Discussion:
[OpenWireless Tech] Is it safe enough?
Weeez
2015-01-11 02:40:34 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:38 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:43 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:42 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:45 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:41 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:48 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:02 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:38 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:44 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:37 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:16 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:47 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:40:40 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:08 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:25 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:43 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:42:30 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:42:09 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:42:15 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:41:56 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 02:42:21 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:43:59 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:12 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:08 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:10 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:03 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:13 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:04 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:07 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Weeez
2015-01-11 04:44:06 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
Hans-Christoph Steiner
2015-01-12 09:04:00 UTC
Permalink
You should not rely on the network providing security, that never really
works. Instead you should rely on end-to-end security, like using HTTPS, TLS
etc. If you have privacy concerns, then you should use Tor.

Do you ever use any open wifi? If the answer is yes, then you are already
exposed to the risks, so you should then use proven techniques to improve
security and privacy, instead of hoping the network is.

.hc
Post by Weeez
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
Pratheek Rebala
2015-01-12 11:59:53 UTC
Permalink
_______________________________________________
Tech mailing list
***@openwireless.org
https://srv1.openwireless.org/mailman/listinfo/tech
Umut Erdal
2015-01-12 12:12:25 UTC
Permalink
I think today most of routers support virtual networks such as guest
networks so i think it's the most safe option. By configuring your router
like this, you separate your network from other clients so they can't use
attacks like mitm.
I'm not an expert on this but was wondering if enforcing a VPN type
solution to encrypt all traffic after joining an open wireless connection
can give an additional layer of security while accessing sites not on SSL.
Thoughts?
On Mon, Jan 12, 2015 at 13:04, Hans-Christoph Steiner <
You should not rely on the network providing security, that never really
works. Instead you should rely on end-to-end security, like using HTTPS,
TLS
etc. If you have privacy concerns, then you should use Tor.
Do you ever use any open wifi? If the answer is yes, then you are already
exposed to the risks, so you should then use proven techniques to improve
security and privacy, instead of hoping the network is.
.hc
Post by Weeez
If I set my network as an open one, is it safe enough?? will the hackers
see what I'm doing, or who I am, or get my password while I'm logging in a
website? As the information are transferring without encoding..
Post by Weeez
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
Pratheek Rebala
2015-01-12 12:18:12 UTC
Permalink
_______________________________________________
Tech mailing list
***@openwireless.org
https://srv1.openwireless.org/mailman/listinfo/tech
Christian Huldt
2015-01-12 12:34:41 UTC
Permalink
And for that a VPN secures that part of the connection....
Right, but I think the question is about making those guest networks
secure for users using the open connections.
I think today most of routers support virtual networks such as guest
networks so i think it's the most safe option. By configuring your
router like this, you separate your network from other clients so
they can't use attacks like mitm.
On Mon, Jan 12, 2015 at 12:59 PM, Pratheek Rebala
I'm not an expert on this but was wondering if enforcing a VPN
type solution to encrypt all traffic after joining an open
wireless connection can give an additional layer of security
while accessing sites not on SSL.
Thoughts?
On Mon, Jan 12, 2015 at 13:04, Hans-Christoph Steiner
You should not rely on the network providing security, that
never really
works. Instead you should rely on end-to-end security, like
using HTTPS, TLS
etc. If you have privacy concerns, then you should use Tor.
Do you ever use any open wifi? If the answer is yes, then
you are already
exposed to the risks, so you should then use proven
techniques to improve
security and privacy, instead of hoping the network is.
.hc
Post by Weeez
If I set my network as an open one, is it safe enough??
will the hackers see what I'm doing, or who I am, or get my
password while I'm logging in a website? As the information
are transferring without encoding..
Post by Weeez
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
Christian Huldt
+46704612207
Hans-Christoph Steiner
2015-01-12 12:52:00 UTC
Permalink
Using a VPN would make it difficult for users of the same wifi to see your
unencrypted traffic, as well as the operator of the wifi AP. But since the
VPN provider can see all the traffic, and you don't know what the VPN provider
is doing with your traffic, it is not a solution I would recommend to people
concerned about security or privacy in their general internet usage.

VPNs are mostly useful as circumvention tools when dealing with networks that
block and filter. Or they are useful for providing a secure connection to a
"Private Network" hence "Virtual Private Network". But as the most recent NSA
leaks show, VPN protocols are mostly pretty bad when it comes to security.

http://www.spiegel.de/international/germany/inside-the-nsa-s-war-on-internet-security-a-1010361.html

.hc
Right, but I think the question is about making those guest networks secure for
users using the open connections.
I think today most of routers support virtual networks such as guest
networks so i think it's the most safe option. By configuring your router
like this, you separate your network from other clients so they can't use
attacks like mitm.
I'm not an expert on this but was wondering if enforcing a VPN type
solution to encrypt all traffic after joining an open wireless
connection can give an additional layer of security while accessing
sites not on SSL.
Thoughts?
On Mon, Jan 12, 2015 at 13:04, Hans-Christoph Steiner
You should not rely on the network providing security, that never really
works. Instead you should rely on end-to-end security, like using
HTTPS, TLS
etc. If you have privacy concerns, then you should use Tor.
Do you ever use any open wifi? If the answer is yes, then you are
already
exposed to the risks, so you should then use proven techniques to
improve
security and privacy, instead of hoping the network is.
.hc
Post by Weeez
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
Guy Jarvis
2015-01-13 21:08:04 UTC
Permalink
Useful article covering VPN security and more here
http://www.spiegel.de/international/germany/inside-the-nsa-s-war-on-internet-security-a-1010361.html

G

On Mon, Jan 12, 2015 at 12:52 PM, Hans-Christoph Steiner <
Post by Hans-Christoph Steiner
Using a VPN would make it difficult for users of the same wifi to see your
unencrypted traffic, as well as the operator of the wifi AP. But since the
VPN provider can see all the traffic, and you don't know what the VPN provider
is doing with your traffic, it is not a solution I would recommend to people
concerned about security or privacy in their general internet usage.
VPNs are mostly useful as circumvention tools when dealing with networks that
block and filter. Or they are useful for providing a secure connection to a
"Private Network" hence "Virtual Private Network". But as the most recent NSA
leaks show, VPN protocols are mostly pretty bad when it comes to security.
http://www.spiegel.de/international/germany/inside-the-nsa-s-war-on-internet-security-a-1010361.html
.hc
Right, but I think the question is about making those guest networks
secure for
users using the open connections.
I think today most of routers support virtual networks such as guest
networks so i think it's the most safe option. By configuring your
router
like this, you separate your network from other clients so they
can't use
attacks like mitm.
On Mon, Jan 12, 2015 at 12:59 PM, Pratheek Rebala <
I'm not an expert on this but was wondering if enforcing a VPN
type
solution to encrypt all traffic after joining an open wireless
connection can give an additional layer of security while
accessing
sites not on SSL.
Thoughts?
On Mon, Jan 12, 2015 at 13:04, Hans-Christoph Steiner
You should not rely on the network providing security, that
never really
works. Instead you should rely on end-to-end security, like
using
HTTPS, TLS
etc. If you have privacy concerns, then you should use Tor.
Do you ever use any open wifi? If the answer is yes, then
you are
already
exposed to the risks, so you should then use proven
techniques to
improve
security and privacy, instead of hoping the network is.
.hc
Post by Weeez
If I set my network as an open one, is it safe enough??
will the hackers see what I'm doing, or who I am, or get my password while
I'm logging in a website? As the information are transferring without
encoding..
Post by Weeez
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587
374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x9F0FE587374BBE81
_______________________________________________
Tech mailing list
https://srv1.openwireless.org/mailman/listinfo/tech
Weeez
2015-01-11 04:44:09 UTC
Permalink
If I set my network as an open one, is it safe enough?? will the hackers see what I'm doing, or who I am, or get my password while I'm logging in a website? As the information are transferring without encoding..
v***@gmail.com
2015-01-14 09:00:48 UTC
Permalink
Post by Weeez
If I set my network as an open one, is it safe enough?? will the hackers
see what I'm doing, or who I am, or get my password while I'm logging in a
website? As the information are transferring without encoding..
If you offer open wifi network anything that anybody does is succeptable to
different kind of attacks. So you should not do anything on public wifi
network that isn't SSL encrypted (login only to web sites that have https)
or use a vpn.

Guys from Wlan-Slovenia and we in Croatia are using VPN technology to
ensure that traffic donor of wifi hotspot isn't being seen by people using
open wifi node they are providing.

You can also use this an create open wifi node but protect your internal
network.

Just go to https://nodes.wlan-si.net/ create new account and then create
new node. I recommend you use TP-Link WR741ND router for indoor open wifi
node or Ubiquiti Loco M2 if it is an outdoor open wifi node.

There is also an video showing how to create new wifi node (but in
Croatian):
http://www.otvorenamreza.org/kako-se-prikljuciti-projektu/postavi-novu-tocku/
Loading...