1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Security when traveling

Discussion in 'Security and Privacy' started by fdamp, 2010/06/16.

  1. 2010/06/16
    fdamp

    fdamp Well-Known Member Thread Starter

    Joined:
    2009/04/09
    Messages:
    476
    Likes Received:
    12
    We use our home network for on-line banking, running it through a hard-wired desktop with 128-bit encryption. In 12 years, we've never had a problem.

    Later this year, we'll be getting a motorhome and will be spending quite a lot of time away from home. Our traveling computer is wife's netbook, which doesn't currently have our Quicken software on it, or the web address for our Credit Union.

    I don't think we need the kind of full-time access that an aircard would give, so we'd rely on unsecured public hotspots, assuming we could get to one every three or four days.

    What steps should we take on Momma's netbook to stop the bad guys latching on to our transmissions?
     
    fdamp,
    #1
  2. 2010/06/16
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    I wouldn't send data or logon to any financial website on a public unsecured hotspot even if the website offers SSL. There are too many variables & dangers to undertake such kind of adventure.
     
    rsinfo,
    #2


  3. to hide this advert.

  4. 2010/06/17
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    I wouldn't do it from a secured public hotspot either!
     
    TonyT,
    #3
  5. 2010/06/17
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    Yup, me too. The keyword is public.
     
    rsinfo,
    #4
  6. 2010/06/18
    Anaris

    Anaris Inactive

    Joined:
    2010/06/18
    Messages:
    2
    Likes Received:
    0
    Hi fdamp,

    One good way I think would be to make a connection via a VPN. That should solve most of your issues. To be honest, I actually run such a company and would like to point you to my website. I was here initially looking to solve an issue but was impressed by the quality of the posts and resources available so I decided to join.

    This is just to clarify that the above is not solely a marketing or sales drive. PM me and I will furnish you with more details (only if you want to) as I believe I should leave them out here. Hope I am able to help!
     
    Anaris,
    #5
  7. 2010/06/18
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    What would they be?

    I have no qualms using sites that offer SSL. All data send is encrypted so I don't see any problems.

    SSL encrypts between the endpoints: the server and the browser, so anyone 'watching' your traffic would only 'see' encrypted data.
     
    Arie,
    #6
  8. 2010/06/18
    rsinfo

    rsinfo SuperGeek Alumni

    Joined:
    2005/12/25
    Messages:
    4,076
    Likes Received:
    178
    Man in the middle for one.

    Even SSL has now proven to be breakable given enough resources & time. Why take chances ?

    Another danger is proxy server. http://www.securityfocus.com/brief/910
     
    rsinfo,
    #7
  9. 2010/06/18
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    ARP Poisoning using Ettercap & iptables you would never know it occurred.
    MTM (Man In the Middle attack).
    The certificates and connections can be hijacked and routed via the attacker's computer, who will have the same access as the victim (you).

    Note, the odds of this occurring are small, but it's still a risk.
     
    Last edited: 2010/06/18
    TonyT,
    #8
  10. 2010/06/21
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    Yup, I'm aware of these. and as you say: Note, the odds of this occurring are small, but it's still a risk.

    Sometimes you will have no choice but to use unsecured wireless. I try to avoid it when possible, but if I can't avoid it, I don't have a problem using it with SSL secured sites.
     
    Arie,
    #9
  11. 2010/06/22
    DugE

    DugE Well-Known Member

    Joined:
    2002/09/10
    Messages:
    726
    Likes Received:
    3
    Would remote assistance work in this instance? I mean, would they be able to connect to their more secure home computer and use the internet that way without having the risks mentioned above?

    I'm not really sure about this myself I'm just throwing it in the air for discussion.
     
    DugE,
    #10
  12. 2010/06/23
    Anaris

    Anaris Inactive

    Joined:
    2010/06/18
    Messages:
    2
    Likes Received:
    0
    Would using an SSL VPN be good enough in this case?
     
    Anaris,
    #11
  13. 2010/06/23
    MrBill

    MrBill SuperGeek WindowsBBS Team Member

    Joined:
    2006/01/14
    Messages:
    4,331
    Likes Received:
    270
    I use Keyscrambler. It is FREE and there are also paid versions of it. I use the FREE version and have for quite a while. That and with the encription of Windows, I feel pretty safe. I even use it on my desktops at home.


    http://www.qfxsoftware.com/
     
    MrBill,
    #12
  14. 2010/06/23
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    I think you're confusing Remote Assistance with Remote Desktop (RD). You can't do anything with the 1st, but RD works fine for this purpose. The RD connection is a secure 'tunnel' to your 'home' system.
     
    Arie,
    #13

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...