[ale] how can a firewalled PC POSSIBLY be attacked?

Wed Jan 23 15:35:04 EST 2013

>
> Let's say I'm at a place with open wifi, like McDonalds.  You have to
> agree to their TOS to get on, but there's no password.  In that case,
> then, all the traffic in the room is clearly visible, and readable, and
> copyable, including mine, unless I'm using SSL or a VPN.
>

SSL can be MITM.  As long as the user accepts the invalid cert, then SSL is
broken. This is on top of ARP poisoning, so you can properly view all
traffic passing through the router. So a VPN is your best bet. Then setup a
firewall rule to
1. only accept packets from vpn.
2. drop everything on wlan0 except vpn traffic.
3. forward wlan0 to tun0 just to make sure everything is going through the
tunnel.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20130123/803688b2/attachment.html>