Open WIFI networks - security precautions

Cheetah Designs · 7 Jan 2011 at 15:57

What sort of security precautions should you make when using open WIFI networks like in a WIFI cafe.

Things that go through https servers are secure aren't they because they are secure....right?

What about plain HTTP like surfing these forums? Nothing you can do to ensure you don't get your details stolen is there?

Thanks.

Sp00n · 7 Jan 2011 at 16:06

You could tunnel your traffic through a VPN but this would obviously require you to have one set up, failing that don't do anything secure on an open network.

Cheetah Designs · 7 Jan 2011 at 16:15

Am I ok with HTTPS?

Sp00n · 7 Jan 2011 at 16:16

Potentially but I still wouldn't use it on an open network.

tntcoder · 7 Jan 2011 at 16:50

Nothing wrong with using HTTPS over public wifi, just be aware of the risks - i.e if you get any certificate warnings/errors do not use it. Otherwise it's theoretically just as strong as an SSH tunnel to the end web server.

Cheetah Designs said:
What about plain HTTP like surfing these forums? Nothing you can do to ensure you don't get your details stolen is there?

Plain HTTP is vulnerable to interception, for example someone could steal your session to these forums and post under you (if they really wanted...) but they wouldn't be able to get your login details. Although vbulletin login is immune to wifi sniffing, the OCUK trust system is vulnerable to credential sniffing.

So:
- Keep host machine well patched/protected
- Try where possible to just use HTTP for viewing only, don't login to stuff.
- HTTPS/SSL/TLS is pretty much solid if you know what to avoid with dogi certificates.
- SSH/VPN is very ok.