[GRLUG] Wireless question

Adam Tauno Williams awilliam at whitemice.org
Tue Dec 28 06:21:55 EST 2010


On Mon, 2010-12-27 at 22:35 -0500, Michael Mol wrote:
> On Mon, Dec 27, 2010 at 9:45 PM, John-Thomas Richards <jtr at jrichards.org> wrote:
> > On Sun, Dec 26, 2010 at 08:15:40PM -0500, Bob Kline wrote:
> >> I'd see two issues.  One is to keep your e-mail and other operations
> >> private, and I'd think https was good enough.
> > https?  What about IMAP or POP3/SMTP?

In the real-work you run both IMAP and SMTP with TLS so that is just as
secure as HTTPS.

HTTPS, IMAP + TLS, SMTP + TLS, & SSH.  Sniffing this collection of
traffic isn't going to accomplish much.

> Something I've been mulling in my head for a while. Proxies such as
> Squid can be used for most protocols. How difficult is it to
> SSL-encrypt the Squid proxy, and require all connections go through
> that? That'd seem to allow even an open 802.11 network, as long as the
> client didn't barf on the cert required to talk to the proxy.

It is simpler just to VPN out of the wireless network;  for example I
can VPN to my Linnode which then acts as my gateway.  Then I don't have
to worry about how some crappy hotel network is setup.

I think most browsers would barf on an SSL-enabled HTTP proxy.


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.



More information about the grlug mailing list