Date: prev next · Thread: first prev next last
2013 Archives by date, by thread · List index


hello,

am I mistaken? I thought any https address is already encrypted.

F.

On Tue, 1 Oct 2013, James B. Byrne wrote:


On Tue, October 1, 2013 06:03, Tom Davies wrote:
Hi :)
Ok, so this is off-topic but it's another security issue.  

It's fairly easy for nefarious people to set-up unsecured wiifi networks.
 I've been caught out by this myself but was quite lucky because i was
watching out for it and hadn't done any on-line banking through their
connection.  

Typically you have a computer or device that connects to the internet without
needing a cable so you see a list of connections all with a padlock symbol and
1 or 2 with no padlock.  Clicking on one of those gives you instant connection
to the internet for free!!  WoooHoo!??  However everything you do on the
internet gets logged by the kind or stupid person that gave you the free
access.  They can fairly easily sniff through that to find passwords or login
details of legitimate networks or even better grab your bank account details.


To establish a secure http (and any other tcp based) connection via a public
wifi network do this (requires an ssh client on your mobile device):

HOST=yoursshdhost.yourdomain.tld
PORT=3000
USER=youruserid

ssh -Y -L $PORT:$HOST:$PORT -o ServerAliveInterval=30 -o
ServerAliveCountMax=10 $USER@$HOST

Given Firefox for example you then do this:

Firefox -> Preferences -> Advanced -> Network -> Settings -> Manual -> SOCKS
v5 -> SOCKS Host = localhost -> Port = 3000

Now all your http traffic goes out over the air and through the public
internet via an encrypted tunnel to a known point for further dissemination.

Note that while I do this from my MacBook Pro all the time I do not have that
device to hand at the moment so I am reproducing this from memory.  There may
very well be some error or omission in the example but this is close to what
works if it is not exact.

Note also that you may first need to 'register' your mac address with the wifi
hot point provider using a regularly configured web browser session before you
can establish the ssh link.  But once that is done and the ssh link
established then nobody between you and there is able to read your traffic.
And you know for certain who you are talking to at the other end of the link.

Alternatively get the Tor Browser and configure a secure and anonymous
connection using it: https://www.torproject.org/projects/torbrowser.html.en

Regards,



--
Felmon Davis

A leopard cannot change his spots.  -- Shakespeare
--
To unsubscribe e-mail to: users+unsubscribe@global.libreoffice.org
Problems? http://www.libreoffice.org/get-help/mailing-lists/how-to-unsubscribe/
Posting guidelines + more: http://wiki.documentfoundation.org/Netiquette
List archive: http://listarchives.libreoffice.org/global/users/
All messages sent to this list will be publicly archived and cannot be deleted

Context


Privacy Policy | Impressum (Legal Info) | Copyright information: Unless otherwise specified, all text and images on this website are licensed under the Creative Commons Attribution-Share Alike 3.0 License. This does not include the source code of LibreOffice, which is licensed under the Mozilla Public License (MPLv2). "LibreOffice" and "The Document Foundation" are registered trademarks of their corresponding registered owners or are in actual use as trademarks in one or more countries. Their respective logos and icons are also subject to international copyright laws. Use thereof is explained in our trademark policy.