Keep in mind though, that once your Layer 2 is hijacked, a lot of attacks are possible before upper layer security kicks in - things like browser redirection and exploitation are very common these days
Please take note of this folks. Simply trusting "transport security" isn't enough. Please do not seriously run an open access point because you think it's just as safe as the OP.