Laptop Security on Wi Fi

Help and Discussion

Moderator: The Mod Squad

Laptop Security on Wi Fi

Postby c327 » Tue Jul 19, 2011 5:38 pm

This concerns laptop security when it connects to an authorized wireless network as in a hotel.

The lappy has XP pro, zone alarm (free), file sharing disabled, windows is password protected.

Was just wondering just how secure my lappy is when I connect to the hotels wireless network? Just what can and does the hotel see as it pertains to my PC. If they see my MAC address then they gonna have a problem with that :)

Just what do they see and what can they do if anything ???? What about others on the network, like other guests ???
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4387
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby evasive » Tue Jul 19, 2011 10:01 pm

If you are not using a VPN tunnel and your are not using SSL for your connections (web browsing/fetching your email): everything if they want to. Put in a 100mbit hub somewhere along the line, connect system with network card in promiscuous mode (e.g. pick up all packets it can see) and run wireshark, can see your passwords to your email host in clear text even.

For further reading:
http://www.linuxdocs.org/sln/pop3s/
http://mail.google.com/support/bin/answ ... swer=13287
http://privacy.yahoo.com/privacy/us/sec ... tails.html
http://www.ghacks.net/2011/07/08/window ... l-support/

Have fun.
We hate rut, but we fear change.
********************************
System error, strike any user to continue...
evasive
Mobo-fu Master
Mobo-fu Master
 
Posts: 37389
Joined: Sun May 06, 2001 12:01 am
Location: Netherlands

Postby c327 » Sat Jul 23, 2011 2:03 am

evasive wrote:If you are not using a VPN tunnel and your are not using SSL for your connections (web browsing/fetching your email): everything if they want to. Put in a 100mbit hub somewhere along the line, connect system with network card in promiscuous mode (e.g. pick up all packets it can see) and run wireshark, can see your passwords to your email host in clear text even.

For further reading:
http://www.linuxdocs.org/sln/pop3s/
http://mail.google.com/support/bin/answ ... swer=13287
http://privacy.yahoo.com/privacy/us/sec ... tails.html
http://www.ghacks.net/2011/07/08/window ... l-support/

Have fun.


Hummmm very interesting. I have business files on this lappy and that is where my main concern is. I see Gmail is HTTPS but as far as browsing and access to my laptop files etc. goes while on another's wireless or wired network it seems all is viewable....

I know individual files can be password protected , not that may help, but not the entire folder, a bummer............ :(
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4387
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby evasive » Sat Jul 23, 2011 2:23 am

Yep, for the business stuff to transfer safely, you need to setup a VPN (virtual private network is called private for a reason).
We hate rut, but we fear change.
********************************
System error, strike any user to continue...
evasive
Mobo-fu Master
Mobo-fu Master
 
Posts: 37389
Joined: Sun May 06, 2001 12:01 am
Location: Netherlands

Postby c327 » Sun Jul 24, 2011 2:25 am

evasive wrote:Yep, for the business stuff to transfer safely, you need to setup a VPN (virtual private network is called private for a reason).


I have often wondered why Microsoft hasn't hasn't given more attention and options towards user security in their operating systems. To me it seems like they cater more to other things ???
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4387
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby fussnfeathers » Sun Jul 24, 2011 12:51 pm

If it matters, I've worked at a small resort off and on for a few years. They don't bother to check what's being transferred......basically, they don't care. Not time to monitor a swetup in a 120 room hotel that's almost always at max capacity. You'll get a temporary password (meaning you're somewhat secure) to login to the network, and with this hotel, you need a new one daily.No files are stored, the server is flushed of anything that was done with that password immediately. We have tons of business people, and none have ever had a problem.
Faster than the speed of snot

Two wrongs don't make it right, but I sleep pretty good at night
fussnfeathers
Mobo-fu Master
Mobo-fu Master
 
Posts: 3147
Joined: Thu Dec 04, 2008 8:25 pm
Location: Right behind you


Return to Virus/Spyware/Security

Who is online

Users browsing this forum: No registered users and 1 guest