You are viewing a single thread.
View all comments
93 points
*

Considering how most of the Internet is encrypted with TLS, if you add DNSSEC+DoH/DoT on top, trying to MITM someone on a public WiFi is way harder than it was, unless you’re a state-level adversary and you’re able to craft valid certificate for a domain you don’t control from a globally trusted (root) certificate autority (which will lose its trusted status quite fast once discovered, ex: CNNIC)

permalink
report
reply
39 points

Yeah, the days of your local coffee shops Wi-Fi being a problem or mostly gone. Not the VPN doesn’t have a place anymore though. If you’re trying to hide your downloading of ISOs from your ISP it’s still a perfectly reasonable method. Or temporarily relocating yourself to another country to make a purchase or watch some streaming content both perfectly reasonable.

Of course some of the streaming providers are getting wise to this.

permalink
report
parent
reply
9 points

I have a VPN so I can securely access my home network when I’m away

permalink
report
parent
reply
1 point

That’s not what these commercial VPNs are for.

permalink
report
parent
reply
3 points

I use a VPN for the same reason I use the Internet. Porn.

permalink
report
parent
reply
4 points

Yeah, pptp will always have a strong purpose and home. I’m more speaking to the viability of commercial anonymization VPN.

permalink
report
parent
reply
30 points

why would I need to hide my terabytes of Linux ISO downloads?

permalink
report
parent
reply
3 points

Because we see which distros you’re using, and we judge you for it.

Gentoo, in 2024? Really? You should be using Arch if that’s your thing. It’s not the 90s any more.

permalink
report
parent
reply
24 points

Bill Gates, man, Bill Gates

permalink
report
parent
reply
5 points

You don’t want their admin to contact you about how you’re a n00b for not using Arch.

permalink
report
parent
reply
51 points

Not all applications on your computer may be encrypting their packet traffic properly, though. That goes especially for the applications that might be trying to reach out for resources on your local home network (like printers, file shares, and other home servers) as well as DNS requests which are usually still made in the open. I would not recommend eschewing an entire security layer willy-nilly like that. On public Wi-Fi, I would definitely still suggest either a VPN or using your cell phone as a tether or secure hotspot instead if possible.

permalink
report
parent
reply
3 points

Sure, but it’s also like, if you’re stepping away from your laptop for a few minutes should you lock the screen or shut it down completely.

The most secure option is to shut it down completely, but also it’s fine to just lock your screen.

If you’ve already got a VPN and it’s as easy as locking your screen to enable, go for it, use it. But if you don’t, you don’t need to go out and get one. You’ll generally be ok without one.

permalink
report
parent
reply
8 points

The most secure option is bringing the laptop with you.

permalink
report
parent
reply
7 points

Or the tld is .mobi

permalink
report
parent
reply
3 points

Interesting read, thanks!

permalink
report
parent
reply

Technology

!technology@lemmy.world

Create post

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


Community stats

  • 15K

    Monthly active users

  • 6.7K

    Posts

  • 152K

    Comments