Whether in the hotel or cafe, the train station or the airport: If you are directly in the next free WLAN Einklinkt, can very quickly a foe on the glue, which runs a fake or twins hotspot. Users of official hotspots can avoid this by informing themselves in advance about the exact name of the official hotspot in the cafe, hotel or airport.
Tip 1: Fake Hotspots
Some operators also use encryption for their free hotspots, which you have to ask for as a user. Such hotspots are basically safer than the unencrypted variant, which could come from any guest in WLAN radio range. However, the threat posed by pseudo-hotspots can never be 100%, since each official hotspot can be overlaid with the same high-performance WLAN hardware by a malicious hotspot with exactly the same name (SSID). >
Tip 2: Listening Safe
The tool in SSIDer can expose a pseudo hotspot that uses the same SSID and channel as the official public service hotspot. However, the doppelganger can also be a second, official hotspot of the offerer. If in doubt, ask the operator of the public hotspot.
Tip 3: Set the firewall correctly
All online services that require you to log in with your username and password, use an encrypted HTTPS access to the public hotspot. Fortunately, almost all Web services now offer such a service. It is best to place the HTTPS addresses of your webmail or social network services as favorites or in the browser. Many online services now automatically process the login and the entire communication via encrypted SSL connections.
Tip 4: Turn off sharing
If you want to read your mails not in the browser, but in a mail client like Outlook, you should also change the SMTP and IMAP ports in the mail client in such a way that the sending and receiving of the e-mails is encrypted via SSL. Attention: Depending on the mail provider, the settings may differ. Please refer to your provider's support or support section.
A personal firewall protects your own computer from direct attacks by other clients in unsafe networks. Current operating systems since Windows Vista are already equipped with a reliable, easy-to-use personal firewall.
When your computer is connected to a specific hotspot for the first time, the Select a location for the network
In any case, select the Public network setting. With this setting, the Windows Firewall protects your computer very well against possible attacks by other network users.
Basically, the aforementioned Windows firewall in public network mode also protects folders and services on your computer from unwanted access to the network. However, you should disable all server applications on your notebook as long as you use a public hotspot.
Such servers or network services can also be found in apps for tablets or smartphones. Some UPnP apps for playing music, pictures, or videos on the home network are often a media server for other media clients on the network. If you do not want curious hotspot users to browse through the private photo albums of your smartphones, you should disable the mediaserver in public network.
The same is true for FTP or SMB server apps that allow easy access to directories in Android or iOS devices.
Protected VPN tunnel with OkayFreedom
Anyone who wants to surf the Internet wirelessly, without the need for a third party or access data, will forward his data stream over an encrypted VPN tunnel. To do this, you install a VPN client that establishes an encrypted connection to a VPN server on the Internet.
Tip 5: VPN Client
All online queries on the notebook are thus encrypted securely to the VPN server, which then forward the original request unencrypted to the destination address. If the VPN tool is activated, your computer is completely isolated from all other devices in the local hotspot. Not even the initially described fake hotspot represents a serious threat to such a VPN connection.
The ad-free OkayFreedom VPN tool on your staple DVD builds such a secure VPN tunnel to a VPN server on the Internet. Each user can access a monthly traffic volume of 500 MB, which should be sufficient for occasional surfing, web mailing or chatting at the public hotspot. The mini-workshop in the box on the left briefly describes the use of OkayFreedom VPN.
Tip 6: IPv6 can be your anonymous
Eliminating VPN connections The VPN client OkayFreedom VPN offers an anonymisation function as well as protection against possible attacks by public hotspots because it replaces the original IP address of the client with that of the VPN server. But beware: The obfuscation of the original IP address works with most anonymization tools only over IPv4 - but not via IPv6.
If, in addition to the IPv4 address, the IPv6 address of your client is also read, any anonymization service that only obscures the IPv4 address is useless. In this case, you should temporarily disable the IPv6 protocol in the properties of your network adapter in Windows.
No comments:
Post a Comment