Solved

safeguard against immediate neighbourhood hack

Posted on 2013-06-23
12
346 Views
Last Modified: 2013-06-26
in the below 2 circumstances, what are the things we are do from anyone reading our traffic data:

1) residential.. wifi dsl.. with password.. we want to make sure 100% no password is hacked from neighbour..
2) airport.. free wifi...
0
Comment
Question by:25112
  • 5
  • 4
  • 2
  • +1
12 Comments
 
LVL 83

Assisted Solution

by:Dave Baldwin
Dave Baldwin earned 312 total points
ID: 39269644
There is no 100% guaranteed method for either one.  With residential wifi, using long and meaningless passwords makes them harder to guess.  For free wifi at the airport, your only serious protection is to turn your computer off.
0
 
LVL 4

Assisted Solution

by:TalShyar
TalShyar earned 63 total points
ID: 39269646
Use VPN, especially when using it away from home. Also be sure to use WPA2 wireless encryption protocol.

You have the options of using your own VPN server or paying for provider. Below is list of some VPN providers

List of VPN providersList of VPN providers

Out of that list, I have used HideMyAss, StrongVPN, and ipVanish. My best experience was with ipVanish.

Also, check out this article for "How and Why to Setup VPN today"
0
 
LVL 57

Assisted Solution

by:giltjr
giltjr earned 125 total points
ID: 39269796
Your home wifi.  Use WPA2 and change your key every so often.

How to crack WPA/WPA2: http://www.smallnetbuilder.com/wireless/wireless-howto/31914-how-to-crack-wpa-wpa2-2012

For free public Wifi.  If you use a user-id/password to logon to any service, make sure that you are using an encrypted connection to that server:  ssh, sftp, ftps, https, SSL'ed Telnet, VPN.  Do not logon to anything using clear text user-id/password.  If for some reason you make a mistake and login in clear text, change you password as soon as possible.
0
Connect further...control easier

With the ATEN CE624, you can now enjoy a high-quality visual experience powered by HDBaseT technology and the convenience of a single Cat6 cable to transmit uncompressed video with zero latency and multi-streaming for dual-view applications where remote access is required.

 
LVL 5

Author Comment

by:25112
ID: 39275312
thank you.

i use gmail often from the free wi-fi in airport..
gmail.com point to https://

is that a good starting point?
then change password everyday? (i wish i can do what Dave suggested, but I am required to use the laptop often)

is that my best strategy.

in gmail, when i type password, i only see dots.. is that what it means by 'not clear text'
0
 
LVL 57

Assisted Solution

by:giltjr
giltjr earned 125 total points
ID: 39275496
--> ".. in gmail, when i type password, i only see dots .."

NO, that does not mean it is not clear text.  That just means somebody watching you type can't see the letters on the screen.

Since you are using https, that does mean that it is encrypted.  The "s" on the end means it is encrypted using SSL/TLS.
0
 
LVL 83

Assisted Solution

by:Dave Baldwin
Dave Baldwin earned 312 total points
ID: 39275706
'https' for Gmail should be adequate.  The problem with the free wifi is that your network isn't protecting you from intrusions like a home network that requires a password.
0
 
LVL 5

Author Comment

by:25112
ID: 39275755
>>NO, that does not mean it is not clear text
so gmail is using clear-text? practically, what does it mean?

>>'https' for Gmail should be adequate.
so, if gmail is main and big or only use in public wifi, then i have less or no worries, right?

thank you-
0
 
LVL 83

Assisted Solution

by:Dave Baldwin
Dave Baldwin earned 312 total points
ID: 39275805
No, the login page for Gmail is 'https' so it is not clear text.  The problem with free wifi is that your traffic can be monitored by others.  They may not be able to read the 'https' streams but they can read everything else.  Make sure your firewall is working to block intruders.
0
 
LVL 5

Author Comment

by:25112
ID: 39277771
thanks-

>>Make sure your firewall is working to block intruders.

can you recommend a software firewall for the laptop, pl.. one free, one commercial... or windows firewall fine enough? (windows 7)
0
 
LVL 83

Assisted Solution

by:Dave Baldwin
Dave Baldwin earned 312 total points
ID: 39278911
I just use the Windows built-in firewall.  But I never go to the airport and use free wifi.  Actually, I never go anywhere and use free wifi.
0
 
LVL 5

Author Comment

by:25112
ID: 39279352
>>But I never go to the airport and use free wifi.

even if you have good firewall (and https), someone can still track your traffic?

can someone inject virus/malware in those kind of situations?

does it depend on what you are using the laptop for? or does it not even matter?
0
 
LVL 83

Accepted Solution

by:
Dave Baldwin earned 312 total points
ID: 39279418
Your 'traffic' is on the network outside of your firewall so if they can listen to the network, they can listen to your 'traffic'.  It does not directly depend on what you are using the laptop for.  But you still have all the vulnerabilities that you would at home.  If you go to bad sites, you can download things you don't want.  Unless you have a service listening and accepting connections on your laptop (like ftp or a web server or Netbios/SMB), it is difficult for people to 'inject' anything into your computer.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question