A secure Wireless LAN hotspot for anonymous users

TalkBack 1 of 54:: Next »

Thread View
Flat View

Great Article: A very important topic--thanks George.

Linux users may want to read here about setting up a Layer 3 dynamic tunneling vpn with ssh (version 4.3 or greater) [url=https://help.ubuntu.com/community/SSH_VPN]here[/url].

The set up can include creation of a rsa key pair for automated login and automated ifup/ifdown to a start-up icon.

That sets up a true VPN.

For the occasional 'hotspot' wireless access, I use ssh to local port forward to my home subnet using ddns (enable ssh port forwarding in your router):

ssh -D 8000 username@hostname_or_ip

Then, open your Firefox preferences, and let the browser use proxy ip address 127.0.0.1 and port 8000 and enable SOCKS5, which supports forwarding DNS requests.

That way your DNS requests and browser requests are both tunneled to your home pc and then onto the net.

Again, great article George.
Safe surfing Folks!!; Posted by: D. T. Schmitz Posted on: 07/18/07 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Great Article D. T. Schmitz | 07/18/07

Thanks. For experts like you, I'm not worried. georgeou | 07/18/07

Unfortunately... D. T. Schmitz | 07/18/07

Ah but it can be made easier georgeou | 07/18/07

What we really need to hope Azriphale | 07/19/07

Oh for sure, I'm just hoping RSA and Microsoft will start the trend georgeou | 07/19/07

nice idea dood... niiiiiiice!!!!!! pcguy777 | 07/19/07

security concern leomezza | 07/19/07

You would give up the hashed credentials georgeou | 07/19/07

re: pcguy777 | 07/19/07

I Fail To See... wolf_z | 07/19/07

but the cert has to be trusted pcguy777 | 07/19/07

The publicly trusted certificate georgeou | 07/19/07

And if it's *stolen*? wolf_z | 07/20/07

If you want to make that argument, then let's just give up georgeou | 07/20/07

It's not an argument - it's a flaw. braithwaiteinbritain | 07/23/07

You simply don't understand how PKI works georgeou | 07/23/07

Interesting... but fspevak@... | 07/19/07

Unfortunately Azriphale | 07/19/07

Dynamic Forward/SOCKS D. T. Schmitz | 07/19/07

https proxy servers pcguy777 | 07/19/07

Yes you're on your own unless the Hotspot provider is willing to provide georgeou | 07/19/07

Secure Wireless Traveling atarentus | 07/21/07

UltraVNC with DSM encryption plugin? thelemite | 07/23/07

SSH SSL & HTPS clareJ | 07/19/07

Again, that level of diligence is the rare exception georgeou | 07/19/07

Can anyone explain to me sduraybito | 07/19/07

Cble and DSL security cchamb2 | 07/19/07

Network cable? sduraybito | 07/19/07

Not just the fact that they can use your connection, they can snoop on you georgeou | 07/19/07

Tapping a DSL line is possible but requires physical access georgeou | 07/19/07

But tapping a cable modem is not hard. clareJ | 07/19/07

The requirement for a physical tap is much harder georgeou | 07/19/07

The pdf is damaged and undownloadable john.st.lawrence@... | 07/19/07

Thanks for the heads up, I'll ask them to fix ASAP georgeou | 07/19/07

Getting same error null.corey@... | 07/23/07

PDF is still damaged balford@... | 07/25/07

Re: Wireless security yesigotfaith | 07/19/07

Always glad to be of help georgeou | 07/19/07

End to end encryption JDThompson | 07/19/07

Sure, but 9 out of 10 times it isn't used georgeou | 07/19/07

WPA guests and captive portal memcorruption | 07/19/07

Hey that's cool! What I really want is someone to implement this on a Link georgeou | 07/20/07

I mean I want the actual RADIUS server running on the router georgeou | 07/20/07

RADIUS server running on the router... pauldodd | 07/24/07

Excellent article SoberDub | 07/24/07

Perhaps too many steps for mere mortal users? tom-morris@... | 07/26/07

The user only has two steps n.stockwell@... | 07/26/07

What about setting up the WiFi client? tom-morris@... | 07/27/07

You should look at George's next post n.stockwell@... | 07/27/07

Alternative raggi | 08/08/07

Public Certificate Query sburton@... | 08/13/07

Your certificate name does not need to match the server name georgeou | 01/30/08

RE: A secure Wireless LAN hotspot for anonymous users rohan121@... | 09/17/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
The True Costs of Virtual Server Solutions VMware In an economic environment that is repeatedly heralding the message "do ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

SmartPlanet

Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
More from IBM
How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
Linking Decisions and Information for Organizational Performance Read the Tom Davenport study

Read the original story

A secure Wireless LAN hotspot for anonymous users

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

SmartPlanet

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads