this post was submitted on 22 Sep 2023
490 points (95.0% liked)

Memes

45581 readers
1 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 6 years ago
MODERATORS
 
all 18 comments
sorted by: hot top controversial new old
[–] ShittyRedditWasBetter@lemmy.world 59 points 2 years ago (1 children)

None of the actual matters and this attack is rarely used these days. 99.9% of shit is encrypted "over the line". Unless you have some tls zero day you ain't getting shit besides leaked DNS.

[–] deerdelighted@lemmy.ml 1 points 2 years ago (1 children)

Can't the hacker though spoof some fake websites and trick you into giving your information? If they control the WiFi they control the DNS don't they?

I'm mean sure if they have mapping for every major bank and target they are going for and a good enough fake to back it up.

But it's such a low success rate with it being easy to be caught is practically not done.

[–] Xylight@lemmy.xylight.dev 17 points 2 years ago

me when https and all my traffic is encrypted regardless of if I use a VPN or not

Nice try, NordVPN.

[–] HeckGazer@programming.dev 9 points 2 years ago

Oh no, watch out everyone it's a Wire(less)Shark™

[–] hackris@lemmy.ml 8 points 2 years ago

Everything is encrypted nowadays, with HTTP or similar. They only get DNS requests (if you use DNS over HTTPS or over TLS, not even that). Unless you have a zero day in your encryption scheme or network stack, you're fine.

[–] Rootiest@lemm.ee 3 points 2 years ago* (last edited 2 years ago)

I use Tailscale (or the fully-self-hosted Headscale) to ensure all my data is routed through my home whether my phone/laptop is on cell data, public wifi, or otherwise.

One can also simply use it to ensure communication between specific devices is always secure and available but I also find it quite useful as a way to secure all my data when away from home.

It's free for 5 users/100 devices per account with virtually all of the features available to the free plan.

There is also a paid option which should really only be interesting to businesses/etc which have many users to connect. Alternatively self-host g Headspace has no restrictions at all.

[–] catsup@lemmy.one 2 points 2 years ago

Nice PSA. I'll probably use this, it's very easy to understand

[–] newIdentity@sh.itjust.works 1 points 2 years ago

Well it actually isn't thaat bad.

Nowadays every website is encrypted

[–] lnee@lemm.ee 1 points 2 years ago

The only reason why open wi-fi is insecure is because of captive Wi-Fi portals and I'm not saying that the Wi-Fi itself or the internet access is insecure it's just that captive Wi-Fi portals are inherently insecure because they block secure http and also with the website you're going on to don't have https so you can easily figure out the password that they want you to enter in or be able to steal somebody else's session so you don't have to pay or you can just get into a Xfinity router or something

[–] DumbAceDragon@sh.itjust.works 1 points 2 years ago

That's why I use today's sponsor, privatenordatlastunnel vpn.

[–] maxmalrichtig@discuss.tchncs.de 0 points 2 years ago (2 children)

Thats why you should use a VPN when you are out and about. 🙏

[–] BruceTwarzen@kbin.social 33 points 2 years ago (1 children)

Make sure you buy it from a youtuber.

[–] Viking_Hippie@lemmy.world 13 points 2 years ago (1 children)

And buy your undies from a podcaster

[–] BruceTwarzen@kbin.social 14 points 2 years ago (1 children)

Can't hear you over my raycons™

[–] Sweetpeaches69@lemmy.world 7 points 2 years ago

Sorry, I'm in an intense RAID: SHADOW LEGENDS game right now.

[–] BlueKey@kbin.social 15 points 2 years ago* (last edited 2 years ago)

This comment was brought to you by NordVPN.