When it comes to the dangers of public wifi, many people tend to take one of two extreme approaches. Some don’t give it a thought at all. Some refuse to use it at all. Neither approach is completely practical. So what are the dangers of public wifi, and how can you avoid them?
Here are the dangers and the precautions to take against them.
A Slashdot story last week discussed how 90% of all SSL VPNs use weak, obsolete encryption. And one comment said, “So? A weak VPN is better than no VPN.”
In the heat of the moment, I searched my blog this weekend for quotes that could potentially be taken out of context and found something rather prophetic that I wrote in the heat of the moment 11 1/2 years ago:
Keeping up on Microsoft security patches is becoming a full-time job. I don’t know if we can afford a full-time employee who does nothing but read Microsoft security bulletins and regression-test patches to make sure they can be safely deployed. I also don’t know who would want that job.
Who ended up with that job? Me, about a year after I left that gig. It actually turned out I was pretty good at it, once I landed in a shop that realized it needed someone to do that job, and utilized that position as part of an overall IT governance model.
I installed Windows Vista last week. I need a legal copy of a supported version of Windows to use to VPN in to work and run the corporate Citrix client. Vista fit the bill. It’s better than 8.1, and it’s supported until April 2017. I always hated Vista, but 8 and 8.1 made me realize it could have been a lot worse, and on recent hardware Vista does OK. It still prompts you for admin rights too much and too slowly and makes you work too hard to click yes, but at least you can find stuff. Read more
I’m fed up with ISP duopolies. Why? Because Netflix paid Verizon the ransom it demanded, and yet Verizon hasn’t lived up to its side of the deal. To the contrary, evidence suggests Verizon is actively slowing down Netflix, because when Colin Nederkoorn encrypts his Netflix connection so Verizon can’t see what it is, it speeds up.
News flash: Encrypting data via VPN adds overhead, so it ought to slow the traffic down.
I’m starting to doubt whether net neutrality is enough to solve the problem. A better solution is to break these companies up, let them serve whoever they want, and let municipalities compete with them if they want.
Not that that is ever going to happen.
The right thing to do is patch. But most exploits will assume that your router lives in the 192.168.0.x or 192.168.1.x space, whatever the factory default is. So you can get a degree of protection even against future vulnerabilities by moving your IP space somewhere else. Read more
I work from home one day a week. Most of my coworkers do as well.
So I was interested when I read about Yahoo! doing! away! with! telecommuting! (with apologies to The Register. I couldn’t resist.)
Apparently, not everyone thinks it’s OK that Facebook COO Sheryl Sandberg leaves her job at 5:30. To me, this is very strange. Read more
I can think of two times someone has asked me to fix their computer when it has suddenly lost the ability to connect to the Internet. Assuming there’s nothing wrong with the modem or the network card, the problem usually comes down to something messing with either the TCP/IP stack or the Winsock. Security software frequently does this, as does malware. A few years ago, I briefly worked for an ISP that provided a security suite based on F-Secure, and that program was notorious for breaking the Winsock.
Here’s the simple fix.
Yesterday must have been Webserver Wednesdsay, because two things happened. A new version of Apache was released, and a new tool for testing the vulnerability of webservers to denial of service (DoS) was released.