Is public wi-fi access safe? - Comments Page 1

Dear Bob,

Always enjoy the newsletter. Gmail has offered secure access for many moons. One simply logs into https://mail.google.com instead of http://.... It slows the connection slightly, but it's a small price to pay.

EDITOR'S NOTE: Interesting... I tried https://www.gmail.com and I can login securely, but it reverts back to http (non-secure) after the login. Good find!

Hi Bob:

Gmail actually does provide an https: connection for its email (https://mail.google.com), one just has to ensure it stays in place as it will sometimes revert back to the http: URL when one tries to compose an email. If that happens one just needs to put the "s" back into the URL and voila - a secure email solution. They do seem to have a problem maintaining the state though their support desk assures me they are working on the problem.

cheers,

Hi Bob,

As always, great information! Regarding Gmail, I'm not sure what I'm doing right (!), but when I first started using Gmail I explicitly ensured I was using https and it seems to have "stuck" ever since. I just checked my gmail tab which I've been using all day and it's still secure. So there *is* hope... Maybe it's the URL I use to access it -- https://gmail.google.com/gmail

Regarding wi-fi from a home router--what if you have wi-fi at home and don't mind your neighbors sharing it--especially if they help pay the bill? Is there anything wrong with 3 friendly neighbors sharing internet access through a wifi connection that they can all access? The occasional drive-by user doesn't bother me as long as my info is secure (that is, as long as I ensure I'm using a secure site whenever it matters, like for email.)

EDITOR'S NOTE: Aside from the fact that you are probably defrauding your ISP (check your terms of service) there's always the question of some unfriendly person tapping into your unsecured system. Make sure you have a software firewall, and top-notch anti-malware protection.

You forgot to discuss the problems with using non-web email - e.g. sending your email password "in the clear" when checking your email using POP on port 110. Anyone who uses a laptop on insecure wireless networks needs to configure their email software to check and send email in a secure fashion. Ask your email provider if they offer secure POP on port 995, secure IMAP on port 993, and secure SMTP on port 465 or port 587.

EDITOR'S NOTE: Good point. It's been so long since I used a POP mail client (such as Outlook, Thunderbird or Eudora) that I didn't even consider it. Love my webmail! Another secure option, if you don't want to twiddle with the settings in your email program (or fight with your ISP) is to login to a remote computer with LogMeIn, and access your POP mail from there.

What about wifi connection of digital photo cameras? models like nikon p3 , s6 that have wifi connection are safe ? or some data (photos) during wifi tranfer cab be stolen? Does S6 have both options to transfer photos to your computer with and without wire? (for safety reasons)

EDITOR'S NOTE:If wireless cameras connect to your router in the same way as a PC, and there is no encryption, then yes, it's possible (but very unlikely) for this data to be intercepted.

You have a link in the article above to http://www.aunty-spam.com/wifi-hotspot-evil-twins-mimic-wi-fi-hotspots-and-steal-your-data which is supposed to warn of a scam where a hacker may put up a bogus copy of the wi-fi hotspot's login page. That page now just displays various ads and not the information mentioned. So you may want to remove that link or find another to replace it.

EDITOR'S NOTE: Sorry the domain changed. Fixed now!

I've searched the Comments and can't find that anyone raised this point, on the article's topic:

Let's assume I'm at a public, open Wi-Fi hotspot, and want to access my Gmail on the netbook without risk to my password, without a VPN. I don't want to conduct the entire session with the 3G modem, since my provider puts monthly bandwidth limits on wireless access.

Would I be close to 100% safe if I do this, just before the password has to be entered:

1) Plug in my 3G modem and wait until it connects.

2) Hit the function key combination that cuts power to the netbook's Wi-Fi card. I wait until I see 'Wi-Fi disconnected', then wait for 'Auto Mobile Broadband connected'.

3) Supply UserName and Password, hit Enter, wait for log-in confirmation on Gmail (for example).

4) Again apply hotkey to turn Wi-Fi connection 'on'.

5) Open Network Manager Applet and de-select the 3G modem. When modem disconnection is verified, pull it out.

6) Applet automatically switches, sensing the loss of the 3G modem.

7) Resume accessing mailboxes via the open connection (or doing banking, with whichever passwords that must remain confidential).

Although someone could possibly see the contents of my mail (or banking account) while I'm working on it (??) is there any way they could re-enter after I log off, given the above precaution?

[Bob, if this procedure doesn't accomplish anything beneficial, feel free to edit-out and summarize the steps and then give the reason it would fail ]

EDITOR'S NOTE: That's WAY too hard. Just login to Gmail or your online banking with HTTPS in the URL. That will ensure the session is encrypted and secure. There's even an option in the Gmail settings to always force a secure session.

Good information. The only objection I have is with you grouping all hackers in one bunch. There is a difference with 'hackers' the good guys who improve security by responsibly exploiting security holes and 'malicious hackers' the bad guys who give hackers a bad name with their malicious intent. Other than that good stuff.

Question: Does using OpenVPN with ShieldExchange.com completely protect you at public WiFi hotspots? Or not?

Thank you in advance.

I keep checking this page for an answer to my post. I realize you're busy. Sorry to bother you.

EDITOR'S NOTE: If you are using a VPN, I don't see why you would need additional protection.