Comment on You probably don't need a VPN
xenspidey@lemmy.zip 10 months agoIt protects your ip address, and your ISP from knowing what you’re doing. It also protects you on public wifi from nefarious actors. VPN’s aren’t meant to protect you from Google advertising while checking your Gmail account…
corbin@infosec.pub 10 months ago
Are there attack vectors through public Wi-Fi in recent history? Now that most sites and services are HTTPS there’s nothing they can do except do network-level blocks.
grabyourmotherskeys@lemmy.world 10 months ago
Unless they intercept the handshake as a proxy and have access to everything after that. The average Starbucks employee is not doing this.
An Israeli spy tracking down an arms dealer might figure out how to do this at a hotel the target was using, but the arms dealer would know that.
hedgehog@ttrpg.network 10 months ago
You’re thinking of a MitM proxy, and generally speaking what you described is not a risk when using public wifi.
There are two ways you can set up a MitM proxy:
The first option will result in prominent warnings in all modern browsers. If the sites in question implemented HSTS and the user has visited them before, the browser will outright refuse to load them.
The second option will result in even more prominent warnings that you have to go out of your way to bypass in all browsers. The only way it wouldn’t would be if one or more of the following is true:
grabyourmotherskeys@lemmy.world 10 months ago
Hence “won’t happen at Starbucks, might if Mossad is after you”. Thanks for adding the details. I feel like most people think vpns are magic but also radically overestimate their personal risk.