[kwlug-disc] Firesheep: Open WiFi cookie stealing for the masses ...

unsolicited unsolicited at swiz.ca
Wed Oct 27 17:51:27 EDT 2010


unsolicited wrote, On 10/27/2010 5:46 PM:
> Khalid Baheyeldin wrote, On 10/27/2010 4:56 PM:
>> http://www.computerworld.com/s/article/print/9193201/How_to_protect_against_Firesheep_attacks 
>>
>>
>>
>> The root problem is sites using plain text HTTP, but there no
>> solution for it until each and every site out there implements SSL.
>>
>>
>> This may never happen, or will take a long time.
>>
>> And it depends on others to act, not you solving your own problem.
>>
>> So, in the mean time, a VPN is the solution.
> 
> Assuming that's possible / the ports are open.
> 
> However, tunnelling through ssh on port 443 seems to have some success 
> in otherwise problematic hotspots.
> 
> Seems freeshell.org is used in this manner by some. (And some on this 
> list, like myself, gave up on it - due to the organization / site 
> itself, not the technology.) [Let alone, being hosted in the U.S. means 
> you are exposed to the Patriot Act (?) provisions.]

Actually ... tunnelling vnc over ssh to work/home should accomplish 
the same thing (let alone screen or freenx), and appropriately keep 
the laptop as a terminal instead of a workstation. Let alone a usb key 
for public access terminals. And you can still always keep your own 
warm fuzzy comfy environment wherever you be.



More information about the kwlug-disc_kwlug.org mailing list