Free Wi Fi Hotspots how to be secure?

[CMan]

What do you use a VPN for free hot spots?
I did a search Opera browser bought Surf Easy and is in the developer download.  
I downloaded Opera which surely is fast knocks out adds.
I used this browser years ago in Linux software.

Let me know what you use.
Sorry Bob it knocked out 3 adds while on this page

 

[rvpopeye]

Open DNS it's free

 

[vagari]

Always use HTTPS when possible. Assume anyone can see anything you are doing if not using HTTPS. HTTPS is secure, HTTP is not. If you are using HTTPS then someone might be able to see which website are visiting but not the data you send to the website.

For example, Google, YouTube, Facebook and others now use HTTPS by default (you need to check). So someone could see you are visiting these sites but not see your emails, messages, search results, videos you are watching, etc.

But .. Cheaprvliving does not use HTTPS so assume anyone can read your private messages, intercept your password, etc. Do not use a password on this site that you use elsewhere. It would be great if this website would use HTTPS at least for the login. 

Knowing the difference between HTTP and HTTPS is a huge first step in protecting yourself.


VPN's are more about anonymity then security. They also can get around websites that are blocked on free wifi spots. If a free wifi is blocking Netflix, start a vpn and you can get to netflix.

Ad blockers are about blocking ads which significantly slow down websites and allow third parties to track your habits. websites load 10+ times faster with ad blockers. Always be sure to allow ads on sites you support.

Open/free DNS servers are again about preventing your ISP from tracking you and selling the data or inserting ads into your http requests.

 

[Reducto]

I use a VPN service called Kepard. I think it's free for a month then a few bucks after that. The only problem I really have with it is when I use the Netherlands server (the one that allows torrents) some sites think I speak Danish and make it difficult to switch back to the US version.

I've already paid for my year of this so I haven't looked into the Opera stuff. I'm anxious to see how fast and reliable it is.

 

[phillipaaron]

Don't use public wifI period if you want to be secure. Even SSL traffic is not secure. Mitm attacks allow attackers to do a lot of nasty stuff. Anyone connected to the network can perform a Mitm attack. The threat is real.

 

[CMan]

Opera Developer download has the VPN for free. The regular version will add the VPN soon .
I Download both versions. Developer go to settings the Security and turn on VPN.
The software has add blocking quick page loads.
With internet cutting back my usage I don't need adds.
Opera for phones as well. I use Skype for calling and receiving.
If I use Hulu free I downloaded Adobe Flash.

 

[blars]

https makes your connection more secure from snooping, but does nothing for man-in-the-middle attacks. VPN or SSH are secure against mitm iff you use credentials exchanged over a secure channel. (Generally only needed at initial setup.)

 

[vagari]

https makes your connection more secure from snooping, but does nothing for man-in-the-middle attacks.  VPN or SSH are secure against mitm iff you use credentials exchanged over a secure channel.  (Generally only needed at initial setup.)

Man-in-the-middle attacks over HTTPS are extremely rare and difficult unless the server has an invalid certificate and the user ignores the browser's warning.

A VPN really doesn't prevent MITM attacks. It may help protect between you and the vpn but not between the vpn and your final destination (pc -> vpn -> mitm -> destination). You also need to trust the VPN so they don't hijack you via dns spoofing which is also a danger using some free/open dns servers.


See here for more info on mitm
https://www.owasp.org/index.php/Man-in-the-middle_attack
http://www.computerweekly.com/featu...les-heel-of-VPNs-the-man-in-the-middle-attack