FingerLakesWiFi

You have a laptop with wireless internet access. You noticed that there are many free public wireless hotspots you can connect to and browse the web on. Many businesses, such as hotels and restaurants offer it as an extra service to entice you to patron their establishment.

However, with such open access comes serious security issues. Here are a few tips to protect yourself when using public Wi-Fi connections.

1. Avoid doing personal transactions.
Especially financial transations. Ideally, checking your e-mail should also be done with caution. You never know who might be out there monitoring your connection and capturing your login information.

Many public hotspots disable WEP and WPA protection to provide a hassle free login. This means your data is not encrypted and can be read by a hacker. You should only do financial transactions if you’re on a trusted SSL-encrypted connection.

2. Enable or Install a software-based firewall.
There are many to choose from. This will give you extra protection from snoops. Most will also alert you if someone is trying to connect to your computer. Windows XP has a built-in firewall. At the very least, turn that on if it is not already. In the case of Windows, be sure to have the latest operating system updates (Windows XP SP2), as one of the key componets updated was security issues with the built-in firewall.

Start > Settings > Network Connections > Wireless Network Connection > Change Advanced Settings > Advanced Tab > Windows Firewall Settings > Select “On” > OK

3. Turn off file sharing.
This is yet another layer of protection if someone manages unauthorized access to your system. It will stop hackers from being able to transfer any files off (or onto) your system.

Start > Settings > Network Connections > Wireless Network Connection > Change Advanced Settings > Uncheck “File and Printer Sharing” > OK

4. Pay for hotspot use if you're doing business.
There are services that specialize in providing wireless access to hotels and airports for a small fee. Many have a network throughout the country where, no matter what airport or hotel you’re at, you have the same network login; great for business travlers.

With features such as data encryption, these are usually a lot more secure than wide open freebies.

5. Beware of an “Evil Twin”.
An “Evil Twin” is a hacker operated hotspot that tries to trick you into believing it’s a real hotspot. These are designed to monitor people that connect to them and steal data. Read tip #1 again for the most basic protection against being a victim of these. Another good way to protect yourself against is to only use public hotspots that provide an SSL-encrypted login connection that has been certified as legitimate by a trusted third party, such as Thawte or Verisign. If you paid for hotspot access, you should definitely have this.

Some quick ways to check: On Wi-Fi the login page (if there is one), check to see if it begins with “https” instead of “http”. You can also check if there is a “lock” icon on the lower status bar of your web browser. You can usually click that lock and view the certficiate. Check if the name on it matches the service you’re using. If you’re paying for a service and do not see these variables, there is a good chance it’s an “evil twin”.

MORE ON THE WEB

• Episodes 10 (Open Wireless Access Points) and 13 (Bad WiFi Security) of Security Now! with security expert Steve Gibson and host Leo Laport, has great information about into Wi-Fi security. You can listen to the shows or read the transcripts online.

• AirDefense Personal is a software agent that runs on Windows PCs and monitors for malicious or accidental wireless activity and wireless misconfigurations that may cause security exposures or policy violations. This solution complements personal firewalls and host-based IDS systems that typically don’t protect the client against wireless attacks.

• Hewlett Packard’s “Wireless Networking Center” has coverage of wireless security, including a free HP Network Assistant (requires Internet Explorer).

• JiWire offers a comprehensive guide to implementing Wi-Fi security on the road and at home. They also can run a basic test of your Wi-Fi security (requires Internet Explorer).