Security → Hotspot security ?'s

I have a few questions concerning wifi hotspots, namely hotel wifi access.
1) If you are connected to an https: site (ie. a bank website) is your login and page viewing data safe from sniffers? Do the https: sites act as a vpn like jiwire and hotspotvpn and tunnel your data from your computer or do you still need use one of those services?

2) if i decide to setup a vpn using my home computer w/cable internet, are my hotel wifi connections secure just like using one of the paid services mentioned above?

3) is it worth setting up my own vpn or is it more cost effecting and secure to use an established service? I like the idea of being able to access my home computer on the road.

Thanks

Yes, your https connections are secure. As always with https you should be checking the certificate. Your browser normally does that, but it pays to be alert.

If you use a VPN to home, and run all connections through that VPN, then they are encryped on the hotel wifi network. You should be safe.

To add to what nwrickert said here the scheme I use when at an untrusted wireless hot-spot, ie. somewhere else than my home LAN...

1. I have the XP SP2 Windows Firewall enabled on my wireless card and configured for NO Exceptions. That way all incoming probes, etc are blocked. I always leave the firewall on, even at home. Sort of set it and forget it so to speak. If I need to get files from one of my home desktops, while at home, I simply initiate the transfer from my laptop.

2. I use a SSL proxy to get email while connected to the untrusted wireless hot-spot. Note you need a POP3 account for this. You might check with your ISP to see if they offer a SSL email option.

»www.mail2web.com/cgi-bin ··· d=0&il=1

3. To access my home LAN for file access, remote control of a desktop or to run desktop applications like Outlook for email (versus number 2 above) I use a Secure Shell (SSH) tunnel. Its very easy to setup and the tunnel, you only need to open TCP Port 22 on your firewall, is totally encrypted end-to-end from the start. I also use a 2048-bit RSA private/public key pair with a strong pass-phrase versus a password (strong or otherwise) for authentication. In my case I run XP Pro Remote Desktop through the tunnel. You can also run any flavor of VNC, I recommend UltraVNC, through the tunnel if your not running XP Pro at home. In my case I use CopSSH as my SSH server on one of my XP Pro boxes. I also use either Tunnelier or PuTTY as the client. Either one works and it really comes down to personal preference. I happen to prefer Tunnelier because I can configure it to automatically launch a Remote Desktop connection when the SSH tunnel is established. If you just want to do file transfers through the tunnel, then WinSCP works well.

»www.itefix.no/phpws/inde ··· on=22:22

»www.bitvise.com/tunnelier.html

»www.chiark.greenend.org. ··· m/putty/

»winscp.net/eng/index.php

The BBR Remote Access for Windows FAQ...

»Windows Based Remote Connections

Others can speak to setting up a VPN. You also might post VPN questions to the VPN forum.

»Virtual Private Networking

Thanks for the great info. I am going to research all the dfferent options and see which one best suits my needs and more importantly my ability to setup and secure.

One other question. Will I have trouble with any of these programs if I run them on XP home?

I don't believe so, but then I only run XP Pro so I can't say for sure...