14 Oct
2020
14 Oct
'20
8:08 p.m.
Some users are scared of using an open (no password) wireless community
network. They have heard terrible things about it: If they surf the
Internet without WPA2, their soul might burn in Hell.
I guess the most likely attack we could suffer is some kind of Person In
The Middle attack. I am trying to make a very easy list of
recommendations to make users feel (and be) safer in an open wireless
network. Many of them will use the network through mobile devices,
mostly Android.
I can think of using:
- HTTPS-Everywhere add-on (I think Firefox now does not need that
anymore, but not sure about Android)
- Some DNS protection (I don't know much about the DNSsec, DNScrypt,
DoT, etc. Maybe the easiest solution would be to simply configure a
trusted DoH address in Firefox if they use a recent version of Firefox?
I mean on desktops. I don't know if that is possible or easy on Android.
- Tor
- a VPN
Any comment or any other recommendation is welcome!
21 Oct
21 Oct
1:57 a.m.
Hi!
On 10/14/20 5:08 PM, amuza wrote:
Some users are scared of using an open (no password)
wireless community
network. They have heard terrible things about it: If they surf the
Internet without WPA2, their soul might burn in Hell.
I guess the most likely attack we could suffer is some kind of Person In
The Middle attack. I am trying to make a very easy list of
recommendations to make users feel (and be) safer in an open wireless
network. Many of them will use the network through mobile devices,
mostly Android.
I can think of using:
- HTTPS-Everywhere add-on (I think Firefox now does not need that
anymore, but not sure about Android)
- Some DNS protection (I don't know much about the DNSsec, DNScrypt,
DoT, etc. Maybe the easiest solution would be to simply configure a
trusted DoH address in Firefox if they use a recent version of Firefox?
I mean on desktops. I don't know if that is possible or easy on Android.
- Tor
- a VPN
Any comment or any other recommendation is welcome!
Recommendations may be good but there is no silver bullet, recommending doing a lot of
things that I (and most hackers) don't do may scare them more. I would suggest
pointing to educational material mostly (I don't have any bookmarked...) about HTTPS,
encryption, how protocols work, when something is encrypted, what does it mean, etc.
Best!
SAn
26 Oct
26 Oct
9:42 a.m.
SAn:
Hi!
On 10/14/20 5:08 PM, amuza wrote:
Hi SAn!
Many thanks for the inputs, they are very useful.
Cheers!
Some users are scared of using an open (no
password) wireless community
network. They have heard terrible things about it: If they surf the
Internet without WPA2, their soul might burn in Hell.
I guess the most likely attack we could suffer is some kind of Person In
The Middle attack. I am trying to make a very easy list of
recommendations to make users feel (and be) safer in an open wireless
network. Many of them will use the network through mobile devices,
mostly Android.
I can think of using:
- HTTPS-Everywhere add-on (I think Firefox now does not need that
anymore, but not sure about Android)
- Some DNS protection (I don't know much about the DNSsec, DNScrypt,
DoT, etc. Maybe the easiest solution would be to simply configure a
trusted DoH address in Firefox if they use a recent version of Firefox?
I mean on desktops. I don't know if that is possible or easy on Android.
- Tor
- a VPN
Any comment or any other recommendation is welcome!
Recommendations may be good but there is no silver bullet, recommending doing a lot of
things that I (and most hackers) don't do may scare them more. I would suggest
pointing to educational material mostly (I don't have any bookmarked...) about HTTPS,
encryption, how protocols work, when something is encrypted, what does it mean, etc.
Best!
SAn
1518
days inactive
1530
days old
lime-users@lists.libremesh.org
2 comments
2 participants
participants (2)
-
amuza -
SAn