Open WIFI points

[Cheetah Designs]

Given most things are HTTPs now - is it still a risk using an open WIFI network? (with the assumption that SSL is secure)

 

[Cheetah Designs]

Yea, a lot of people (especially if asking a question like this) would just click "accept' when asked to install a security cert when joining the network. I mean, it's a SECURITY cert after all

That's a pretty large assumption. I am familiar with what a security certificate is. I didn't realize it was possible for joe bloggs to pretend to be Google though using some simple HTML5 - that doesn't sound right?

Are you all not assuming your VPN is secure?

 

[Cheetah Designs]

I never mentioned HTML5 but we use GPO at work and to join our public WiFI it prompts you to install an SSL cert. That SSL cert is issued by our proxy for the sole purpose of SSL termination. This allows the proxy to inspect SSL traffic and is transparent.

I did say 'a lot of people' and if this does not apply to you then you don't fit that demographic so no need to feel offended.

Ah right - so you'd still have to install a cert.

I'll rephrase my question then. Assuming I haven't installed an misc. certifications, is it still a risk to use open wifi points when using HTTPs...my understanding is that it is end-to-end encryption.