Page 1 of 2 12 LastLast
Results 1 to 15 of 16
  1. #1
    5 Star Lounger Vincenzo's Avatar
    Join Date
    Mar 2004
    Posts
    676
    Thanks
    101
    Thanked 15 Times in 14 Posts

    Unencrypted wifi

    I am staying at a hotel that has unencrypted wifi, no password is required. I don't plan on sending or accessing anything sensitive, and not going to check email.
    What is the level of risk using the hotel network? How much more risky is it than an encrypted wifi network?

    Thanks

  2. #2
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,058
    Thanks
    138
    Thanked 807 Times in 646 Posts
    Well, it's definitely not good practice but you should be OK provided firewall and anti-malware protection is on (and up-to-date) and you're sensible with your browsing.

    By that I mean don't access anything that needs you to input credentials, i.e. browsing eBay is fine but logging in would be a no-no.

    Have a look at this Why Using a Public Wi-Fi Network Can Be Dangerous, Even When Accessing Encrypted Websites article for more info.

    Hope this helps...

  3. The Following User Says Thank You to Rick Corbett For This Useful Post:

    Vincenzo (2016-10-01)

  4. #3
    5 Star Lounger Vincenzo's Avatar
    Join Date
    Mar 2004
    Posts
    676
    Thanks
    101
    Thanked 15 Times in 14 Posts
    OK thanks for the link to the article.

    I'm using my phone's hotspot instead, even though it is relatively slow and eating up my data. I worry that a wannabe hacker staying at the hotel could try to access my files when it is an unsecured connection.
    Last edited by Vincenzo; 2016-10-01 at 17:48.

  5. #4
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,058
    Thanks
    138
    Thanked 807 Times in 646 Posts
    Quote Originally Posted by Vincenzo
    I worry that a wannabe hacker staying at the hotel could try to access my files when it is an unsecured connection.
    If your files are stored within an NTFS filesystem and your new network connection to the hotel's wifi is set to 'Public' then I can't see how anyone could access your files ('cos 'file and print sharing' would be turned off).

    Hope this helps...

  6. The Following User Says Thank You to Rick Corbett For This Useful Post:

    Vincenzo (2016-10-03)

  7. #5
    WS Lounge VIP mrjimphelps's Avatar
    Join Date
    Dec 2009
    Location
    USA
    Posts
    3,861
    Thanks
    496
    Thanked 444 Times in 415 Posts
    Whenever we travel, I try to stay at a hotel which offers WIRED internet in the rooms, because I can connect via an ethernet cable and not worry about the unsecured wifi.

    I don't use unsecured wifi unless I have to. I think it's pretty lousy that hotels are skimping on wifi security. In my opinion, this is a bad thing.

  8. The Following User Says Thank You to mrjimphelps For This Useful Post:

    Vincenzo (2016-10-03)

  9. #6
    WS Lounge VIP
    Join Date
    Dec 2009
    Location
    Earth
    Posts
    8,953
    Thanks
    61
    Thanked 1,104 Times in 1,027 Posts
    You can spot hijack attempts by careful examination of your HTTPS connection and certificates.
    As always, internet security is up to you, which explains why so many people are hacked.

    cheers, Paul

  10. The Following User Says Thank You to Paul T For This Useful Post:

    Vincenzo (2016-10-03)

  11. #7
    4 Star Lounger
    Join Date
    Jul 2011
    Location
    Florida
    Posts
    482
    Thanks
    227
    Thanked 40 Times in 38 Posts
    Quote Originally Posted by Vincenzo View Post
    I am staying at a hotel that has unencrypted wifi, no password is required. I don't plan on sending or accessing anything sensitive, and not going to check email.
    What is the level of risk using the hotel network? How much more risky is it than an encrypted wifi network?

    Thanks
    Using a VPN would be my suggestion.

  12. The Following 2 Users Say Thank You to Trev For This Useful Post:

    bobprimak (2016-10-07),Vincenzo (2016-10-03)

  13. #8
    Administrator Rick Corbett's Avatar
    Join Date
    Dec 2009
    Location
    South Glos., UK
    Posts
    3,058
    Thanks
    138
    Thanked 807 Times in 646 Posts
    When I'm in this situation and have no option but to access somewhere that needs me to input credentials then I use TeamViewer to remote back to my home (where TeamViewer Host service is running on my home PC whenever I'm away) and then input the credentials on a browser running on the home PC.

    On the rare occasions I've had to use a hotel's PC then I use a portable version of TeamViewer that I carry on a USB stick. I've used this method for years and never had a problem.

    Hope this helps...

  14. The Following 3 Users Say Thank You to Rick Corbett For This Useful Post:

    bobprimak (2016-10-07),eikelein (2016-11-06),Vincenzo (2016-10-03)

  15. #9
    5 Star Lounger Vincenzo's Avatar
    Join Date
    Mar 2004
    Posts
    676
    Thanks
    101
    Thanked 15 Times in 14 Posts
    OK, thanks to all for the suggestions. I am back home now.

  16. #10
    Lounge VIP bobprimak's Avatar
    Join Date
    Feb 2009
    Location
    Hinsdale, IL, USA
    Posts
    2,494
    Thanks
    177
    Thanked 157 Times in 131 Posts
    Just one more thing. Many Antivirus Programs, even free ones like Avira, do offer their own VPN Services. The VPNs aren't free, but have a Free Trial period so you can judge for yourself whether they are right for you.
    -- Bob Primak --

  17. The Following 2 Users Say Thank You to bobprimak For This Useful Post:

    mrjimphelps (2016-10-07),Vincenzo (2016-10-07)

  18. #11
    5 Star Lounger Vincenzo's Avatar
    Join Date
    Mar 2004
    Posts
    676
    Thanks
    101
    Thanked 15 Times in 14 Posts
    Thanks, Bob, good to know.

  19. #12
    New Lounger
    Join Date
    Mar 2010
    Location
    Ft Worth, Texas, USA
    Posts
    24
    Thanks
    0
    Thanked 1 Time in 1 Post

    Network security

    Quote Originally Posted by Vincenzo View Post
    I am staying at a hotel that has unencrypted wifi, no password is required. I don't plan on sending or accessing anything sensitive, and not going to check email.
    What is the level of risk using the hotel network? How much more risky is it than an encrypted wifi network?

    Thanks
    What *I* use when I'm traveling is a free utility from the U.S. Air Force Research Lab called "TENS" (Trusted End-Node Security). You can download a public version
    ISO from http://www.tens.af.mil.

    What TENS is is a hardened version of Linux that boots from CD/DVD/USB and resides in RAM, never accessing the host HD at all. Included in TENS Deluxe is LibreOffice, Firefox, Thunderbird and several other Linux utils I rarely use. To save any data, you would need a separate USB flash drive for your saved data. Several of the Liveboot CD/DVD's of Linux flavors can be used the same way. I previously used to use Puppy Linux for this purpose.

    Cheers,
    Phil Heberer

  20. The Following User Says Thank You to pheberer For This Useful Post:

    Vincenzo (2016-10-11)

  21. #13
    3 Star Lounger
    Join Date
    Apr 2010
    Location
    Los Gatos CA
    Posts
    378
    Thanks
    52
    Thanked 12 Times in 11 Posts
    Quote Originally Posted by pheberer View Post
    What *I* use when I'm traveling is a free utility from the U.S. Air Force Research Lab called "TENS" (Trusted End-Node Security). You can download a public version ISO from http://www.tens.af.mil.
    That TENS sounds interesting, but when I clicked on the link I got: "Your connection is not secure..."

    TENS.JPG

  22. #14
    Silver Lounger lumpy95's Avatar
    Join Date
    Feb 2013
    Location
    Mojave Desert CA
    Posts
    2,225
    Thanks
    322
    Thanked 242 Times in 197 Posts
    Quote Originally Posted by Rhinoceros View Post
    That TENS sounds interesting, but when I clicked on the link I got: "Your connection is not secure..."

    TENS.JPG
    Did you try with a different browser? Looks like FireFox didn't like it.

  23. #15
    WS Lounge VIP
    Join Date
    Dec 2009
    Location
    Earth
    Posts
    8,953
    Thanks
    61
    Thanked 1,104 Times in 1,027 Posts
    The connection is invalid because the DoD use self signed certificates - why would they pay a commercial organisation to authenticate them when the government has already done that by creating them.
    You can add the root certificate to your trusted store and all will be well - assuming you trust the DoD / US government.

    cheers, Paul

    Capture.PNG

  24. The Following User Says Thank You to Paul T For This Useful Post:

    eikelein (2016-11-06)

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •