FRIHOSTFORUMSSEARCHFAQTOSBLOGSCOMPETITIONS
You are invited to Log in or Register a free Frihost Account!


Warning: refrain from using free wifi access





jilbs
Hi all,

I've read an article about a browser extension called firesheep. What this program does is it captures login details from popular websites like twitter and facebook in an open wifi network.

This is the site: http://codebutler.com/firesheep

Anyway, we must protect ourselves from identity thief. I guess the safest thing to do is to bring your own internet connection like a 3G connection. or maybe use your company VPN after connecting or better yet buy a vpn account from trusted vpn providers.
Marcuzzo
this is one of the reasons why I never connect to a unknown and unprotected Wifi access link.
where I live there is a guy ( or girl ) that tries to pull off some s*** by setting their Wireless router to unprotected and the SSID to "FON_FREE_INTERNET"... yeah right...

so I think, as long as you are connected to your own protected Access point, you are pretty safe.
Fire Boar
Firesheep is a demonstration: it's a way of telling other people "seriously, your details are in the air and can be picked up by any computer with the right software.

Another way of protecting yourself from this sort of thing is to use https. It should really be the only option available when logging in to these social networking sites though.
Flakky
I tend to not using social apps or going somewhere specific while connected with free networks. It was on the news recently that this threat is serious.
badai
no worry, they have FireShepherd now.

http://notendur.hi.is/~gas15/FireShepherd/
Flakky
badai wrote:
no worry, they have FireShepherd now.

http://notendur.hi.is/~gas15/FireShepherd/

I love the name they gave it xD
FunDa
Wow, this is pretty cool and scary at the same time.


If it is really that easy to hijack a user across a public WiFi, I should really stop browsing at the cafe. I knew enough not to access my banking accounts from a free WiFi, but now I think I should stop facebooking and emailing too. !!!
missdixy
So apparently this plugin can be used over my university network as long as the people are on the same router. I am now scared to log in to Facebook or anything over my network Sad Does anyone know if people can steal your credit card number this way if you are making a purchase over a network with someone running Firesheep?
Fire Boar
No, because your credit card details are only (should only be) entered in a secure connection. A secure connection is a website with an address starting https://.

Firesheep isn't that sophisticated, so it won't intercept anything apart from what it's programmed for (Facebook, Twitter, etc). It's really a "secure your service" message to the owners of these sites. In addition, on a WPA-secured network you should be fine, since all traffic is encrypted anyway. Not sure if the same applies to wired networks, but I'd imagine so.
missdixy
Fire Boar wrote:
No, because your credit card details are only (should only be) entered in a secure connection. A secure connection is a website with an address starting https://.

Firesheep isn't that sophisticated, so it won't intercept anything apart from what it's programmed for (Facebook, Twitter, etc). It's really a "secure your service" message to the owners of these sites. In addition, on a WPA-secured network you should be fine, since all traffic is encrypted anyway. Not sure if the same applies to wired networks, but I'd imagine so.


Ahh alright, thanks. I only asked because my credit card number got stolen the same week that I got an email from my school saying that people on our network could use Firesheep to access your accounts to stuff as long as they were using the same router as you or whatever. And I thought I had read somewhere that Amazon.com was somehow able to be accessed through Firesheep?

"Moreover, to give you a sense of Firesheep’s scope, the extension is built to identify cookies from Amazon.com" (I forgot where i got that from but I had saved it in a notepad document)

Anyway, I made a purchase from amazon.com (shortly before my credit card number got stolen and used online) so I thought maybe somehow it was all related.

Of course, strongly possible that it might have been stolen by someone at one of the restaurants I order food from.
Fire Boar
WPA, WPA2 and Ethernet are invulnerable to Firesheep. WEP and unencrypted are vulnerable, though for WEP you have to be connected in the first place.
Related topics
Free Wifi 1,3 or 5 years
Backtrack 5
Do any imagehosts allow ftp access. Can i hotlink images?
Using Voting Buttons in Outlook Web Access
What do I need to go wirelessinternet on laptopw/out range
how to write sitemap
Using free CSS templates - Copyrights issues
iPhone 0S 4.0
Image gallery / host ... what's the difference?
I'm doing something wrong,,,
Do you download or buy games?
What really grinds my gears...
Mural de Recados
error with MySQL
Reply to topic    Frihost Forum Index -> Computers -> Computer Problems and Support

FRIHOST HOME | FAQ | TOS | ABOUT US | CONTACT US | SITE MAP
© 2005-2011 Frihost, forums powered by phpBB.