything.

So take it seriously and do the same with your customers. Of course this is a silver lining. It means you should be able to peddle some kind of MSP Lite. Making sure they have a real router and proper filtering, including DNS.
 
Sounds like an ideal setup for a unifi USG and some unifi access points.

Sent from my SM-G870W using Tapatalk
 
I like these devices. Really easy to setup and manage - https://www.guest-internet.com/

Demo of the admin GUI here - https://guest-internet.com/demo2/

Clients using P2P will be blocked temporarily and given a warning message. Repeated blocks = permanent (it blocks on MAC address). You can customise this under the Firewall seciton.

Can also setup to use a content filtering service like OpenDNS for added security, although tech savvy users can bypass this with a static DNS.

We have a couple clients use the ticket printer and each guest gets a unique login code. This lets you track & restrict usage on an individual guest basis. Also integrates with PapPal if your client wants to sell additional data / time / bandwidth to their guests. I've setup one with a free service at 0.5Mb/s and a premium service for £x.xx you get 10Mb/s.


A full on UTM would be more powerful but also more expensive and require more configuration/maintenance. A bit overkill for most holiday lets.


EDIT:
Finished my sentence on login codes. for some reason it was cut short on first post.
 
Last edited:
I've looked into some of the ASUS routers with DD-WRT and openwrt firmware options, but none allow me to install some HTML file with an aggreement--it really sounds like it should be pretty stupid/simple but I have found no options.

It's called a Captive Portal, and at least on OpenWRT it looks like nodogsplash is likely what you're looking for. The project overall seems to be active based on the nodogsplash github page, though I didn't go as far as checking what version is prebuilt for OpenWRT.
 
(1) Unifi with cloud or local controller
(2) OpenMesh
Unifi all the way. It has captive portal &/or Facebook login built in at no added cost. I use it at my own house and have it setup at several businesses and even a couple small hotels as well as the local community college.

Let me add that you SHOULD setup a VPN and do a subnet for obvious reasons. Also, I dont know about other internet providers, but here we have Suddenlink and as long as all internet connection/s is on the SAME property, you can put a signal anywhere in any way you see fit.
 
Last edited:
I would be getting some content filtering in place as part of this setup. Make it a guest network on a VLAN and code the content filtering to limit access severely. I'm sure other devices do this, but I would install a Sonicwall and Ubiquiti cloud key in the main house and a Ubiquiti access point in the cottage. POE = only one wire to hide and you can put the WAP on or above the ceiling. Ubiquitis can do a customized gatekeeper page if you set it up.
 
I think I should (not broadcast) the SSID so there isn't an "easy" way to hack it.
Anyone that is going to hack into a WiFi access point won't be stopped by a hidden SSID. Don't expect any of your intended users to not have trouble figuring out how to connect their devices to a hidden SSID.

Another vote for UniFi and a Cloud Key and UniFi Security Gateway.
 
I vote to keep it simple.

Over the past 10 years my wife and I have stayed at a TON of VRBO/AirBnB/HomeAway places. I've yet to see any of 'em get anything beyond the basic SSID and password for the wireless. Never seen one go as complex as having a captive portal. If any trouble occured..date/time will be determined and your client has the rental records to show who was there at that time.

But as noted here...a few easy ways to do a captive portal, be it via the wireless product itself like Unifi, or from the router end...many *nix routers, such as Untangle and others.
 
One note I'll add: there is precisely zero reason why the SSID needs to reflect anything about the business it's in. I've named business SSIDs with the owner's cat's name, favorite bands, all sorts of things. If someone's trying to crack a specific wifi network, no reason to make it simpler for them to identify which one it is.
 
I have setup wifi access for a couple of clients with BnB rooms. I haves used Unifi and Sophos equipment. If I used Unifi then they also get DNSFiltering.com setup to mainly block Torrent/P2P sites. Many BnB renters don't care and will use the internet how they please and the responsibility falls back to person who signed the contract for the internet with DMCA notices.
 
Back
Top